+ Reply
Page 14 of 14 FirstFirst ... 4121314
Results 261 to 271 of 271

Your favorite Apple, iPhone, iPad, iOS, Jailbreak, and Cydia site.


Thread: Emergency SSH access using a pwn'd DFU mode RamDisk

is a discussion within the

General

forums, a part of the

Jailbreak / Downgrading / Upgrading

section;
Thanks, Zokunei that's exactly what I was looking for, however when I run the jar file, at the stage where it's supposed to send the syringe exploit and load the
...
  1. #261
    What's Jailbreak?
    Join Date
    Sep 2012
    Posts
    7
    Thanks
    0
    Thanked 0 Times in 0 Posts

    Thanks, Zokunei that's exactly what I was looking for, however when I run the jar file, at the stage where it's supposed to send the syringe exploit and load the Ramdisk, it simply kicks it out of DFU mode back into normal.

    So I tried copying the files created in my temp/ssh_rd folder, and manually running tetheredboot.exe -i [iBSS dfu file] -k [kernel file] -r [ramdisk]

    This happens:
    Code:
    Initializing libpois0n
    ERROR: The process "iTunes.exe" not found.
    ERROR: The process "iTunesHelper.exe" not found.
    Waiting for device to enter DFU mode
    Device must be in DFU mode to continue
    Device must be in DFU mode to continue
    Device must be in DFU mode to continue
    Device must be in DFU mode to continue
    Device must be in DFU mode to continue
    And yes, of course it's in DFU mode, but shouldn't tetheredboot be sending the syringe exploit, instead of libpois0n? How do I force it to use the correct exploit? Or could there be another reason why it's not communicating with the device?

  2. #262
    Go Wings Zokunei's Avatar
    Join Date
    Jun 2010
    Location
    Michigan
    Posts
    6,273
    Thanks
    103
    Thanked 452 Times in 365 Posts

    I don't know exactly how tetheredboot works, but it sounds like it's looking for iTunes. Maybe you're supposed to have iTunes running when you run it?

  3. #263
    My iPhone is a Part of Me
    Join Date
    Oct 2010
    Location
    UK
    Posts
    900
    Thanks
    5
    Thanked 68 Times in 66 Posts

    Just a though, you aren't using iTunes 11.1? iH8sn0w's blog says stay away from this version.
    iH8sn0w.com

  4. #264
    What's Jailbreak?
    Join Date
    Oct 2013
    Posts
    1
    Thanks
    0
    Thanked 0 Times in 0 Posts

    Quote Originally Posted by iP4Nub View Post
    You guys are really great. I sure wish there is something I can do for you some day. I have not heard of this but will start the search for it. Thanks Zokunei.



    I did get most of the way through the iFaith method and 'something happened' - I will have to dig out notes and give that another shot because I can't remember. I am trying the dd command today and also the make_no_erase_ipsw for iOS7 if I can figure that out. I think I just need to find an iOS7 IPSW - hopefully on that IPSW site I got the original iOS6 one.

    Thanks again men. I will report back later today.
    Hey iP4Nub, hopefully you've got this sorted by now but I ran into a similar problem tonight with mounting issues using the same program that you're using. Try using:

    mount -t hfs -r /dev/disk0s1s1 /mnt1

    This will force it to mount in read only, found this from this website Mount a trashed hard drive using Target Disk mode - Mac OS X Hints

  5. #265
    What's Jailbreak?
    Join Date
    Sep 2012
    Posts
    7
    Thanks
    0
    Thanked 0 Times in 0 Posts

    I took your suggestion, Zokunei, and ran tetheredboot while iTunes is running.

    Code:
    C:\RD>tetheredboot.exe -i iBSS.n81ap.RELEASE.dfu -k kernelcache.release.n81 -r 0
    38-4361-021.dmg
    Initializing libpois0n
    Waiting for device to enter DFU mode
    Found device in DFU mode
    Checking if device is compatible with this jailbreak
    Checking the device type
    Identified device as iPod4,1
    Preparing to upload limera1n exploit
    Resetting device counters
    Sending chunk headers
    Sending exploit payload
    Sending fake data
    Exploit sent
    Reconnecting to device
    Waiting 2 seconds for the device to pop up...
    Uploading iBSS.n81ap.RELEASE.dfu to device
    [==================================================] 100.0%
    Waiting 10 seconds for the device to pop up...
    Uploading ramdisk 038-4361-021.dmg to device
    [===                                               ] 5.1%Unable to upload ramdis
    k
    Unable to upload data to device
    
