Jump to content
administration

iPhone 5 root

By administration, in Mobile security

Recommended Posts

danger2u Newbie

danger2u

Posted
Posted
salut vreau sa folosesc un iPhone 5 neactivat pe post de iPod, cum pot ajunge la fisierele de sistem ale unui iphone 5 cu ios 7?

la iphone 4 mergea faza cu cele 3 programele : TinyUmbrella WinSCP Java file dar pe iPhone 5 am inteles ca da eroare la baseband.

iFunbox

da de Google nu ai auzit??

Link to comment
Share on other sites
danger2u Newbie

danger2u

Posted
Posted
ce e google ? crezi ca impresionezi pe cineva cu basinile astea?

ma coi*ta nu era ptr tine raspunsul.si ce ai postat tu acolo nu face nimic,nu o sa poata activa telefonul daca e blocat prin Icloud.asa ca inainte sa comentezi gandeste-te de 2 ori.

nu imi permite acces la aplicatii?

ai acolo User applications

fa jb si o sa ai si acces la sistem dar daca e blocat prin iCloud NU POTI SA FACI NIMIC.

Link to comment
Share on other sites
danger2u Newbie

danger2u

Posted
Posted
@danger2u da, dar î?i d? posibilitatea s? afli contul de iCloud, email-ul, pula mea.

da frate dar daca e furaciune ce faci cu el??

crezi ca proprietarul e asa prost sa iti dea parola tie???

doar sa ii trimiti un email fals si sa ii ceri fictiv sa isi schimbe parola si sa o trimita pe un email fals facut de tine.

cam greu sa functioneze.

Link to comment
Share on other sites
Reebock Newbie

Reebock

Posted
Posted
salut vreau sa folosesc un iPhone 5 neactivat pe post de iPod, cum pot ajunge la fisierele de sistem ale unui iphone 5 cu ios 7?

la iphone 4 mergea faza cu cele 3 programele : TinyUmbrella WinSCP Java file dar pe iPhone 5 nu merge...

ip2.jpg

Specifica si faptul ca nu ai userul si parola de la icloud, deci e blocat, nu-l poti activa, nu-i poti face jailbreak, prin urmare NU il poti activa FREE momentan.

Bypass la icloud, FREE, momentan exista doar la cele cu chip A4, deci de la iPhone 4 in jos, voi face un tutorial zilele astea.

Link to comment
Share on other sites
administration Newbie

administration

Posted
  • Author
Posted (edited)
ce e google ? crezi ca impresionezi pe cineva cu basinile astea?

Despre iPhone 5, 5C, 5S si iCloud:

metoda asta de mai sus este mangleala (is fake) :))) nu merge am testat !!

poate doar uneori cand utilizatorul utilizeaza acest program, daca nu da default la cont : exemplu@icloud.com pass:*****) este foarte greu sa aduci telefonul in modul "voice control" dupa ce ai incercat toate porcariile pe el.. daca nu incerci din prima asta se "fute" modul voice control...

cum sa aduci inapoi modul voice control:

-restart la tel

-apare marul...astepti sa intre in sleep ... dupa care tastezi repejor de trei ori butonul home, astepti 2 secunde si daca nu se intampla nimic reincerci inca o data sa apesi de 3 ori consecutiv butonul home, mergi cu voice control on pana unde poti dupa care dezactivezi, recomand metoda de mai sus pentru facetalk dar cu sim-ul inauntru, vezi mai multe pe youtube cu sim inauntru. ca sa misti cursorul voice control dai stanga dreapta pe o zona libera de pe ecran.

