forked from GotoHack/iphone-dataprotection
-
Notifications
You must be signed in to change notification settings - Fork 2
/
Copy pathboot.py
executable file
·69 lines (56 loc) · 2.16 KB
/
boot.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
#!/usr/bin/python
import glob, os,sys
#return list of (ipsw,kernel,ramdisk)
def list_bootable():
res = []
for ipsw in glob.glob("data/ipsw/*.ipsw"):
ipsw_id = os.path.basename(ipsw).replace("_Restore.ipsw", "")
kernel = os.path.join("data", "boot", "kernel_%s.patched" % ipsw_id)
ramdisk = os.path.join("data", "boot", "ramdisk_%s.dmg" % ipsw_id)
if os.path.exists(kernel) and os.path.exists(ramdisk):
res.append((ipsw, kernel, ramdisk))
return res
def main():
l = list_bootable()
if len(l) == 0:
print "Nothing to boot, run ./build.py"
return
elif len(l) == 1:
ipsw, kernel, ramdisk = l[0]
else:
print "Choose IPSW :"
for i in xrange(len(l)):
print "[%d] %s" % (i+1, os.path.basename(l[i][0]))
while True:
x = raw_input("> ")
if x.isdigit():
x = int(x)
if x > 0 and (x-1) < len(l):
ipsw, kernel, ramdisk = l[x-1]
break
print "Invalid choice"
REDSN0W_VERSION = "0.9.15b3"
if ipsw.find("iPod2,1") != -1:
REDSN0W_VERSION = "0.9.14b2" #older version for ipt2
if sys.platform != "darwin":
print "redsn0w steaks4uce exploit for ipt2 seems broken on Windows, but it works on OSX"
return
if sys.platform == "darwin":
REDSNOW_PATH = "redsn0w_mac_%s/redsn0w.app/Contents/MacOS/redsn0w" % REDSN0W_VERSION
else:
REDSNOW_PATH = "redsn0w_win_%s\\redsn0w.exe" % REDSN0W_VERSION
if not os.path.exists(REDSNOW_PATH):
print "Extract %s in current directory" % REDSNOW_PATH.split(os.sep)[0]
return
print "Using %s" % ipsw
#cs_enforcement_disable=1
bootargs = "-v rd=md0 amfi=0xff msgbuf=409600"
if raw_input("Use nand-disable boot flag ? [y/n] ") == "y":
bootargs += " nand-disable=1"
cmdline = "%s -i %s -k %s -r %s -a \"%s\"" % (REDSNOW_PATH, ipsw, kernel, ramdisk, bootargs)
print "Boot args: %s" % bootargs
print "Command line: %s" % cmdline
print "Launching redsn0w..."
os.system(cmdline)
if __name__ == "__main__":
main()