Nate True's Weblog: Posts tagged with hack

iPhone 1.1.3 WebClip hack - Speed Dial on your home screen

Posted by natetrue 7 years ago

So the new iPhone 1.1.3 firmware allows you to put icons on your home screen for websites, but I know many of us want to put phone numbers on there for a Speed Dial screen.

I've put a little hack together that lets you have a (somewhat) speedy speed dial icon. There's no jailbreaking required for this one - it can all be done using Apple-approved Web Clip creation.

Check the images below for a walkthrough.

Tags: 1.1.3, hacks, iphone, no jailbreak needed, speed dial, webclip

Permalink | 39 Comments | 77 Linkbacks

iPhone 1.1.3 firmware behind the scenes changes

Posted by natetrue 7 years ago

So I've had the chance to examine the 1.1.3 firmware on a deeper level (using a technique not developed by me and which I can't release so don't ask) and have noticed some interesting changes behind the scenes that are quite blogworthy:

- SpringBoard no longer needs to be modified (via SummerBoard) in order to show extra applications in the /Applications folder.
- All applications now run as the user 'mobile' instead of as root.
- Preferences are now stored in /var/mobile rather than in /var/root.

What does this all mean? I'll tell you what it means.

The iPhone 1.1.3 firmware is ready for official installable applications.

Even though there are no applications available for purchase (besides the iPod Touch's $20 "upgrade package"), the installation architecture appears to be there already.

It also appears that the frameworks have undergone many changes, ostensibly to make it easier for official SDK developers to make programs. It does, however, break many of the existing applications including most of mine (Lights Off still works though :D).

Additionally, the SpringBoard app appears to have widget support - it contains a class called SBWidgetApplication which manages the package location and icon.

I will update this post with more details as I find them, so keep checking back.

Also check out this other hack for adding Speed Dial icons to your 1.1.3 home screen.

Tags: 1.1.3, applications, breaking, changes, hack, internal, iphone, jailbreak, sdk, widgets

Permalink | 23 Comments | 117 Linkbacks

iPhone 1.1.1 restore mode verbose boot captured on video

Posted by natetrue 8 years ago

Hey guys,

This won't mean jack squat to most of you but I've managed (with the help of the iPod Touch dev team) to boot the iPhone in restore verbose mode which will hopefully give us some insight into what we can do to crack the new firmware.

I trained my trusty Canon XH A1 HD videocamera at it with a high shutter speed to make sense of the quickly passing images. Check out the video and stills below.

I'll go through and translate it by hand to make things clearer.

Tags: boot, firmware, hacking, iphone, verbose

Permalink | 26 Comments | 9 Linkbacks

HOWTO: Install SSH on your iPhone *DEPRECATED, use iBrickr instead*

Posted by natetrue 8 years ago

These instructions are deprecated - it's much easier to download iBrickr and install the dropbear and binkit packages using the Applications interface.

Instructions left for nostalgia sake, though:

These instructions work with the latest 1.0.1 iPhone update.

Right now these instructions work for Windows. A Mac OSX version must be made by someone else, but the translation is fairly easy. The sshify-windows.bat must be replaced with a file that contains equivalent Mac OSX commands.

These instructions MUST be run on a phone that has already had Jailbreak 1.1 run on it. For instructions on that see the custom ringtone tutorial.

This tutorial is dead easy.

Step 1 - Download Nate True's iPhone SSH kit.

Step 2 - Extract that to a folder somewhere.

Step 3 - Run sshify-windows.bat and follow the instructions carefully.

Okay, Step 3 is more steps but they are laid out plainly.

Step 4 - Connect with SSH! You should be able to use an SCP client like WinSCP to put more files from the latest compiled binkit.

Tags: easy, hacks, iphone, ssh

Permalink | 39 Comments | 56 Linkbacks

Details on decrypting the new iPhone 1.0.1 firmware image

Posted by natetrue 8 years ago

Not sure how DMCA-legal this is, but here's the skinny.

Download the Restore package using iTunes. Hit Restore on your iPhone screen and accept all the wild legal mumbo jumbo (after reading it thoroughly). Then unplug your iPhone as it downloads.

Head over to where iPhone updates are stored (on Windows, Run "application data\Apple Computer\iTunes\iPhone Software Updates") and rename the new .ipsw to .zip.

Extract the contents.

Run this command on the Ramdisk DMG:

strings 009-7662-6.dmg | grep "^[0-9a-fA-F]*$"

Look at the strings that come out. One of them is very long.

Now grab vfdecrypt.

Edit vfdecrypt.c putting in the key you found where it says INSERT KEY HERE. Use the same amount of characters as the hyphens in there, replacing them with parts of the key.

Now compile vfdecrypt. You can use Cygwin - use the command gcc vfdecrypt.c -lcrypto -o vfdecrypt.exe

Run vfdecrypt, passing it the name of the encrypted DMG ("694-5281-6.dmg") and the name of an output file (say, "694-5281-6-decrypted.dmg").

Now if you're on Windows you need Transmac to open the DMG. If you're on Mac you can just open it.

Voila, files for you!

Tags: 1.0.1, dmg, hack, iphone, quiche, vfdecrypt

Permalink | 10 Comments | 27 Linkbacks

Tether your iPhone: EDGE internet on your laptop

Posted by natetrue 8 years ago

Instructions for tethering your iPhone 3G or iPhone with 2.0 firmware are here

Recent developments have allowed iPhone hackers to compile background applications for the iPhone - among the most interesting so far is srelay, a SOCKS proxy server.

srelay running on your iPhone opens up a very exciting possibility - you can use your iPhone's EDGE connection with a laptop or other Wifi-enabled device.

