MTJailed

Looking at your webserver I think I'll actually use it it looks good, I'll commit later when I finish this exploit. I'll write some simple authentication for it and then...

I don’t see SSH possibilities in the near future, but it should be possible when the exploit is developed further and is able to load and execute arbitrary

*binaries

Setting nonces requires access to nvram which is managed by the kernel. Task for pid zero or host special port 4 is required with remapped kernel pages and kernel memory...

I meant iOS below 11.2.5, in 11.2.5 it has been patched as you can read in the readme. However it is badly patched using an arc4random(), all this does is...

But I’m not gonna work on getting passed the patches. I might give silent hints, but that’s all.

If you read my latest commits you’d have a good hint for 11.2.5

You cannot set a nonce without kernel priviliges. This exploit clearly doesn't mention those ;)

you can now follow the instructions for copying xpc as mentioned in unsandbox of purplesmoke, one of my other projects

I think you can’t edit files with that version. Nevertheless the sandbox exploit doesn’t work yet as it is missing shellcode