I was wondering if you could make a command line program for a rooted IPhone running IOS 15.6. I have tried downloading clang to compile a simple C program that I wrote (just a printf hello world), but the compiled binary always results in "bus error" when I run it like so: "./[name of compiled binary]". I am completely confused on what to do and online searches have not been helpful.

Hello! I decompiled iOS kernel, symbolicated it and cloned XNU source to my machine.

I need to find the call to function ml_task_set_user_jop to find the offset of userspace PAC. Are there any professionals here, who can help me?

Hi, i'm havent made a preference bundle in awhile. It's my first time doing that with Dopamine 2. I added the rootless thingy in the makefile but when i tap on my section in the Settings app, it crashes. My Root.plist is almost empty, i'm not sure why it crashes. <?xml version="1.0" encoding="UTF-8"?> <!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd"> <plist version="1.0"> <dict> <key>items</key> <array> <dict> <key>cell</key> <string>PSGroupCell</string> <key>label</key> <string>aaa First Page</string> </dict> </array> <key>title</key> <string>aaa</string> </dict> </plist> The crash log says: Exception type: EXC_BAD_ACCESS (SIGBUS) Exception subtype: KERN_PROTECTION_FAILURE: 0xdac11a30

If anyone can help me out on this, I would greatly appreciate it.

Dear Community,

I am looking into the p0laris untether and plan to create a Virtual Machine for iOS 9.3.5 to conduct my experiments. Unfortunately, I do not have access to a macOS device, so I am requesting assistance from someone with a macOS device to complete the following steps and get in touch with me:

1. Download the iPod IPSW for iOS 9.3.5
   • Download Here
2. Extract the IPSW File
   • Follow this guide: How to Decrypt or Extract IPSW on Mac or Windows
   • Use the following DMG key: `edf6e096858c2e8f311a5c113a998bfd89947e8b00df66ad5ea494ed80a124185ddcb8d0`
3. Convert the DMG File
   • Follow Apple's instructions to convert a disk image to another format: Apple Disk Utility Guide
   • Use the CD/DVD/3rd Party App option.
4. Get Back to Me
   • Once completed, please reach out to me with the converted file.

If there are any issues with the instructions or additional details needed, please let me know.

:)

Hi, I'm trying to make a tweak that targets com.apple.springboard. I have a simple Tweak.xm. It compiles and works fine after I respring. The problem is as soon as I add a .mm & .h file (an additional class) and compile with this in the makefile: MyTweak_FILES = Tweak.xm $(wildcard **/*.mm), I get a blackscreen after I respring. Then I have to force reboot, rejailbreak with Dopamine 2 and tweak injection off so I can uninstall my tweak. Thing is I don't even use the class in my Tweak.xm yet. Also, this works fine when I target an AppStore app instead of the springboard.

my own Tweak not work on Taurine/Unc0ver but work fine on Checkra1n , Dopamine, Palera1n (ful/less).

How I can fix to work for Taurine/Unc0ver? I try libhooker Configuator - Tweak compatility and choose other hook but still not work

Thanks !

If anyone could help me figure out how to get apps on my iPad please

Hello everyone,

I do not have an Apple developer account but i need to push notifications to my jailbroken iPhone (rootless) i want to do this over my local network so i though maybe i could run a websocket server and send some stuff from my local server.