A note of caution: Accessing your EDGE data plan through a laptop may be against your AT&T terms of service. Even modifying your iPhone to enable this service may be a violation. Please check before attempting this procedure.

Currently these instructions only work for Windows - as I don't have a Mac I can't really test anything on that side. I was hoping a blindly created script would work but it does not appear to.

For Mac users, epogue posts:
I created a package that, hopefully, should get everybody working properly on OS X. You might still need to set chmod +x on because of the unarchiver. I haven't tested that yet.

Also, if you're getting the AFC error, try using the jailbreak bundled with the tetherkit. That's how I got mine to work.

Mad props to:
- ziel (for writing Jailbreak)
- NerveGas (for compiling these programs for iPhone)
- Nightwatch (for making a working iPhone compiler)
And the rest of the #iphone dev team. Also thanks to the writers of srelay!

I've done my best to make the procedure as simple as possible. You must first have run jailbreak on your phone - you need to go through the custom ringtone tutorial minus the part where you add ringtones (though you still can add ringtones if you want).

Now that your iPhone is freed from its jailed shackles, download the iPhone Tethering Kit and extract its contents to a folder on your hard drive.

Now double-click "tetherify-windows.bat" if you're on Windows, or if you're on Mac OSX (Intel procs only), open a Terminal and run "".

Follow the instructions that appear - here's what you will see:

Hello, this batch file will install and enable a SOCKS server on your iPhone.

--------PHASE 1: Getting files off your iPhone---------

1 file(s) copied.
iPhoneInterface v0.3.1 built on Jul 14 2007

Waiting for phone... established.
iPhone state: Activated
type "help" for help
iPhone:/# iPhone:/usr/sbin# fileref: 1
iPhone:/usr/sbin# iPhone:/System/Library/LaunchDaemons# fileref: 1
iPhone:/System/Library/LaunchDaemons# 1 file(s) copied.
1 file(s) copied.

--------PHASE 2: Uploading files and reconfiguring your iPhone---------

iPhoneInterface v0.3.1 built on Jul 14 2007

Waiting for phone... established.
iPhone state: Activated
type "help" for help
iPhone:/# fileref: 1
iPhone:/# fileref: 1
iPhone:/# fileref: 1
iPhone:/# fileref: 1
iPhone:/# fileref: 1
iPhone:/# fileref: 1
--------PHASE 3: Restarting your iPhone, twice---------

Press and hold the Power button on your iPhone until it shows the "slide to turn off" red slider.
Slide it, wait for the phone to turn off, and press the power button to turn it on again.
Then do it again. When your iPhone has started up the second time, press a key to continue.
Press any key to continue . . .

--------PHASE 4: Restoring original update configuration---------

1 file(s) copied.
1 file(s) copied.
iPhoneInterface v0.3.1 built on Jul 14 2007

Waiting for phone... established.
iPhone state: Activated
type "help" for help
iPhone:/# fileref: 1
iPhone:/# fileref: 1
iPhone:/# ---------DONE!--------

It's kind of a mess of things. There is no error-checking, so if you see "fileref: 0" in any of the output, that's how you know something went wrong. Otherwise it all should have gone just fine.

Congratulations! You now have an open SOCKS server on your iPhone.

To utilize it, you need to create an ad-hoc Wifi network without a router. This way the iPhone will remain connected to both EDGE and your laptop.

Wireless clients between Mac OSX, Windows XP, and Windows Vista vary, but the concept is the same. Create an ad-hoc network with your laptop, preferably using encryption.

Then set your IP address to a static address, without a default gateway. In Windows XP and Vista you can run this command:

netsh interface ip set address "Wireless Network Conenction" static

You would substitute "Wireless Network Connection" with the name of your wifi adapter if it's named something different.

Then use your iPhone's Settings panel to join to the ad-hoc network you created:

Tags: hack, iphone, tether, tethering

Permalink | 211 Comments | 197 Linkbacks

Custom ringtones / sounds on your iPhone using Windows

Posted by natetrue 8 years ago

These instructions are deprecated - it's much easier to download iBrickr and just use the Ringtones interface.

I worked my eyes bloody today crawling through disassembly to help ziel port his Jailbreak program to Windows, and today we can announce that we have succeeded! All the iPhone users running Windows can now put custom ringtones and sounds onto their iPhones.

IMPORTANT NEWS: The iPhone software update 1.0.1 makes these instructions invalid. You STILL need to acquire the old 1.0.0 software package for Jailbreak to still work. Apple will surely have stopped distributing the package by now so I will see what I can do to get Jailbreak working on the new package. Watch for updates!

If you have a Mac, check out the Mac instructions over at Hack the iPhone.

These instructions work on Windows XP or Vista computers with iTunes 7.3 or 7.3.1.

Images courtesy Mark from - thanks Mark!

The procedure is a bit lengthy, and if you screw up one of the steps you might need to restore your iPhone through iTunes.

To begin with, you must collect the following items (instructions on each below):
- The iPhone software update package
- iTunesMobileDevice.dll
- The Windows version of ziel's Jailbreak
- ziel's iPhoneInterface program
- A custom ringer that you would like to install

The software update package

Now the package location varies so there's really only one reliable way to get it. Plug in your iPhone, and head into iTunes. Click the "Sync" button first (to be safe) and wait for the sync to finish.

Tags: hack, iphone, ringtone, windows

Permalink | 71 Comments | 59 Linkbacks

You are not logged in.
Log inRegister now!