========================

problema este ca chip-ul este A6 :(

OS-ul este "incapsulat" nici un port deschis.

poti folosi iPhone 5 doar ca si camera foto ...metoda 112/911 cu 3 apasari de power off, se intra in recent calls..etc add new contact add contact image si acolo merge camera, imaginile le extragi cu i-funbox..

in iTunes cand se deschide apare pagina de activare, pe o captura WS cand trimiti datele de activare se vede :

protocol:DNS

albert.apple.com

albert.gcsis-apple.com.akadns.net

irr1.jpg

irr2.jpg

---------

17.171.27.65 protocol: TCP TLSV1

am sa fac captura si la wireless, cand gasesc un router care sa imi permita interceptarea pachetelor sau poate ma ajuta cineva cu BT5 pe laptop...

---------

am incercat si cu USBlyzer dar imi afiseaza doar request-urile de device, vendor, ID si niste request-uri pentru kernel cu union_ID_LIST, ..etc

---------

daca scot wan-ul din router si setez in localhost sau pe router domeniul server-ului apple si clonez secventa de autentificare si request-urile cate sanse sunt sa se logheze dispozitivul?

am gasit ceva aici despre secventa de logare dar nu cred ca este pt. dispozitivele iPhone/iPod:


def getContactsList(self)
def getNotesList(self)
def getActiveRemindersList(self)
def getCompletedRemindersList(self)
def findMyIphone(self, refresh=False)

def refreshWebAuth(self)

def logout(self)
def authenticate(self, rememberMe=False)

def __init__(self, login, password):

USAGE EXAMPLE:
testCloud = iCloud(login="email@icloud.com", password="123456")
testCloud.authenticate()
print (testCloud.getContactsList())
testCloud.logout()

=======================

:)


# Depends on http://pypi.python.org/pypi/httplib2
import httplib2

import json, uuid, hashlib, sys

# Available both for Python 2.x and 3.x (tested on 2.7, 2.6 and 3.3)
if sys.version_info >= (3,0,0): from http.cookies import SimpleCookie
else: from Cookie import SimpleCookie

class iCloudException(Exception):
	def __init__(self, value):
		self.value = value

	def __str__(self):
		return repr(self.value)

class iCloud():

	# The list of the URLs for requests
	urls = {
		"version": "https://www.icloud.com/system/version.json",
		"validate": "https://setup.icloud.com/setup/ws/1/validate?clientBuildNumber={0}&clientId={1}",
		"authenticate": "https://setup.icloud.com/setup/ws/1/login?clientBuildNumber={0}&clientId={1}",
		"logout_no_services": "https://setup.icloud.com/setup/ws/1/logout",
		"get_contacts_list": "{0}/co/startup?clientBuildNumber={1}&clientId={2}&clientVersion=2.1&dsid={3}&id={4}&locale=en_US&order=last%2Cfirst",
		"refresh_web_auth": "{0}/refreshWebAuth?clientBuildNumber={1}&clientId={2}&dsid={3}&id={4}",
		"get_notes_list": "{0}/no/startup?clientBuildNumber={1}&clientId={2}&dsid={3}&id={4}",
		"get_active_reminders": "{0}/rd/startup?clientVersion=4.0&dsid={1}&id={2}?=en-us&usertz=US%2FPacific",
		"get_completed_reminders": "{0}/rd/completed?clientVersion=4.0&dsid={1}&id={2}?=en-us&usertz=US%2FPacific",
		"fmi": None,
		"fmi_init": "{0}/fmipservice/client/web/initClient?dsid={1}&id={2}",
		"fmi_refresh": "{0}/fmipservice/client/web/refreshClient?dsid={1}&id={2}",
		"get_calendar_events": "{0}/ca/events?clientBuildNumber={1}&clientID={2}&clientVersion=4.0&dsid={3}&endDate={4}&id={5}?=en-us&requestID=1&startDate={6}&usertz=US%2FPacific"
	}

	http = None
	cookies = SimpleCookie()

	clientId = None
	clientBuildNumber = None

	login = None
	password = None
	instance = None
	checksum = None

	webservices = {}

	# The dict of iCloud account details
	dsInfo = {}

	# Logout from iCloud
	def logout(self):
		return self.__callapi(request="logout")

	# Should be called every 10 minutes on idle for updating auth tokens
	def refreshWebAuth(self):
		return self.__callapi(request="refreshWebAuth")

