tihmstar
is creating iOS jailbreaks, exploits, tools, libraries & researchSelect a membership level
Pizza Hawaii supporter
$6
per month
Pizza with pinapples is a quick and healty, but also very controversial meal. Less time spent with cooking is more time spent with coding :)
8
patrons$27
per monthAbout tihmstar
Hi i'm tihmstar.
You can support my past and future work here.
In my free time i research and exploit iOS devices and share my results with the community.
I'll probably use the money mainly to buy food, attend conferences or get new iOS devices to play with and hack.
Here are some projects i worked on in the past:
Be sure to check out my twitch channel where i stream every now and then (http://twitch.tv/tihmstar)
I usually announce livestreams on twitter (https://twitter.com/tihmstar)
You can support my past and future work here.
In my free time i research and exploit iOS devices and share my results with the community.
I'll probably use the money mainly to buy food, attend conferences or get new iOS devices to play with and hack.
Here are some projects i worked on in the past:
- Jailbreaks
- Phoenix (https://phoenixpwn.com)
- iOS 9.3.5 Jailbreak for 32bit devices
- EtasonJB (https://etasonjb.tihmstar.net)
- iOS 8.4.1 Untethered jailbreak for 32bit devices
- UntetherHomeDepot (https://repo.tihmstar.net)
- iOS 9.1-9.3.4 untether package for 32bit devices
- Jailbreak.me 4.0 (https://jailbreak.me)
- iOS 9.1-9.3.4 remote jailbreak for 32bit devices
- H3lix (https://h3lix.tihmstar.net)
- iOS 10.x Jailbreak for 32bit devices
- DoubleH3lix (https://doubleh3lix.tihmstar.net)
- iOS 10.x Jailbreak for 64bit devices with headphone jack (A7-A9)
- Open Source: https://github.com/tihmstar/doubleH3lix
- JelbrekTime (https://github.com/tihmstar/jelbrekTime)
- watchOS 4.0-4.1 Jailbreak for Apple Watch Series 3
- Open Source
- Can also work on older Apple watches (and watchOS) if modified
- Phoenix (https://phoenixpwn.com)
- Downgrade Tools
- Futurerestore (https://github.com/tihmstar/futurerestore)
- Multifunctional downgrade tool
- Open Source
- First tool+technique to downgrade 64bit devices
- Prometheus generator method
- Prometheus nonce collision method
- Supports 32bit downgrades
- Odysseus OTA method
- Odysseus method
- iOS 9 re-restore method
- Tsschecker (https://github.com/tihmstar/tsschecker)
- Multifunctional tss tool
- Open Source
- Can save APTickets (shsh2 files) with generator
- Can get signing status for variety of devices
- Can send crafted tss requests to Apple's signing server
- Can list current devices / iOS version combinations
- Img4tool (https://github.com/tihmstar/img4tool)
- Multifunctional tool for img4 file analysis
- Open Source
- Can verify APTickets for downgrades
- Can analyse / dump / create / extract IMG4, IM4P, IM4M files
- One of the core components of futurerestore
- Futurerestore (https://github.com/tihmstar/futurerestore)
- Exploits
- treadm1ll (https://github.com/tihmstar/treadm1ll)
- iOS 11.2.6-11.4.1 exploit to get tfp0 for 64bit devices with headphone jack
- Open Source
- v1ntex (https://github.com/tihmstar/v1ntex)
- iOS 11.x exploit to get tfp0 for 64bit devices
- Open Source
- Used in 11.4.1 Electra Jailbreak
- v3ntex (https://github.com/tihmstar/v3ntex)
- iOS 12.x-12.1.2 exploit to get tfp0 for 64bit devices
- Open Source
- treadm1ll (https://github.com/tihmstar/treadm1ll)
- Libraries
- liboffsetfinder64 (https://github.com/tihmstar/liboffsetfinder64)
- Offsetfinder for various jailbreak tools and utilities
- Open Source
- Used in DoubleH3lix Jailbreak
- Used in Electra Jailbreak
- libfragmentzip (https://github.com/tihmstar/libfragmentzip)
- A library for downloading files in remote zips without downloading the whole zip
- Open Source
- Used in various jailbreaks and tools
- electra
- kDFUApp
- futurerestore
- tsschecker
- jssy (https://github.com/tihmstar/jssy)
- A JSON parser library
- Open Source
- Used in various jailreaks and tools
- tsschecker
- futurerestore
- libgrabkernel (https://github.com/tihmstar/libgrabkernel)
- A library to download the correct kernel for an iOS device
- Open Source
- Used in various jailbreaks and tools
- electra
- libtakeover (https://github.com/tihmstar/libtakeover)
- A library to call functions in a remote process
- Backend for inject_criticald
- Tool for injecting dylibs into running processes
- Open Source
- Used in various jailbreaks and tools
- Chimera (iOS 12 jailbreak)
- Possible alternative backend for bfinject
- liboffsetfinder64 (https://github.com/tihmstar/liboffsetfinder64)
- Tools
- partialZipBrowser (https://github.com/tihmstar/partialZipBrowser)
- A command line tool for browsing remote zips and downloading files without downloading the whole zip
- Open Source
- kdp.py (https://github.com/tihmstar/kdp.py)
- A kernel inspector for 32bit devices to read and write memory after the device paniced
- Open Source
- Used to debug phoenix jailbreak
- partialZipBrowser (https://github.com/tihmstar/partialZipBrowser)
Be sure to check out my twitch channel where i stream every now and then (http://twitch.tv/tihmstar)
I usually announce livestreams on twitter (https://twitter.com/tihmstar)
Recent posts by tihmstar
How it works
Get started in 2 minutes
Choose a membership
Sign up
Add a payment method
Get benefits