After watching some tutorials and with my little to no knowledge of tweak development i came up with this

```objc

import <UserNotifications/UserNotifications.h>

import <Foundation/Foundation.h>

import <UIKit/UIKit.h>

import <rootless.h>

include <syslog.h>

@interface SBHomeScreenViewController : UIViewController @property (nonatomic, strong) NSURLSessionWebSocketTask *webSocketTask; @property (nonatomic, strong) NSURLSession *session; - (void)listenForMessages; - (void)receiveMessageWithCompletionHandler:(void (<sup>)(NSURLSessionWebSocketMessage</sup> *, NSError *))completionHandler; - (void)pushNotificationWithMessage:(NSString *)message; @end

%hook SBHomeScreenViewController - (void)viewDidLoad { @try { // Create a URLSession self.session = [NSURLSession sessionWithConfiguration:[NSURLSessionConfiguration defaultSessionConfiguration]];

    // Initialize the WebSocket task
    NSURL *url = [NSURL URLWithString:@"ws://192.168.1.48:8080"];
    self.webSocketTask = [self.session webSocketTaskWithURL:url];

    // Open the WebSocket connection
    [self.webSocketTask resume];

    // Start listening for messages
    [self listenForMessages];
}
@catch (NSException *exception) {
    NSLog(@"An error occurred: %@, %@", exception.name, exception.reason);
}
@finally {
    %orig;
}

}

// Method to listen for incoming messages - (void)listenForMessages { [self.webSocketTask receiveMessageWithCompletionHandler:<sup>NSURLSessionWebSocketMessage * _Nullable message, NSError * _Nullable error</sup> { if (error) { NSLog(@"Error receiving message: %@", error); return; }

    // Process the received message
    if (message.type == NSURLSessionWebSocketMessageTypeString) {
        NSString *receivedText = message.string;
        NSLog(@"Received message: %@", receivedText);
        [self pushNotificationWithMessage:receivedText];
    }

    // Continue listening for messages
    [self listenForMessages];
}];

}

// Method to send messages (if needed) - (void)sendMessage:(NSString *)message { NSURLSessionWebSocketMessage *webSocketMessage = [[NSURLSessionWebSocketMessage alloc] initWithString:message]; [self.webSocketTask sendMessage:webSocketMessage completionHandler:<sup>NSError * _Nullable error</sup> { if (error) { NSLog(@"Error sending message: %@", error); } }]; }

// Push notification method - (void)pushNotificationWithMessage:(NSString *)message { UNMutableNotificationContent *content = [[UNMutableNotificationContent alloc] init]; content.title = @"New Message"; content.body = message;

UNNotificationRequest *request = [UNNotificationRequest requestWithIdentifier:@"UniqueID" content:content trigger:nil];
[[UNUserNotificationCenter currentNotificationCenter] addNotificationRequest:request withCompletionHandler:nil];

}

%end ```

however the code above does not work i also do not know if i should hook into SBHomeScreenViewController, i am not famialiar with low level languages

Lastly it must run on rootless

Any help is appreicated

UPDATE:

Check out the repo to contribute to this

The Title basically says it. I want to Patch an ipa into eg. Tips.app similarly to how trollrestore patches PersistenceHelper_Embedded to it. The thing is that PersistenceHelper doesn’t seem to be a (normal) ipa file but some other binary.

So the real question is: Would it be possible to create such a binary (ideally from an ipa) and then patch tips or something with it.

Any help is appreciated!

Every program written in C that I try. to compile gives error: configure error cannot run /bin/sh ./config.sub iPad 6th gen iOS 15.5 Dopamine rootless

If some one knows how to develop an app.please complete this app.there is an error.if you solve that the app is complete.i made this using gemini 2.0 This is the project files.just load it in android studio and complete.if you have kind heart inform me🥹 Link for that- https://drive.google.com/drive/folders/1F4QYz2qAaZ_naE9Uc3xL9pox0TuK7Kj6

My prompt was🫣

I want to build a web or mobile app focused on portrait photography with depth blur effects. The app should work on a Google Pixel 8 and use advanced techniques to produce high-quality results.the app sould work on the method of pixel's add me feature works in pixel 9 series.two photos taken.one is for apply the best depth analysed user selected different bokeh or blurs and the second photo is for subject with better light captured on it like in professional lens camera, and best perfect edge cuttout or whatever needed to get perfect outcome.and finally blend or merge or whatever add me feature do with two photos,and give me best portrait photos which is competeting with real lens cameras portrait. Key features and requirements include:

