当前位置:网站首页>IPad air1 12.5.5 checkra1n jailbreak + bypass ID

IPad air1 12.5.5 checkra1n jailbreak + bypass ID

2022-04-19 07:05:31 Qiu Tian_

ipad air1 12.5.5 checkra1n Prison break + Bypass ID

my IPAD AIR1 It's a demon machine , The hard disk has been expanded , The serial number has been changed .

​ One day I want to install duet display( Paid software ) hold IPAD As PC The secondary display , Then I bought an account on Taobao , After login , After installation , Forget to return ID 了 , Then I erased the settings , It appears after restart ID lock , Plug the heart and start winding ID After two days of research, the road was finally completed .

The first step is to checkra1n Prison break

I saw B After countless videos , Get to work , from github download

https://github.com/asineth0/checkn1x/releases

checkn1x by Use alpinelinux Kernel boot checkra1n Of ISO edition ,

checkn1x-1.0.1 To checkn1x-1.1.7 All versions , Corresponding version

checkra1n 0.9.8 To checkra1n 0.12.4 edition , Then make it into U disc , Use this U Disk start , After a round of tests , About all night , All kinds of errors ,

A7 Of CPU When there is a Right before tigger (this is the real bug setup) When , wait for 10 About seconds , Quick plug

lightning Interface , wait for 2 About seconds , Actually entered the recovery page , All night . No progress

By the way https://checkra.in/ The official statement is clear 0.12.x Version explicitly does not support A7 equipment Use linux Version jailbreak .

image-20220417125715412

The next day, first try to use VMware Workstation Pro Use black apples Prison break , newspaper -31 The fault of , Can't support virtual machines

The next day, the second attempt ubuntu-14.04.5-desktop-amd64 Make it to U disc , Then copy the same checkra1n 0.9.8 To checkra1n 0.12.4 edition

Not yet. , It was later used Launch parameters -p start-up . I'm so excited ,checkra1n The icon appears , Enter into pingoOS Interface .

Then turn off. ipad Escape again , Finally came out , however checkra1n The interface reports an error , It's mainly newspapers USB error etc.

image-20220417131124292

In the evening, since it is USB Report errors , It won't be the poor driver compatibility ? So replace it with ubuntu-20.04.2.0-desktop-amd64 Remake start U disc ,

Use A version , A version of the test passed , This use -v You can see the process of running code , But but checkra1n The interface reports an error or USB Error of , or

The progress bar is finished , No, alldone Display of

image-20220417131552999

It's changed 0.12.4 At version time , A miracle happened , For the first time , newspaper usb error , But the progress bar will show alldone Successful escape , The second time

Successful test , No report error , Show alldon The difference is that Right before tigger (this is the real bug setup) Wait for a long time ,15 No error will be reported in about seconds ,

The second part revolves around ID

Continue to look at B Stop video , Search for blog Then download all the tools online , Or charge , Or fail , Or with my IOS Version mismatch

The following is my download ID Software

iFRPFILE AIO v2.8.5 The server is no longer available

FRPFILE iCloud Bypass tool v2.1 And then home Key failure , Restart prison break no more

iActivationPRO+V2.0.4 Activate error report

anonyserver_icloud_bypass_v5_release invalid

checkm8.info_software_3.2.6_win.zip charge


At Baidu 、bing、google Can be found on ID I tried , No one can use ,

And then again B After watching the following video , Give me a start , Now that you can use scripts and commands to bypass , Why can't I , Use xapenny UP The main script , After dyeing , Again home invalid

https://www.bilibili.com/video/BV1oJ411d7vr?spm_id_from=333.880.my_history.page.click

stay github Mid search icloud bypass

https://github.com/

Find a top ranked https://github.com/avltree9798/icloud-bypass/blob/master/icloud-unlock.py

After sorting, I got several commands

print("Mounting filesystem as read/write")
ssh.exec_command("mount -o rw,union,update /")
print("Cleaning mount_rw file")
ssh.exec_command('echo "" > /.mount_rw')
print("Hiding Setup.app")
ssh.exec_command("mv /Application/Setup.app /Application/Setup.app.backup")  #12.5.5  The directory of is /Applications/Setup.app Notice one more s
print("Clearing UI cache")
ssh.exec_command("uicache --all")
print("Clearing iCloud user")
ssh.exec_command("rm -rf /var/mobile/Library/Accounts/*")
print("Respringing device")
ssh.exec_command("killall backboardd")
print("Finishing exploit script")
print("Restarting your device")
ssh.exec_command("reboot")
iproxy.terminate()
iproxy.kill()

Open... Through the AIS assistant ssh After the passage , Manually execute the following command , The results and FRPFILE iCloud Bypass tool v2.1 equally ,home Key failure , Only brush the machine again , Escape again

mount    -o rw,union,update

echo "" > /.mount_rw

mv     /Applications/Setup.app /Applications/Setup.app.backup

uicache --all

rm   -rf /var/mobile/Library/Accounts/*

killall   backboardd

Later I realized that I needed to find someone specifically for 12.5.X Of ios Then the script found https://github.com/adrianjagielak/icloud-12.5.1-bypass