	# Returns the list of all contact from iCloud
	def getContactsList(self):
		return self.__callapi(request="getContactsList")

	# Returns the list of all notes from iCloud
	def getNotesList(self):
		return self.__callapi(request="getNotesList")

	# Returns the list of all active reminders from iCloud
	def getActiveRemindersList(self):
		return self.__callapi(request="getActiveRemindersList")

	# Returns the list of all completed reminders from iCloud
	def getCompletedRemindersList(self):
		return self.__callapi(request="getCompletedRemindersList")

	# Returns the location of all devices available from Find My iPhone
	# Call with refres=True until you get updated data
	def findMyIphone(self, refresh=False):
		fmiData = None
		fmiDict = {
			"clientContext": {
				"appName": "iCloud Find (Web)",
				"appVersion": "2.0",
				"timezone": "US/Pacific",
				"inactiveTime": 1,
				"apiVersion": "3.0"
			}
		}

		if refresh: self.urls["fmi"] = self.urls["fmi_refresh"]
		else: self.urls["fmi"] = self.urls["fmi_init"]

		try: fmiData = self.__callapi(request="findMyIphone", params=fmiDict)
		except (iCloudException): self.login()

		fmiData = self.__callapi(request="findMyIphone", params=fmiDict)

		return fmiData

	# Returns the list of all calendar events between the dates
	# Date format is YYYY-MM-DD
	def getCalendarEvents(self, efrom, eto):
		return self.__callapi(request="getCalendarEvents", params={"from":efrom, "to": eto})

	# Private method for calling API methods
	def __callapi(self, request, params={}):
		callURL = None
		callPayload = ""
		method = "GET"

		if request == "getContactsList":
			callURL = self.urls["get_contacts_list"].format(self.webservices["contacts"]["url"], self.clientBuildNumber, self.clientId, self.dsInfo["dsid"], self.checksum)
		elif request == "refreshWebAuth":
			callURL = self.urls["refresh_web_auth"].format(self.webservices["push"]["url"], self.clientBuildNumber, self.clientId, self.dsInfo["dsid"], self.checksum)
		elif request == "getNotesList":
			callURL = self.urls["get_notes_list"].format(self.webservices["notes"]["url"], self.clientBuildNumber, self.clientId, self.dsInfo["dsid"], self.checksum)
		elif request == "getActiveRemindersList":
			callURL = self.urls["get_active_reminders"].format(self.webservices["reminders"]["url"], self.dsInfo["dsid"], self.checksum)
		elif request == "getCompletedRemindersList":
			callURL = self.urls["get_completed_reminders"].format(self.webservices["reminders"]["url"], self.dsInfo["dsid"], self.checksum)
		elif request == "logout":
			if "account" in self.webservices:
				callURL = self.webservices["account"]["url"] + "/setup/ws/1/logout"
			else:
				callURL = self.urls["logout_no_services"]
		elif request == "findMyIphone":
			callPayload = json.dumps(params)
			callURL = self.urls["fmi"].format(self.webservices["findme"]["url"], self.dsInfo["dsid"], self.checksum)
		elif request == "getCalendarEvents":
			callURL = self.urls["get_calendar_events"].format(self.webservices["calendar"]["url"], self.clientBuildNumber, self.clientId, self.dsInfo["dsid"], params["to"], self.checksum, params["from"])

		else: raise iCloudException("wrong call request")

		if callPayload != "": method = "POST"

		resp, data = self.http.request(callURL, method, headers = {
			"Origin": "https://www.icloud.com",
			"Referer": "https://www.icloud.com",
			"Cookie": self.__prepare_cookies()
		}, body = callPayload)

		if "set-cookie" in resp:
			self.__update_cookies(resp["set-cookie"])

		if resp.status != 200:
			raise iCloudException(request + " did not suceed")