Depth Blur: The app must apply portrait blur effects , simulating the effect of using various camera lenses. Lens Simulation: The app should allow users to simulate different bokeh effects and lens styles such as: Zeiss Distagon B-speed Biotar Sonnar Planar These effects should mimic real-world lens characteristics, providing a variety of artistic blur styles. Focal Length selection: The app must convert normal photos from my phone to photos taken from cameras of focal lengths between 18mm to 300mm which i select from, simulating both wide-angle and telephoto lenses with the ability to change focal length time independency: The app should work on prioritizing high-quality results even if it take some time to process.the fine perfect result matters and prioritized.so go through and analyse through world best codings,libraries and other,which must be advanced and new and best trained,also supportable and workable in my pixel 8 Photo Quality: The final photo quality should be professional-grade, allowing users to take highly detailed and sharp portraits with depth analyzed professional camera like background blur and customizable depth effects and focal lengths mimic. Depth Sensing and AI: The app should utilize AI to detect the subject and apply accurate depth of field adjustments. It should also make use of the phone's hardware features to enhance real-time processing. I don't need live bokeh or background blur in viewfinder.but I need the bokeh and background blur applied on image after the process in gallery after taking its own processing time.also I don't need sudden processed image.take its own processing time that needed.because I need focus on even on a single each hair and even if Thread sticking out and individual hairs on subject must be focused without affected by bokeh or blur like exactly taken from proffessional lens camera.but other than subject must be depth analysed blurred,like onion,swirl,cat eye which I select with depth analysed.also I need the option for vivid and textured like in vivo x200 pro. UI/UX Design: The user interface should be intuitive and clean, with easy controls for selecting the desired bokeh effect, focal length,depth and vivid or textured. It should feel like using a professional camera app. Additional Features: The app should offer basic editing options such as exposure, contrast, and sharpness adjustments post-capture. Can you provide me with a step-by-step guide or approach to help me build this app in android studio with giving exact needed all coding and libraries and where to put those and what sould do each step.build configuration language is "kotlin DSL (build.gradle.kts).my encountering stems from using Kotlin DSL for your Gradle build scripts.so help me to create from setting up the environment to implementing the required features and optimizing performance.remember the steps must be considering me as iam not a developer and i dont know nothing about android studio.where is each files and functions and what to do.so the each steps must consider my level of knowledge.remember to provide me all required codes and libraries dierectly to each step and double cheack

i changed everything to arm64 and even said: „make ARCHS=arm64 package“ and it still gave me an arm deb

I want to jailb. My iPhone 11 Pro Max. Is there any way to do that???

Can I use a private framework in a jailbroken-ios command line utility?

If so, how do I do this?

Help!

/opt/theos/include/sandbox.h:28:5: error: typedef redefinition with different types ('struct (unnamed struct at /opt/theos/include/sandbox.h:24:16) *' vs 'struct sandbox_profile *')

} * sandbox_profile_t;

^

/opt/theos/vendor/include/sandbox.h:28:5: note: previous definition is here

} * sandbox_profile_t;

^

In file included from Tweak.x:9:

/opt/theos/include/sandbox.h:30:16: error: redefinition of 'sandbox_params'

typedef struct sandbox_params {

^

/opt/theos/vendor/include/sandbox.h:30:16: note: previous definition is here

typedef struct sandbox_params {

Errors like that.

It's a bit disappointing. I've recently developed an interest in tweak development and have been trying to create my own tweak. I wanted to run and debug them on the simulator with simject, but it seems that it doesn't work. On my Mac with macOS 15, it appears that the simulator's directory can no longer be modified 。Apple is too unfriendly to developers

