All tools for jailbreaking iOS 13 are closed source, however due to Linus Henze, a new open-source jailbreak tool has been made available to the public. Fugu jailbreak is compatible with any smartphones that use the A10/A10X CPU and are running iOS 13 – iOS 13.5.1.

Install Fugu Jailbreak

Changelog

0.4 Version

  • This version includes persistence, which means that your modifications to the root file system will be saved across reboots.

0.3 version

  • Sileo, SSH, and Substitute now have auto-installers in this edition.
  • Start your iDevice in DFU mode, then launch Fugu iStrap, unlock your iDevice, and follow the on-screen instructions.

0.2 version

  • This version includes preliminary MobileSubstrate functionality.
  • Currently only works in Sileo and Settings; this will be fixed in v0.3.
  • Updated for devices that display a white boot screen

What exactly is Fugu Jailbreak?

Fugu is an open-source jailbreak program that works with all devices that have the A10/A10X CPU and are running iOS 13 – 13.5.1. The jailbreak will automatically install Sileo, SSH, and Substitute. Furthermore, any modifications to the root file system are now permanent. Fugu was tested on the iPad Pro and iPhone 7 using the checkm8 vulnerability.

Checkm8 is a strong open-source vulnerability used by the checkra1n jailbreak to jailbreak numerous iOS devices. It employs an unpatched permanent bootrom exploit that is only compatible with the most recent devices, including the iPhone 11 Pro, iPhone 11, iPhone 11 Pro Max, iPhone XR, iPhone XS Max, iPhone XS, and iPhone XS Max.

Fugu is a macOS-only terminal program that uses checkm8 to exploit your iPhone and upload iStrap, iStrap loader, and iDownload. The iStrap loader is a tiny shellcode that patches iBoot and loads iStrap after iBoot has completed. The kernel bootstrapper iStrap tweaks the kernel and injects boot parameters and shellcode into it. The jailbreak tool is intended for use with iOS 13 – iOS 13.5.1.

Furthermore, Fugu jailbreak includes iDownload, a little program that runs on your iDevice. It will be installed and started instead of launchd on boot. It forks and runs launchd. The forked copy will listen on Port 1337 (only on 127.0.0.1, connect using iproxy) and give a basic bash-like interface.

This jailbreak is presently in development and is only intended for usage by developers. Fugu is distributed under the GNU General Public License, and anybody interested in seeing how it works may access the source code on GitHub.

To jailbreak your iPhone or iPad running iOS and iPadOS 13, enter DFU mode, launch “Fugu iStrap,” unlock your device, and follow the on-screen instructions.

How to Run Fugu Jailbreak from the Terminal

Usage: Fugu <action> <parameters>
Where action can be one of:
    pwn
        Usage:
            Fugu pwn <optional parameters>
        Description:
            Pwn an iDevice using checkm8.
        Optional Parameters:
            -e, --ecid <value>    The ECID of the device to pwn. Will pwn the first device found if unset.

    rmsigchks
        Usage:
            Fugu rmsigchks <optional parameters>
        Description:
            Disable signature checking in the SecureROM of a device.
            Currently supports: t8010, t8011.
            Device will be pwned if it is not already.
        Optional Parameters:
            -e, --ecid <value>    The ECID of the device. Will use the first device found if unset.

            Fugu rmsigchks <optional parameters>
        Description:
            Disable signature checking in the SecureROM of a device.
            Currently supports: t8010, t8011.
            Device will be pwned if it is not already.
        Optional Parameters:
            -e, --ecid <value>    The ECID of the device. Will use the first device found if unset.

    iStrap
        Usage:
            Fugu iStrap <optional parameters>
        Description:
            Send iStrap to device and boot kernel.
            Currently supports: t8010, t8011.
            Device will be pwned if it is not already.
        Optional Parameters:
            --no-install    Do not install iDownload. Can only be used if it is currently installed.
                            Will save ~100 KB of RAM.
                            Note that iDownload will be deleted when booting without the jailbreak.
            --boot-args <value>    Set custom boot args.
            -e, --ecid <value>     The ECID of the device. Will use the first device found if unset.
            --restore-fs    Restore the root filesystem.
                            This will NOT rename the filesystem snapshot!
                            This option disables the jailbreak.

    lzss
        Usage:
            Fugu lzss [input] [output] <optional parameters>
        Description:
            lzss encode a file so that iBoot will like it.
        Required Parameters:
            [input <value>]     The  input file
            [output <value>]    The output file
        Optional Parameters:
            --kpp <value>       KPP file, will be appended to the data

pic by – kubadownload

Leave a Reply

Your email address will not be published. Required fields are marked *