摘要：src:http://stackoverflow.com/questions/8793099/unload-dynamic-library-needs-two-dlclose-callsQuestion:I have a dynamic library which I load usingdlope... 阅读全文

摘要：=========================================================================a.c----------------------------------void main (int argc, char **argv) { p... 阅读全文

摘要：src:http://blog.thireus.com/tag/kernelcache Before going further it is important to enumerate some of the main security features available on iOS. The... 阅读全文

摘要：If want to do iOS kernel debugging on A4 device, first you should installVirtual COM port (VCP) drivers. After has installed the driver on OS X Maveri... 阅读全文

摘要：export DEVELOPER_DIR := $(shell xcode-select --print-path)PLATFORM="$(DEVELOPER_DIR)/Platforms/iPhoneOS.platform"SDK_DEVICE="$(DEVELOPER_DIR)/Platfo... 阅读全文

摘要：just my thinking, 3 ways to escape from sandbox on jailbreak device, to do file copying or execute super commands.Way-1, Use MobileSubstrate to inject to root process, for example: locationd.Way-2, signed your app with debug permission. and dynamicly inject code to other process.Way-3, signed your a 阅读全文