Results 1 to 6 of 6
Discuss iPhone 3GS: How to create a custom RAM disk with ssh ? at the Free Toolchain Software (Cydia App's) - Hackint0sh.org; Hi everybody of this forum ! I am trying to reproduce the zdziarski's technique to ...
  1. #1
    Newbie Array

    Join Date
    Aug 2009
    Posts
    3
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    0

    Default iPhone 3GS: How to create a custom RAM disk with ssh ?

    Hi everybody of this forum !


    I am trying to reproduce the zdziarski's technique to dump iphone 3GS disk.
    This guy has created a customized ramdisk with ssh server (live agent recovery).
    iLiberty+ and PwnageTool seem cannot be used create this ram disk for the 3GS.
    Does anybody know how to do that ?

    Thank you for your help.



  2. #2
    iPhone Moderator Array

    Join Date
    Aug 2007
    Posts
    3,620
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    220

    Default

    Quote Originally Posted by kensou View Post
    Hi everybody of this forum !


    I am trying to reproduce the zdziarski's technique to dump iphone 3GS disk.
    This guy has created a customized ramdisk with ssh server (live agent recovery).
    iLiberty+ and PwnageTool seem cannot be used create this ram disk for the 3GS.
    Does anybody know how to do that ?

    Thank you for your help.
    You dont necessaryly need to. Is the iPhone jailbroken and cydia on it? You need OpenSSH installed on the iPhone and on the Mac/WindowsPC.
    It's there on a Mac in System Settings, has to be activated. On Windows you need to dl a free OpenSSH server. On Windows you need dd aswell to be installed. NerveGas (zdziarski) uses dd and netcat but dd will do.

    Find out then the following values
    IP-iPhone
    IP-Mac/WindowsPC
    username/password iPhone : root/alpine
    username/password Mac/PC

    iPhone and Mac/PC have to be on the same Wlan, set iPhone's auto-lock to "never" and make sure to have it connected to ac, the process will take 3 hours if your iPhone is 8GB ;-)

    On the Mac/PC start command prompt (PuTTY-Windows; Terminal-Mac), log into the iPhone

    ssh -l root IP-iPhone

    then

    dd if=/dev/disk0 | ssh usernamePC@IP-PC 'dd of=iphone-image.img'

    Thats it.
    Read the stickies and search the forum before posting!
    If you want to become a Hackint0sh supporter click here
    ----------
    iPhone 4 factory unlocked, iOS 4.3.1, jailbroken
    iPad Wi-Fi + 3G (1G), iOS 4.3.1, jailbroken
    iPad 2

  3. #3
    Newbie Array

    Join Date
    Aug 2009
    Posts
    3
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    0

    Default

    Thank you for your response.

    When looking video of zdziarski, the iphone wasn't not jailbroken.
    In my understanding the following steps have to be performed:

    In recovery mode:
    1) a custom ramdisk is sent with an openssh server embedded with iRecovery

    (the openssh server cannot run yet because the iphone is not jailbroken)

    2) the iphone is restarted with "boot-args (some special args) + fsboot" with irecovery

    3) As the iphone is NOT jailbroken a custom kernel is sent (the same that is sent by Redsn0w)

    4)the iphone is now jailbroken and the openssh server is running

    5) the rest is like you describe in your procedure.


    I am a newbie so I am sorry if I misunderstood somewhere

  4. #4
    iPhone Moderator Array

    Join Date
    Aug 2007
    Posts
    3,620
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    220

    Default

    Quote Originally Posted by kensou View Post
    Thank you for your response.

    When looking video of zdziarski, the iphone wasn't not jailbroken.
    In my understanding the following steps have to be performed
    You are right, this is a different story. If you just want to recover lost photos cause your iPhone got stuck in recovery or so, the way above is the easiest. i have done it via ramdisk a few times, it's the correct way if you are up to forensic recovery. 99,99 % of the users are not, just wanting to recover lost stuff.
    Read the stickies and search the forum before posting!
    If you want to become a Hackint0sh supporter click here
    ----------
    iPhone 4 factory unlocked, iOS 4.3.1, jailbroken
    iPad Wi-Fi + 3G (1G), iOS 4.3.1, jailbroken
    iPad 2

  5. #5
    Newbie Array

    Join Date
    Aug 2009
    Posts
    3
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    0

    Default

    I am interrested only with forensics case.
    I take the case of a stolen iphone. I'd like recover some informations without knowing the passcode.

    Hope someone can help


  6. #6
    iPhone Moderator Array

    Join Date
    Aug 2007
    Posts
    3,620
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    220

    Default

    Quote Originally Posted by kensou View Post
    I am interrested only with forensics case.
    I take the case of a stolen iphone. I'd like recover some informations without knowing the passcode.

    Hope someone can help
    Sorry, no help from my side. Removing the passcode is one of the things both solutions do. If you are into a gouvernment agency, I'd recommend to contact NerveGas or at least buy the book.

    Thread closed.
    Read the stickies and search the forum before posting!
    If you want to become a Hackint0sh supporter click here
    ----------
    iPhone 4 factory unlocked, iOS 4.3.1, jailbroken
    iPad Wi-Fi + 3G (1G), iOS 4.3.1, jailbroken
    iPad 2

 

 

Similar Threads

  1. how to create my own iphone 2g custom 3.1.2 firmware?
    By munda9211 in forum iOS 3.x (iPhone OS 3.x)
    Replies: 1
    Last Post: 08-22-2011, 02:31 PM
  2. Replies: 2
    Last Post: 05-11-2010, 10:26 AM
  3. Replies: 16
    Last Post: 01-17-2008, 07:28 AM
  4. Replies: 4
    Last Post: 12-06-2007, 07:03 PM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  
Powered by vBulletin®
Copyright © 2014 vBulletin Solutions, Inc. All rights reserved.
Search Engine Friendly URLs by vBSEO
(c) 2006-2012 Hackint0sh.org
All times are GMT +2. The time now is 03:59 PM.
twitter, follow us!