Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/benjamin-42/trident
32-bit exploit for iOS <9.3.5
https://github.com/benjamin-42/trident
Last synced: 9 days ago
JSON representation
32-bit exploit for iOS <9.3.5
- Host: GitHub
- URL: https://github.com/benjamin-42/trident
- Owner: benjamin-42
- Created: 2016-12-11T08:11:07.000Z (almost 8 years ago)
- Default Branch: master
- Last Pushed: 2018-07-27T21:19:37.000Z (over 6 years ago)
- Last Synced: 2024-08-01T09:21:28.142Z (3 months ago)
- Language: C
- Homepage:
- Size: 222 KB
- Stars: 279
- Watchers: 34
- Forks: 115
- Open Issues: 3
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# Trident
This exploits the following two CVEs:
* CVE-2016-4655: allow an attacker to obtain sensitive information from kernel memory via a crafted app
* CVE-2016-4656: allow an attacker to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted appCVE-2016-4657 (WebKit exploit) is NOT included despite the name of the project being called *Trident*. Only kernel vulnerabilities are being exploited here.
The objective of the exploit is to gain root access over the device.
At this point it would be possible to jailbreak the device by applying more patches to the kernel (for sandbox, code signing enforcement and more). jk9357 did it and released [Home Depot](http://wall.supplies), a jailbreak based on this exploit.
iOS 9.3.5 is not supported as vulnerabilities have been patched in that version.
Supported devices: see offsetfinder.h
[Guide for finding offsets by angelXwind](https://angelxwind.net/?page/trident-address-tutorial)
References:
[Original exploit disclosure by Lookout](http://info.lookout.com/rs/051-ESQ-475/images/lookout-pegasus-technical-analysis.pdf)
[OS X exploit by jndok](https://jndok.github.io/2016/10/04/pegasus-writeup/)Thanks: Lookout, Pangu team, i0n1c, jndok, kernelpool, planetbeing, qwertyoruiop, winocm
> I could feel
> it coming back
> I didn't know
> was I built to last
> I've come so far so fast
> and it feels like a hundred years
> am I dreaming'
> is it gonna last
> I could be
> better still
> than anything
> I've done
> I know ya think
> You could do too
> I know ya think
> You feel it's true
> Its the little things in life
> that I feel