Comments (8)
rickmark
commented on August 24, 2024
2
For reasons of forensics / investigation of my devices that seem to have some form of malware persistence, I've started to undertake a read-only version of this work. (I have iDevices that are hiding data in alternate NVMe namespaces).
Feel free to follow along to this: https://github.com/t8012/pongo-flash
from pongoos.
rickmark
commented on August 24, 2024
1
The ipwndfu for t8012 probably works on other chips (for booting without the NAND). @h0m3us3r, @aunali1 and @mrmacarm?
As for storage - since there is no device or driver concept I had to start the work on the internal version of Pongo, and it will probably need some API / design revisions by the team before we want to expose it for dependencies. Rev0 will probably just be SPI/NOR (so just SCfg, effaceable, iBoot and the like)
from pongoos.
tjkr0wn
commented on August 24, 2024
Sounds like an interesting idea. Off the bat, I can think of two ways of implementing this. Either passing an iBoot and extracting the fragments of the driver and reconstructing and sending it to pongoOS, or having to rewrite the driver completely similar to what Brandon Azad did for KTRW (now reimplemented in pongoOS I believe.) What do you think?
from pongoos.
rickmark
commented on August 24, 2024
Best option is a net new implantation as who knows what the side effects of iBoot code can be. If I had time I’d be starting with the SPI first, and later moving to the NAND block layer... I think it works by making requests to ANS2 to drop a block into DRAM via DART
Get Outlook for iOS<https://aka.ms/o0ukef>
…________________________________
From: Tarek Joumaa <[email protected]>
Sent: Friday, October 30, 2020 11:58:31 AM
To: checkra1n/pongoOS <[email protected]>
Cc: Rick Mark <[email protected]>; Author <[email protected]>
Subject: Re: [checkra1n/pongoOS] PongoOS Flash-NOR / SPI driver (#9)
Sounds like an interesting idea. Off the bat, I can think of two ways of implementing this. Either passing an iBoot and extracting the fragments of the driver and reconstructing and sending it to pongoOS, or having to rewrite the driver completely similar to what Brandon Azad did for KTRW (now reimplemented in pongoOS I believe.) What do you think?
—
You are receiving this because you authored the thread.
Reply to this email directly, view it on GitHub<#9 (comment)>, or unsubscribe<https://github.com/notifications/unsubscribe-auth/AAA6TW73BFZO6JXKDYBINNLSNMEFPANCNFSM4LUODPBQ>.
from pongoos.
tjkr0wn
commented on August 24, 2024
Best option is a net new implantation as who knows what the side effects of iBoot code can be. If I had time I’d be starting with the SPI first, and later moving to the NAND block layer... I think it works by making requests to ANS2 to drop a block into DRAM via DART
Get Outlook for iOShttps://aka.ms/o0ukef
From: Tarek Joumaa [email protected]
Sent: Friday, October 30, 2020 11:58:31 AM
To: checkra1n/pongoOS [email protected]
Cc: Rick Mark [email protected]; Author [email protected]
Subject: Re: [checkra1n/pongoOS] PongoOS Flash-NOR / SPI driver (#9)Sounds like an interesting idea. Off the bat, I can think of two ways of implementing this. Either passing an iBoot and extracting the fragments of the driver and reconstructing and sending it to pongoOS, or having to rewrite the driver completely similar to what Brandon Azad did for KTRW (now reimplemented in pongoOS I believe.) What do you think?
—
You are receiving this because you authored the thread.
Reply to this email directly, view it on GitHub#9 (comment), or unsubscribehttps://github.com/notifications/unsubscribe-auth/AAA6TW73BFZO6JXKDYBINNLSNMEFPANCNFSM4LUODPBQ.
Sounds like a worthwhile invest in time as the idea of pongoOS is to overtime turn into an iOS version of Clover afaik.
from pongoos.
tjkr0wn
commented on August 24, 2024
That’s a bit unfortunate. I currently only have a t8015 for testing purposes. Is reversing there a good idea or should I try to focus on the t8012 chip even though I don’t have it.
… On Nov 5, 2020, at 2:52 AM, Rick Mark ***@***.***> wrote:
For reasons of forensics / investigation of my devices that seem to have some form of malware persistence, I've started to undertake a read-only version of this work. (I have iDevices that are hiding data in alternate NVMe namespaces).
Feel free to follow along to this: https://github.com/t8012/pongo-flash
—
You are receiving this because you commented.
Reply to this email directly, view it on GitHub, or unsubscribe.
from pongoos.
tjkr0wn
commented on August 24, 2024
@rickmark I have forked the repo and I'm gonna try to add some reversing/research notes related to the development of the driver there. It's under the same name.
from pongoos.
tjkr0wn
commented on August 24, 2024
@rickmark I'd be happy to help out with the driver in any way I can! My current objective is to get a working PoC functional enough to at least read bytes from NOR
from pongoos.
Related Issues (20)
- variable ... set but not used HOT 2
- Timed out waiting for download mode HOT 2
- Can't build testmodule example (iOS15 Branch) HOT 1
- PongoOS image is too large: must be at most 0x7fe00, have 0xa5060 HOT 1
- ld: symbol(s) not found for architecture arm64 HOT 7
- quick question do i have permission to use some or your code in the repo's on this org? HOT 1
- use framebuffer after lowlevel_cleanup()
- T2 ssh HOT 9
- Ubuntu Build Error : ld: could not process llvm bitcode object file HOT 10
- Android on iOS15 branch currently broken HOT 11
- [Checkra1n development status]
- Questions about PongoOS
- ld: symbol(s) not found for architecture arm64 HOT 1
- Stuck in Booting PongoOS HOT 1
- .asc gpg key checkra1n???? HOT 1
- Support for ipod touch? HOT 2
- Unfortunately, it's a pity that pongoOS can no longer be compiled... HOT 2
- Can't compile pongoOS HOT 7
- [Question] Can pongoOS access to non-volatile memory (like flash) ? HOT 6
- What patches should be applied to pongoOS to do at least rejailbreak on iOS <12? HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from pongoos.