Hey everyone! I'm new to jailbreaking and had a quick question about a tweak I came across. Recently, I saw an app or tweak that allows you to pause and play TikTok or Facebook Live streams while spoofing the camera feed with a 2-3 hour pre-recorded video. I was wondering if this is a known tweak, and if so, where I might be able to find it. Since l've only just jailbroken my iPhone, l'm looking to explore and experiment with different features. Any guidance or recommendations would be greatly appreciated!

So as the title says I am trying to create clones of apps. I noticed when I generate a clone of an app it seems to be using same app container instead of using there separate ones. Based of Apps Manager the app has separate container but inside the app when it get the NSHomeDirectory or something it points to the original app path not the one listed in apps Manager.

Any idea why this could be happening? the clones have unique bundle id and modified entitlements

Hello, I need someone to build a bypass jailbrek tinder detection

Trying to make a tweak to download a video from the AVPlayer. I have the button created but I’m unable to find the URL for the video. Is there any other option besides the URL? As that’s the only one i’m familiar with but would appreciate any guidance.

I’m on iOS 16.5 Btw

I have a g5 moto I'm trying to change the boot animation to playstation 2 boot animation but I don't know what to do please help

I’m start again poppy playtime, i found ch2 but i need chapter 1 ipa link. I dont prefer iosvizor cuz when i start the game, its black screen, pls help me.

I downloaded a decrypted IPA file from decrypt.day and tried to install it on my iPhone 15 with iOS 18.0 via Sideloadly's "Apple ID sideload", but it keeps crashing on lanuch. Payload/Info.plist doesn't contain "UISupportedDevices". Here's the relavent parts of the log:

Exception Type:  EXC_BREAKPOINT (SIGTRAP)
Exception Codes: 0x0000000000000001, 0x0000000191b1f674
Termination Reason: SIGNAL 5 Trace/BPT trap: 5
Terminating Process: exc handler [6011]

Triggered by Thread:  3

Thread 3 Crashed:
0   CloudKit                             0x191b1f674 0x191b18000 + 30324
1   CloudKit                             0x191b5c828 0x191b18000 + 280616
2   CloudKit                             0x191c65e30 0x191b18000 + 1367600
3   libdispatch.dylib                    0x1915520d0 _dispatch_client_callout + 20
4   libdispatch.dylib                    0x191553918 _dispatch_once_callout + 32
5   CloudKit                             0x191c65e0c 0x191b18000 + 1367564
6   Countdowns                           0x1009695a0 0x100834000 + 1267104
7   Countdowns                           0x100907319 0x100834000 + 865049
8   Countdowns                           0x1009edc85 0x100834000 + 1809541
9   Countdowns                           0x100907319 0x100834000 + 865049
10  libswift_Concurrency.dylib           0x194f4de19 completeTaskWithClosure(swift::AsyncContext*, swift::SwiftError*) + 1

How can I move forward on finding the issue and appling the probably necessary patches?

I'm quite new to jailbreaking but had a go with this but seemingly getting nowhere. Would anyone be able to help it'd be greatly appreciated!

All I'm trying to do is know the foreground app from the commandline

#import <Foundation/Foundation.h>

#import <objc/runtime.h>

#import <UIKit/UIKit.h>

#import <stdio.h>

// Declare the SpringBoard interface

u/interface SpringBoard : UIApplication

- (NSString *)_accessibilityFrontMostApplication;

u/end

int main(int argc, char **argv, char **envp) {

u/autoreleasepool {

printf("Starting ForegroundApp tool...n");

Class springBoardClass = objc_getClass("SpringBoard");

if (!springBoardClass) {

printf("Error: SpringBoard class not found.n");

return 1;

}

printf("SpringBoard class found.n");

SpringBoard *sb = (SpringBoard *)[springBoardClass sharedApplication];

if (!sb) {

printf("Error: Unable to get SpringBoard instance.n");

return 1;

}

printf("SpringBoard instance found.n");

NSString *foregroundApp = [sb _accessibilityFrontMostApplication];

if (foregroundApp) {

printf("Foreground app: %sn", [foregroundApp UTF8String]);

} else {

printf("No app in foreground or user is on SpringBoard.n");

}

}

return 0;

}

That's what I have tried