The core code is as follows

echo '(1/7) Mounting filesystem as read-write'
sshpass -p 'alpine' ssh -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null [email protected] -p 2222 mount -o rw,union,update / > /dev/null 2>&1

echo '(2/7) Unloading original mobileactivationd'
sshpass -p 'alpine' ssh -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null [email protected] -p 2222 launchctl unload /System/Library/LaunchDaemons/com.apple.mobileactivationd.plist > /dev/null 2>&1

sleep 2

echo '(3/7) Removing original mobileactivationd'
sshpass -p 'alpine' ssh -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null [email protected] -p 2222 rm /usr/libexec/mobileactivationd > /dev/null 2>&1

echo '(4/7) Running uicache (this can take a few seconds)'
sshpass -p 'alpine' ssh -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null [email protected] -p 2222 uicache --all > /dev/null 2>&1

sleep 2

echo '(5/7) Copying patched mobileactivationd'
sshpass -p 'alpine' scp -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null -P 2222 mobileactivationd_12_5_1_patched [email protected]:/usr/libexec/mobileactivationd > /dev/null 2>&1

echo '(6/7) Changing patched mobileactivationd access permissions'
sshpass -p 'alpine' ssh -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null [email protected] -p 2222 chmod 755 /usr/libexec/mobileactivationd > /dev/null 2>&1

echo '(7/7) Loading patched mobileactivationd'
sshpass -p 'alpine' ssh -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null [email protected] -p 2222 launchctl load /System/Library/LaunchDaemons/com.apple.mobileactivationd.plist > /dev/null 2>&1

By hand

mount -o rw,union,update

unload /System/Library/LaunchDaemons/com.apple.mobileactivationd.plist

rm  /usr/libexec/mobileactivationd

 uicache  --all

Upload manually mobileactivationd_12_5_1_patched file /usr/libexec/ Directory and rename it mobileactivationd

chmod  755 /usr/libexec/mobileactivationd

launchctl load  /System/Library/LaunchDaemons/com.apple.mobileactivationd.plist

killall   backboardd

Then break out again ,ok Perfect bypass

summary

Software or tools used

ubuntu-20.04.2.0-desktop-amd64.iso ubuntu System CD

UltraISO Write the system CD to U disc

checkra1n 0.12.4 Escape tools

i4tools_v1.0.055.deb Ace checks to see if... Is activated , open ssh passageway etc.

icloud-12.5.1-bypass.zip Bypass ID Script

step

1、 Use UltraISO hold ubuntu-20.04.2.0-desktop-amd64.iso write in U disc , Please Baidu for details

2、 Copy the remaining tools to U The root directory of the disk

3、 Use U Turn on the computer , choice try ubuntu, Entry system

4、 Use Ctrl+alt+T, Open the terminal

5、 Switch to cdrom Under the table of contents command : cd /cdrom

6、 Use root Permission to run checkra1n command : sudo ./checkra1n

7、 Set up options choice ver Starting to break out Details Baidu . Remember

8、 When there is a Right before tigger (this is the real bug setup) When , wait for 10 About seconds , Quick plug

9、 appear alldone After the prison break ,ipad Reboot into the system , Note that this time is still ID lock

10、 double-click cdrom In the catalog i4tools_v1.0.055.deb Install the ace assistant , Then click toolbox from the top menu —> Find open ssh passageway , Note down user name 、 Secret 、 Port number

11、 hold icloud-12.5.1-bypass.zip Unzip to Download Under the table of contents

12、 Execute under the terminal ssh [email protected] -p 2222 (2222 Is the port number displayed by ACE )

13、 And then in ipad Of shell Execute the following commands under the window

mount -o rw,union,update

unload /System/Library/LaunchDaemons/com.apple.mobileactivationd.plist

rm  /usr/libexec/mobileactivationd

 uicache  --all

14、ubuntu Open another terminal to execute

scp   -P  2222     Download/mobileactivationd_12_5_1_patched  [email protected]:/usr/libexec/mobileactivationd     Be careful P As the capital 

15、 Switch back to ipad Of shell Window execution

chmod  755 /usr/libexec/mobileactivationd

launchctl load  /System/Library/LaunchDaemons/com.apple.mobileactivationd.plist

killall   backboardd


16、 ubuntu Open another terminal to execute sudo ./cdrom/checkra1n Break out again .

Then enter the system normally for setting , Use this method , Except that you can't log in icloud Outside Others can be used normally
If needed icloud You can refer to , The premise is that you should use one that can be used normally icloud also iOS Devices with little version difference
https://www.bilibili.com/video/BV1oJ411d7vr?spm_id_from=333.880.my_history.page.click

After entering the system normally Click on checnkra1n install cydia At ace's assistant One click jailbreak There are many classic plug-ins available in prison break plug-ins , Add the software source according to the prompt

版权声明
本文为[Qiu Tian_]所创,转载请带上原文链接,感谢
https://chowdera.com/2022/04/202204190549338834.html

随机推荐