		try: return json.loads(data.decode('utf-8'))
		except (ValueError): return {} 

	# Login to the iCloud
	# Use rememberMe=True if you need long term login
	# You should consider storing self.cookies somewhere 
	# using serialization/deserialization if you need real long-time sessions 
	def authenticate(self, rememberMe=False):
		authURL = self.urls["authenticate"].format(self.clientBuildNumber, self.clientId)

		self.checksum = hashlib.sha1(self.login.encode('utf-8') + self.instance.encode('utf-8')).hexdigest().upper()

		authDict = {
			"apple_id": self.login,
			"password": self.password,
			"id": self.checksum,
			"extended_login": rememberMe
		}

		resp, data = self.http.request(authURL, "POST", headers = {
			"Origin": "https://www.icloud.com",
			"Referer": "https://www.icloud.com",
			"Cookie": self.__prepare_cookies()
		}, body = json.dumps(authDict))

		jdata = json.loads(data.decode('utf-8'))

		if "instance" not in jdata:
			raise iCloudException("wrong login data format")

		if "set-cookie" in resp:
			self.__update_cookies(resp["set-cookie"])

		self.instance = jdata["instance"]

		if resp.status != 200 or "error" in jdata:
			raise iCloudException("authentication did not succeed")

		if "webservices" not in jdata or "dsInfo" not in jdata:
			raise iCloudException("wrong login data format")

		self.webservices = jdata["webservices"]
		self.dsInfo = jdata["dsInfo"]

	# Private method for updating cookies dict from every request
	def __update_cookies(self, respcookies):
		tmpCookies = SimpleCookie()
		tmpCookies.load(respcookies)

		for cookie in tmpCookies:
			self.cookies[cookie] = tmpCookies[cookie].value

	# Private method for returning cookies in format that could be used in Cookie: header
	def __prepare_cookies(self):
		return self.cookies.output(sep=";", attrs=["value"], header="").strip()

	# Private method for validating session cookies
	def __validate(self):
		validateURL = self.urls["validate"].format(self.clientBuildNumber, self.clientId)
		resp, data = self.http.request(validateURL, "POST", headers = {
			"Origin": "https://www.icloud.com",
			"Referer": "https://www.icloud.com",
			"Cookie": self.__prepare_cookies()
		})

		if "set-cookie" in resp:
			self.__update_cookies(resp["set-cookie"])

		jdata = json.loads(data.decode('utf-8'))

		if "instance" not in jdata:
			raise iCloudException("wrong validate data format")

		self.instance = jdata["instance"]

	# Get buildNuber and generate clientID
	def __init__(self, login, password):
		self.http = httplib2.Http()

		self.clientBuildNumber = "1P24"
		self.clientId = str(uuid.uuid1()).upper()

		self.login = login
		self.password = password

		self.__validate()

""" 
USAGE EXAMPLE
testCloud = iCloud(login="email@icloud.com", password="123456")
testCloud.authenticate()
print (testCloud.getContactsList())
testCloud.logout()
"""

sursa:

https://github.com/mindcollapse/iCloud-API

nu prea ma pricep la protocoale de comunicare, nu imi dau seama ce foloseste bucata asta de metal ca sa clonez autentificarea, poate ma ajuta cineva !

p.s nu am incercat in DFU mode sa vad logurile dar nu cred ca e ceva interesant acolo...? stiu sigur ca cineva utilizeaza aceasta metoda de rutare a logarii in tara, am vazut un telefon deblocat icloud si nu era modificat imei-ul !

Stiu ca se poate face BruteF,Scam..etc deci:

scopul acestui post nu este pentru frauda doar pentru test/uz personal pe localhost. Datele de aici le utilizati conform celui care a dezvoltat functiile (https://github.com/mindcollapse/iCloud-API)

IMG_0005.png

IMG_0006.png

IMG_0007.png

IMG_0008.png

IMG_0009.png

Edited by administration
Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
Go to topic listing
×
×
  • Create New...