For questions about jailbreaking/rooting mobile devices, as well as questions about security issues specific to jailbroken/rooted mobile devices.
Questions tagged [jailbreak]
19 questions
10
votes
2 answers
Genuineness of Application Pentest On Jailbroken iOS Device
Having read books on iOS Pentesting, I noted almost all security testcases or tool(s) require a jailbroken device.
I looked for information about this, because it is needed to perform those tests or to use those tools, and I understood it.
But I…
Hoper
- 255
- 3
- 10
5
votes
2 answers
Preventing users from bypassing root/jailbreak detection measures
A pentest was made to our mobile app (Android and iOS version) and we received feedback stating that jailbreak/root detection was ineffective because it was relatively easy to reverse engineer the application and change the return value of the…
Victor
- 189
- 1
- 6
3
votes
2 answers
Why doesn't Apple prevent iPhone jailbreaking by encrypting iOS and installing it on an independent chip?
Why doesn't Apple prevent iPhone jailbreaking by encrypting iOS and installing it on an independent chip?
With this I mean iOS will be encrypted with AES or any other very strong encryption algorith to prevent jailbreaking. It would also have its…
agarwaen
- 41
- 1
3
votes
1 answer
What happens to data in the Secure Element when a device is Jailbroken?
I want to store a key in the SecureElement within a non-Jailbroken device.
What happens when a device is Jailbroken? Knowing that the private key can't be extracted, can the key be used to sign or encrypt date when it transitions from non Jailbroken…
makerofthings7
- 50,090
- 54
- 250
- 536
3
votes
0 answers
Does hardware encryption fail for jailbroken iOS device?
I know that iOS has a hardware encryption that it encrypts all your data using your passcode when the screen is locked. However, when I jailbreak my iPhone and ssh to the iOS device, I can browse all the data on my iPhone even my iPhone is screen…
n3v3rm03
- 143
- 3
2
votes
1 answer
Security implications of rooting a SmartTV (LG)
This webpage will exploit your LG webOS smart TV, gain local root
privileges, and install the webOS Homebrew Channel.
rootmy.tv
I really hate the constant ad breaks on YouTube and have rooted my LG TV to install an alternative YouTube client (with…
Sybil
- 1,435
- 2
- 15
- 29
2
votes
0 answers
iOS secure enclave and jailbreak
If an iOS device is jailbroken, I understand an attacker cannot extricate key material from the secure enclave. But would they be able to use keys using CryptoKit within the enclave to encrypt a password stored within keychain?
Or do the CrytpoKit…
Ranjit Murali
- 21
- 2
2
votes
1 answer
How to prevent "JailBreak detection bypass" by Cydia tools such as "Flex 3" etc?
For sensitive mobile apps such as banking applications, it is recommended to detect if the device is JailBroken and prevent the application from working on that device.
But there are tools such as "Flex 3" on Cydia which allow users to bypass this…
Nitin_Ramesh
- 137
- 2
- 9
2
votes
1 answer
How much of the FUD around jailbreaking has any merit?
So many security vendors and app providers warn us users against jailbreaking iOS devices. The fear mongering is often very dramatic. However I can't find real world examples of actual problems caused by jailbreaking. Have they all been covered up…
user12824
- 21
- 1
2
votes
2 answers
Is it realistic for a script kiddie to remotely hack into a jailbroken iPhone?
If my iPhone was jailbroken and I plugged it into a computer controlled by the hacker, unlocked the phone, and clicked "trust this computer" to share photos with it, would it be realistic for a typical script kiddie to hack into my iPhone or is that…
genealogyxie
- 431
- 3
- 13
2
votes
2 answers
Should an iOS app be allowed to run on jailbroken devices?
Considering the iOS apps which are to be used by general public (transfer money, booking tickets, chat, video etc):
Is there a way so that an app can't be installed on a jailbroken device?
If an app is made such that it doesn't run on a…
one
- 1,781
- 3
- 18
- 45
1
vote
0 answers
Is it possible to bypass the iOS dialogue for taking pictures to upload existing files?
Scenario: An iOS application that prompts the users to take a picture with their iPhone camera. These pictures (e.g. of documents) will then be uploaded to our server.
Is there a possible way for an attacker to bypass the dialogue and directly…
flug.beton
- 11
- 1
1
vote
1 answer
What is a spinner (empty while loop) doing, and why?
I've seen that in the latest iOS jailbreak, they use so called "spinners". What exactly is a spinner doing? And why?
Apparently it's "blocking the thread execution", but why does the exploit need that?
G. Ramistella
- 113
- 4
1
vote
1 answer
How do iOS Jailbreaks work?
I know that iOS Jailbreaks are just simply exploits for iOS to get root on the device, but what files do they modify/what techniques are used in order to gain root on the device? Can't you just log in to the root account in iOS? The password for…
noodles
- 83
- 4
0
votes
0 answers
Is it possible to inject code using physical memory access to jailbreak phones?
Is it possible to inject code into RAM using physical access? For example desolder the RAM chips, solder something between the original RAM chip and the phone motherboard, and use that to directly access RAM chip content and inject code into the…
userdatagram
- 1
- 1