khanhduytran0

Recap

As you may have known, we recently managed to bring multitask to LiveContainer. This originally came from FrontBoardAppLauncher which was reverse engineered of various Apple apps: ClarityBoard, SpringBoard, Xcode PreviewShell, etc. A quick recap of how we worked on it:

• I began reverse engineering said apps to study how to use various Private API of FrontBoard, RunningBoardServices and UIKit, resulted in MySystemShell and FrontBoardAppLauncher
• I found app could spawn multiple processes thanks to the writeup of NSExtension
• We found we could extend memory limit by setting a hidden NSExtensionPointIdentifier

However, as more and more people get to try it, we were reported that physical keyboard input wouldn't work. (LiveContainer/LiveContainer#524)

If anyone could figure it out, we will forever owe you.

zhuowei

Params being sent to the server are: {
    AssetAudience = "02d8e57e-dd1c-4090-aa50-b4ed2aef0062";
    AssetType = "com.apple.MobileAsset.iOSSimulatorRuntime";
    BaseUrl = "https://mesu.apple.com/assets/macos/";
    BuildID = "DCC8573C-1754-11F0-A9CC-CAEE899DAE5C";
    BuildVersion = 24E263;
    CertIssuanceDay = "2024-12-05";
    ClientData =     {
        AllowXmlFallback = false;
        DeviceAccessClient = xcodebuild;

ChiChou

1. install swift
2. install ida.swift to $PATH/ida

wh1te4ever

//
//  ViewController.m
//  JBDetectTest
//
//  Created by seo on 3/27/25.
//

#import "ViewController.h"
#import <dlfcn.h>

JJTech0130

#import <Foundation/Foundation.h>
#import <mach/mach.h>
#import <stdio.h>
#import <stdlib.h>
#import <string.h>
#include <libkern/OSCacheControl.h>

const int REGION_SIZE = 0x4000*1;

void write_instructions(void* page)

khanhduytran0

#ifndef _MOUNT_ARGS_H
#define _MOUNT_ARGS_H

#include <stdint.h>
#include <sys/time.h>
#include <unistd.h>
#include <fcntl.h>
#include <sys/types.h>

enum {

pookjw

@available(iOS 15.0, *)
public struct RichTextEditor : SwiftUICore.View {
  public init(text: SwiftUICore.Binding<Foundation.AttributedString>)
  @_Concurrency.MainActor @preconcurrency public var body: some SwiftUICore.View {
    get
  }
  @available(iOS 15.0, *)
  public typealias Body = @_opaqueReturnTypeOf("$s7SwiftUI14RichTextEditorV4bodyQrvp", 0) __
}
@available(*, unavailable)

donato-fiore

#import <Foundation/Foundation.h>

@interface NSObject (Private)
- (id)safeValueForKey:(NSString *)key;
@end

@interface NSArray (BaseBoard)
- (id)bs_mapNoNulls:(id (^)(id))arg1;
- (id)bs_flatten;
- (id)bs_filter:(BOOL (^)(id))arg1;

justtryingthingsout

S3_3_c4_c5_0 at min EL0: DSPSR
S3_3_c4_c5_1 at min EL0: DLR
S3_6_c4_c0_0 at min EL3: SPSR_EL3
S3_6_c4_c0_1 at min EL3: ELR_EL3
S3_1_c0_c0_0 at min EL1: CCSIDR_EL1
S3_6_c1_c0_0 at min EL3: SCTLR_EL3
S3_6_c1_c0_1 at min EL3: ACTLR_EL3
S3_6_c1_c1_2 at min EL3: CPTR_EL3
S3_6_c1_c1_0 at min EL3: SCR_EL3
S3_6_c1_c3_1 at min EL3: MDCR_EL3

EthanArbuckle

#import <CoreGraphics/CoreGraphics.h>
#import <Foundation/Foundation.h>
#import <objc/runtime.h>
#import <objc/message.h>
#import <dlfcn.h>

__attribute__((constructor)) static void init(void) {
    
    Method bundleIdentifierMethod = class_getInstanceMethod(objc_getClass("NSBundle"), sel_registerName("bundleIdentifier"));
    IMP newImp = imp_implementationWithBlock(^(id self) {