    C:\RD>
    It errors out at 5.1%, arrgh. :/

  6. #266
    What's Jailbreak?
    Join Date
    Sep 2012
    Posts
    7
    Thanks
    0
    Thanked 0 Times in 0 Posts

    I feel like I'm getting close again, I'm getting the same (or very similar) error that Gecko iPhone toolkit gave, about a file called _AMRecoveryModeDevice
    Code:
    c:\RD>itunnel_mux.exe --devicetree DeviceTree.n81ap.img3 --kernelcache kernelcac
    he.release.n81 --ramdisk 038-4361-021.dmg
    [ERROR] locate_AMRecoveryModeDeviceSendFileToDevice: Could not locate function p
    rolog!
    [INFO] Waiting for a device in Recovery mode to connect..
    What exactly does this mean?

  7. #267
    What's Jailbreak?
    Join Date
    Sep 2012
    Posts
    7
    Thanks
    0
    Thanked 0 Times in 0 Posts

    Let's go back to square one, --the furthest I've gotten was when GIT booted it's ramdisk in Redsn0w, and I was able to successfully load the Ramdisk.

    So let's approach the problem from this angle: Why does PuTTY hang when trying to connect?

    Quote Originally Posted by iPhooey View Post
    Just out of curiosity, is this the method that Gecko iPhone toolkit is more or less based on?

    Currently I'm trying to recover data from my iPod Touch 4G.

    Gecko iPhone Toolkit loads up it's Ramdisk and my iPod displays
    Code:
    listening port 1999 and running /sbin/sshd
    I try connecting with PuTTY to localhost:2222, doesn't work. I get "Network error: Connection refused".

    EDIT:
    Apperently, GIT doesn't usbmux to forward the ports until you run their bruteforce script (which I don't want to do because I'm not trying to crack my passcode, I'm just recovering data).

    So I used itunnelmux.exe --lport 22

    Code:
    C:\Users\Owner\Downloads\itunnel_mux_rev71>itunnel_mux.exe --lport 22
    [ERROR] locate_AMRecoveryModeDeviceSendFileToDevice: Could not locate function p
    rolog!
    [INFO] Waiting for new TCP connection on port 22
    [INFO] Waiting for device...
    [INFO] Device connected: ramdisk tool Dec  1 2011 14:40:41
    At this point I run PuTTY, pointing it to localhost and port 22, this time it doesn't refuse the conection, but the itunnelmux windows says this:

    Code:
    [INFO] Info: New connection...
    [ERROR] AMDeviceConnect = -402653083
    [ERROR] Error: Device Connect
    And of course PuTTY just hangs

  8. #268
    What's Jailbreak?
    Join Date
    Dec 2013
    Posts
    1
    Thanks
    0
    Thanked 0 Times in 0 Posts

    I am able to SSH into my iPhone. However, I cannot find any disks. Any suggestions? The phone is on iOS 7 if that makes any difference.

    Code:
    -sh-4.0# ls /dev/disk0s1
    ls: cannot access /dev/disk0s1: No such file or directory
    -sh-4.0# ls /dev/disk0s1s1
    ls: cannot access /dev/disk0s1s1: No such file or directory
    -sh-4.0# ls /dev/disk0s2s1
    ls: cannot access /dev/disk0s2s1: No such file or directory
    In fact, there are no "disk*" files in /dev at all:
    Code:
    -sh-4.0# ls /dev
    aes_0
    bpf0
    bpf1
    bpf2
    bpf3
    btreset
    btwake
    console
    cu.bluetooth
    cu.builtin-serial4
    cu.debug
    cu.gas-gauge
    cu.highland-park
    cu.iap
    cu.umts
    fsevents
    klog
    md0
    mux.spi-baseband
    null
    pf
    ptmx
    ptyp0
    ptyp1
    ptyp2
    ptyp3
    ptyp4
    ptyp5
    ptyp6
    ptyp7
    ptyp8
    ptyp9
    ptyp1
    ptypb
    ptypc
    ptypd
    ptype
    ptypf
    random
    rmd0
    tty
    tty.bluetooth
    tty.builtin-serial4
    tty.debug
    tty.gas-gaugh
    tty.highland-park
    tty.iap
    tty.umts
    ttyp0
    ttyp1
    ttyp2
    ttyp3
    ttyp4
    ttyp5
    ttyp6
    ttyp7
    ttyp8
    ttyp9
    ttypa
    ttypb
    ttypc
    ttypd
    ttype
    ttypf
    ttys000
    uart.bluetooth
    uart.builtin-serial4
    uart.debug
    uart.gas-gauge
    uart.highland-park
    uart.iap
    uart.umts
    urandom
    vn0
    vn1
    zero

