General checkra1n MEGATHREAD • permanent jailbreak for A5-A11 | iOS 12+ & 13+ [checkm8]

ubyt3x · November 10, 2019

@axi0mX announced a BootROM exploit for the most generations of iPhones and iPads (A5-A11) on the 27th of september.

This means, that the code, that is executed first inside the device can get manipulated and patched. This gives us many ways to customize the device.
Because we're talking about a ROM - read-only memory - here, this vulnerability can't get patched by updates from Apple or any other way without physical access.

You could have a permanent jailbreak without any problems upgrading to the newest iOS, install custom/modded IPSWs, downgrade iOS, configure Dual Boot (including Linux and co), break iCloud locks and much more.

I will keep you updated with this thread. But be sure to follow the twitter and reddit threads of the crew!

Today, the 10th of november, checkra1n - a jailbreak using the checkm8 exploit - got released by @qwertyoruiopz, 2 days after his talk on POC2019.
I recommend taking a look at his presentation slides. There he explains how the exploit works and how exactly the vulnerability gets exploited for the jailbreak. Very detailed and exciting!

checkra1n: website (downloads) • twitter

Windows and Linux support is coming soon. But why so late?
Look at the slides from qwertyoruiopz. He explains how the host (the PC) communicates with the iDevice and how the exploitation occures there.
Connecting the device with a mac and exchaning data between host and device works differnt there as it would be on windows or linux. The drivers are different.
As far as I know, there were some small issues with the windows/linux drivers which lead to a mac-only pre-release. But it's being worked on.
You can stalk him and the other team members on twitter and look at the chronicle to get more information.

What I find interesting is this quote from one of the slides:

Quote

Ideally our aim for this project is to move from being a pure jailbreak to providing something like an iOS version of Clover

• Custom on-boot kernel extension loading

• Dual booting

• Linux on iPhone

from the presentation slide: Future Plans • Screenshot

Quote

This release is an early beta preview and as such should not be installed on a primary device. We strongly recommend proceeding with caution.

Unsupported devices

checkra1n will eventually support all devices between the iPhone 5s and the iPhone X, however, this beta lacks support for the following devices:

iPad Air 2

iPad 5th Gen

iPad Pro 1st Gen

Support for these devices will be added in a later release.

Support for the following devices is experimental, and may require more attempts than usual:

iPhone 5s

iPad Mini 2

iPad Mini 3

iPad Air

Reliability on these devices will be improved in future releases.

Unsupported platforms

This beta is only available for macOS. Work is ongoing to support Windows and Linux, which will be added in a later release.

Package managers

At the moment, checkra1n only supports installing Cydia. Support for other package managers is coming soon, and will not require a checkra1n update.