Welcome to Hoyt's SRD Repo for the Apple Security Research Device. Contribute Code or Open an Issue or Discussion.
Hi!
I am David Hoyt.
I was in the Apple Security Research Device Program for 2021 & 2022.
Apple sent me an iPhone 11 & iPhone 12 for A/B testing, very helpful.
I still update various Code, Tooling, Script, Crashes and PoC's etc..
I am still processing over 100Tb of Data generated during those 2 years with thousands of Crashes.
Some of the Code and Goodies are in this Repo
nm -a com.example.cryptex.dstroot/usr/bin/toybox | wc -l
941
Install my Pre-Built SRD DMG
/bin/bash -c "$(curl -fsSL https://raw.githubusercontent.com/xsscx/srd/main/dmg/install.sh)"
Build OS & Device Info | Example DMG | debugserver DMG | ASAN DMG | UBSAN DMG |
---|---|---|---|---|
macOS 13.0.1 22A400 X86_64 | PASS | PASS | PASS | PASS |
macOS 13 Beta T8101 | PASS | PASS | PASS | PASS |
X86_64 Install to iPhone 11 16.2_20C5049e | PASS | PASS | PASS | PASS |
T8101 Install to iPhone 12 16.2_20C5049e | PASS | PASS | PASS | PASS |
Signed File: iPhone11,8,iPhone12,1_15.5_19F77_Restore.ipsw | defaults write com.apple.AMPDevicesAgent ipsw-variant -string 'Research Customer Erase Install (IPSW)'
Signed File: iPhone13,2,iPhone13,3_15.5_19F77_Restore.ipsw | defaults write com.apple.AMPDevicesAgent ipsw-variant -string 'Research Customer Erase Install (IPSW)'
Signed File: iPhone12,1_16.0_20A5328h_Restore.ipsw | defaults write com.apple.AMPDevicesAgent ipsw-variant -string 'Research Developer Erase Install (IPSW)'
Signed File: iPhone13,2,iPhone13,3_16.0_20A5328h_Restore.ipsw | defaults write com.apple.AMPDevicesAgent ipsw-variant -string 'Research Developer Erase Install (IPSW)'
Source: https://github.com/apple/security-research-device/tree/main/example-cryptex
DMG: https://github.com/xsscx/srd/raw/main/dmg/srd-universal-cryptex.dmg
Discussion: nvram settings disabling KTRR, CTRR and kASLR https://github.com/apple/security-research-device/discussions/2
IPSW & Cryptex Installations
Pre-built DMG's for the Apple Security Research Device
Sample Code
/bin/bash -c "$(curl -fsSL https://raw.githubusercontent.com/xsscx/srd/main/srd_tools-24.100.3/example-cryptex/srd-cryptex-logcollector.sh)"
sysctl -a | grep CPU
machdep.cpu.brand_string: Intel(R) Core(TM) i7-8700B CPU @ 3.20GHz
SRD's - iPhone 11 and iPhone 12
iPhone 12 Pro Max
iPad 12 Pro
X86_64 mini
M1 T8101
xcrun -sdk iphoneos clang -g -O2 -mios-version-min=14.3 -DDEBUG=0 -Wall -Wpedantic -Wno-gnu -Werror -Wunused-variable -o a.out code.s