  9. #269
    What's Jailbreak?
    Join Date
    Dec 2013
    Posts
    1
    Thanks
    0
    Thanked 0 Times in 0 Posts

    Would this process fix an ipod touch 4g which is not turning on and sticks on waiting for ipod when restoring in iTunes. The device is not detected in my computer and I have no other access to it.

  10. #270
    Go Wings Zokunei's Avatar
    Join Date
    Jun 2010
    Location
    Michigan
    Posts
    6,273
    Thanks
    103
    Thanked 452 Times in 365 Posts

    Quote Originally Posted by Kolido View Post
    Would this process fix an ipod touch 4g which is not turning on and sticks on waiting for ipod when restoring in iTunes. The device is not detected in my computer and I have no other access to it.
    It could fix it if you have an idea of what's causing the problem and can fix it by accessing the file system.

  11. #271
    What's Jailbreak?
    Join Date
    Mar 2014
    Posts
    1
    Thanks
    0
    Thanked 0 Times in 0 Posts

    Will it work for iOS7 and iPhone 5S?

+ Reply
Page 14 of 14 FirstFirst ... 4121314

LinkBacks (?)

  1. 03-27-2014, 03:56 PM
  2. 03-08-2014, 08:41 PM
  3. 02-14-2014, 09:36 AM
  4. 02-05-2014, 02:56 PM
  5. 12-14-2013, 02:52 PM
  6. 12-06-2013, 10:41 PM
  7. 11-14-2013, 07:01 AM
  8. 10-24-2013, 09:05 AM
  9. 08-15-2013, 07:08 PM
  10. 07-18-2013, 01:28 PM
  11. 07-16-2013, 07:37 PM
  12. 07-14-2013, 08:08 AM
  13. 06-23-2013, 12:04 AM
  14. 05-21-2013, 04:10 AM
  15. 05-11-2013, 03:14 AM
  16. 05-05-2013, 07:07 AM
  17. 05-02-2013, 06:42 AM
  18. 02-24-2013, 06:29 PM
  19. 02-19-2013, 06:37 AM
  20. 02-13-2013, 01:34 PM
  21. 02-12-2013, 06:50 PM
  22. 02-02-2013, 08:02 AM
  23. 01-27-2013, 07:16 AM
  24. 01-09-2013, 02:44 PM
  25. 01-02-2013, 02:32 PM
  26. 12-28-2012, 08:42 AM
  27. 12-04-2012, 03:23 PM
  28. 12-03-2012, 03:12 PM
  29. 12-02-2012, 09:09 AM
  30. 11-20-2012, 08:00 AM
  31. 11-20-2012, 02:51 AM
  32. 10-23-2012, 02:02 AM
  33. 10-19-2012, 09:15 AM
  34. 09-27-2012, 08:26 PM
  35. 09-19-2012, 10:29 AM
  36. 09-19-2012, 05:19 AM
  37. 08-30-2012, 01:21 AM
  38. 08-29-2012, 08:25 AM
  39. 06-19-2012, 08:07 AM
  40. 06-08-2012, 01:15 AM
  41. 05-15-2012, 07:32 AM
  42. 05-06-2012, 04:26 PM
  43. 04-28-2012, 04:05 PM
  44. 04-22-2012, 01:26 AM
  45. 04-16-2012, 07:29 AM
  46. 04-16-2012, 02:24 AM
  47. 04-14-2012, 12:41 PM
  48. 04-11-2012, 09:15 AM
  49. 04-07-2012, 10:08 AM
  50. 04-05-2012, 03:04 PM

Posting Permissions
  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts