Fugu15 - The Journey to Jailbreaking iOS 15.4.1

Presented at Objective by the Sea version 5.0 (2022), Oct. 6, 2022, 10:40 a.m. (50 minutes).

With the introduction of new mitigations in iOS 15 (and especially 15.2), creating a jailbreak became significantly more difficult. Before, a kernel vulnerability was enough for jailbreaking but now a PAC or PPL bypass is required as well. Some people even said that iOS 15.1.1 will be the last version to receive a public jailbreak ;) \n\n In my talk I will show how it is possible to jailbreak iOS 15.4.1 even with all the latest mitigations. I'll describe the vulnerabilities exploited in the Fugu15 chain and how some of the mitigations introduced in iOS 15.2 can be bypassed. A demo of Fugu15 will also be shown, including an interesting (and uncommon) way to install Fugu15 on a device.

Presenters:

• Linus Henze - Founder and CEO of Pinauten GmbH
  Linus is founder and CEO of Pinauten GmbH, a German company specialized in the security of iOS and macOS. In their spare time, Linus is also the developer of Fugu (iOS 13 checkm8 based jailbreak) and Fugu14 (iOS 14 untethered jailbreak - the first publicly available untethered jailbreak since iOS 9), as well as other stuff. Linus started hacking Apple devices at the age of 15.

Links:

• https://objectivebythesea.org/v5/talks.html#Speaker_5
• https://infocon.org/cons/Objective by the Sea/Objective by the Sea 5 2023/#OBTS v5.0 Fugu15 - The Journey to Jailbreaking iOS 15.4.1 - Linus Henze.mp4
• https://infocon.org/cons/Objective by the Sea/Objective by the Sea 5 2023/#OBTS v5.0 Fugu15 - The Journey to Jailbreaking iOS 15.4.1 - Linus Henze.eng.srt (subtitles)
• https://www.youtube.com/watch?v=aK0xPGMG0NI
• https://www.youtube.com/watch?v=rPTifU1lG7Q

Similar Presentations:

• Black Hat USA 2022 / TruEMU: An Extensible, Open-Source, Whole-System iOS Emulator
• Black Hat USA 2021 / Everything has Changed in iOS 14, but Jailbreak is Eternal
• Black Hat Europe 2020 Virtual / Story of Jailbreaking iOS 13