Login

u/Upstairs-Advice4054

SparstanBoogie-CVE-2024-44258
▲ 8 r/Trollstore

SparstanBoogie-CVE-2024-44258

Github: https://github.com/fuzzlove/SparstanBoogie-CVE-2024-44258

SparstanBoogie was tested on iOS/iPadOS 15.2 - 16.7 RC (20H18) and 17.0.

This issue was addressed with improved handling of symlinks. This issue is fixed in iOS 17.7.1 and iPadOS 17.7.1, iOS 18.1 and iPadOS 18.1, tvOS 18.1, visionOS 2.1. Restoring a maliciously crafted backup file may lead to modification of protected system files.

Usage: python3.12 main.py trollstorehelper --target Tips

Some additional notes you won't find in the repo is I had issues with the current version of TrollRestore since I am attempting to use it on something thats untested. So I made this and found success on versions that are not mentioned. I hope that some of you find it beneficial.

There are also arguments within the application to check for installed apps and pick a target that causes less impact.

I am currently studying iOS internals looking for ways to get past some signature validations. This tool will also allow you to overwrite user installed apps along with the default system apps. I thought it would be useful to go ahead and release it so others may be able to benefit from it. Its heavily based off of Nugget, Misaka, and TrollRestore thank you to the authors for their work.

This is still a work in progress as in I plan to add even more features as I am exploring the internals and what might be possible.

https://preview.redd.it/1a1on5jrht0h1.png?width=1436&format=png&auto=webp&s=6d1d6ad9b2acc603f0c7bf31eee9910d6aed6bd2

reddit.com
u/Upstairs-Advice4054 — 2 days ago
▲ 12 r/jailbreak

SparstanBoogie (CVE-2025-44258)

Github: https://github.com/fuzzlove/SparstanBoogie-CVE-2024-44258

SparstanBoogie was tested on iOS/iPadOS 15.2 - 16.7 RC (20H18) and 17.0.

This issue was addressed with improved handling of symlinks. This issue is fixed in iOS 17.7.1 and iPadOS 17.7.1, iOS 18.1 and iPadOS 18.1, tvOS 18.1, visionOS 2.1. Restoring a maliciously crafted backup file may lead to modification of protected system files.

Usage: python3.12 main.py trollstorehelper --target Tips

Some additional notes you won't find in the repo is I had issues with the current version of TrollRestore since I am attempting to use it on something thats untested. So I made this and found success on versions that are not mentioned. I hope that some of you find it beneficial.

There are also arguments within the application to check for installed apps and pick a target that causes less impact.

I am currently studying iOS internals looking for ways to get past some signature validations. This tool will also allow you to overwrite user installed apps along with the default system apps. I thought it would be useful to go ahead and release it so others may be able to benefit from it. Its heavily based off of Nugget, Misaka, and TrollRestore thank you to the authors for their work.

This is still a work in progress as in I plan to add even more features as I am exploring the internals and what might be possible.

https://preview.redd.it/hs2pccjjgt0h1.png?width=1436&format=png&auto=webp&s=e1803da9975415f83d8c42cf8d70cea612d927d3

reddit.com
u/Upstairs-Advice4054 — 2 days ago
▲ 5 r/jailbreak

https://github.com/fuzzlove/Downgrade-Checker-iOS

UPDATE: Added new checks for jailbreaking availability along with checking for the last versions of the iOS and looking for any possibilities that an older release have been approved for downgrade.

Credit due: Based off script from NathansTech revamped to make an alert and recheck in a loop as before with any downgrades possible.

Note: There was some broken issues with the 9yr old script interacting with the API. Maybe this will be helpful someday.

Downgrade Party Checker ✔

Still a work in progress, but currently functional and open to feedback, please. I made sure to add jailbreak checks this time.

Cheers!

u/Upstairs-Advice4054 — 12 days ago
▲ 22 r/macsysadmin+1 crossposts

Release: https://github.com/fuzzlove/macOS-Audit-Agent

Mac Audit Agent is a macOS security auditing and monitoring tool that helps identify system risks, suspicious activity, and configuration weaknesses. It provides clear findings, baseline change detection, and actionable recommendations while keeping all data local to the device.

So I just started this project its in the beta phases. I wanted to make it into an app for the appstore but I got discouraged after hearing I might run into issues because of things such as sandboxing. For now I am releasing the python version open source and plan to add more features to it.

Feedback is welcomed and accepted I spent quite a bit of time working on getting the security event monitor to work right and I still want to put more effort into it. The concept as of now is a forensic tool with a good deal of features for a pre-beta release.

Cheers!

u/Upstairs-Advice4054 — 12 days ago
▲ 2 r/jailbreak

https://github.com/fuzzlove/Downgrade-Checker-iOS

iOS Downgrade Party Checker

Based off script from NathansTech revamped to make an alert and recheck in a loop as before with any downgrades possible.

There was some broken issues with the 9yr old script interacting with the API. Maybe this will be helpful someday.

Here’s a strong GitHub repo description you can use (with a professional/security-tool tone):

🍏 Downgrade Party Checker

A real-time iOS firmware monitoring tool that alerts you when Apple is signing older firmware versions — a.k.a. “downgrade parties.”

This tool continuously tracks Apple’s signing status across iPhone models and notifies you the moment a previously unavailable downgrade becomes possible.

🚀 Features 📱 Live iPhone model selection Dynamically pulls all current iPhone models and lets you choose which devices to monitor.

🔎 Accurate signing checks Uses the ipsw.me API to detect currently signed firmware versions.

⬇️ Automatic downgrade detection Identifies when older iOS versions are signed alongside newer ones.

🔔 Real-time notifications (macOS) Get instant alerts when a new downgrade opportunity appears.

📊 Continuous monitoring loop Runs in the background and checks every 5 minutes.

🧠 Smart tracking Only alerts you on new downgrade events — no spam.

💡 What is a “Downgrade Party”?

A “downgrade party” happens when Apple temporarily signs multiple firmware versions at once, allowing devices to be restored to an older iOS version.

These windows are usually:

Short-lived ⏱️ Unpredictable 🎲 Valuable for researchers, jailbreakers, and testers 🔬

🛠️ Use Cases iOS security research Jailbreak window tracking Firmware testing & regression analysis Staying ahead of Apple signing changes

⚙️ Requirements Python 3.x macOS (for native notifications via osascript)

▶️ Usage python3 downgrade_checker.py Select the iPhone models you want to monitor Leave it running Get notified when a downgrade becomes available 📡 Data Source Firmware & signing status provided by IPSW.me API ⚠️ Disclaimer

This tool is for educational and research purposes only. Apple’s signing status can change at any time, and downgrades may still be limited by device-specific

reddit.com
u/Upstairs-Advice4054 — 15 days ago