Page 2 of 3 FirstFirst 123 LastLast
Results 11 to 20 of 26
Discuss Java version of DVD Jon's Phone Activation Server at the General - Hackint0sh.org; Originally Posted by cyt0plas I think I see the problem. The binary version of the ...
  1. #11
    Senior Professional Array

    Join Date
    Jul 2007
    Posts
    199
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    18

    Default

    Quote Originally Posted by cyt0plas View Post
    I think I see the problem. The binary version of the windows activator has a key hidden inside it. That key is missing in the source.
    ok, once we get the to the point where it's failing on the key, then I'm going to try to bypass the key check in iTunes itself.


  2. #12
    Newbie Array

    Join Date
    Jul 2007
    Posts
    4
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    0

    Default

    hi,

    ok so im in Dubai and am expecting an iphone on the 15th (something im dieing for). but im not all that good with cracking and hacking the software and all that. could someone explain to me in lame man's terms how i will be able to do that?

    please.

    Thanks,
    Pimparella

  3. #13
    Senior Professional Array

    Join Date
    Jul 2007
    Posts
    199
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    18

    Default

    Quote Originally Posted by The Operator View Post
    ok, once we get the to the point where it's failing on the key, then I'm going to try to bypass the key check in iTunes itself.
    My bad. The activation record is needed by the phone. So unless someone hacks the phone firmware, it's not going to work.

    Actually, I believe iTunes has code in it to verify the activation record it receives. So maybe one could create a keygen from that?

  4. #14
    Newbie Array

    Join Date
    Jul 2007
    Posts
    3
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    0

    Unhappy

    Hi, yesterday i found that in the source code of DVD Jon, that the variable used to return the activation XML to the phone was not complete. It seems that DVD Jon has reserved this XML only for the EXE version. So if you try to activate the phone using the source code it will never work cause the variable is assigned to a value that works just a "placeholder" for the real value. Here is the explanation:

    private byte[] actrecord = new byte[]
    {
    0x00 // REPLACE WITH VALID ACTIVATION RECORD
    };

    tha value will return a invalid XML response to the phone and it will never unlock it.
    I dissasembled the code of the executable and the real variable was not assigned to 0x00, it was assigned to a byte[] with the correct values.

    So, if you try to use this JAVA version, it will definitely never work because it will return and invalid XML response.

    To probe the theory: here is the xml result that the real compiled exe application returned:

    <?xml version="1.0" encoding="UTF-8" standalone="no" ?>
    - <Document xmlns="http://www.apple.com/itms/" disableHistory="true" disableNavigation="true">
    - <Protocol>
    - <plist version="1.0">
    - <dict>
    <key>iphone-activation</key>
    - <dict>
    <key>unbrick</key>
    <true />
    <key>activation-record</key>
    - <dict>
    <key>AccountToken</key>
    <data>-------</data>
    <key>AccountTokenSignature</key>
    <data>-------</data>
    </dict>
    </dict>
    </dict>
    </plist>
    </Protocol>
    </Document>


    but if you try with the source code it will return a complete invalid XML response.

    So, if you all want to make the java server work the "0x0c" must be changed with the real activation response in this lines of code:

    private byte[] actrecord = new byte[]
    {
    0x00 // REPLACE WITH VALID ACTIVATION RECORD
    };


    i'll try to post later the bytes of the valid XML response.
    Last edited by juanogcx; 07-06-2007 at 06:57 AM.

  5. #15
    Senior Professional Array

    Join Date
    Jul 2007
    Posts
    148
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    14

    Default

    Quote Originally Posted by pimparella View Post
    hi,

    ok so im in Dubai and am expecting an iphone on the 15th (something im dieing for). but im not all that good with cracking and hacking the software and all that. could someone explain to me in lame man's terms how i will be able to do that?

    please.

    Thanks,
    Pimparella
    I highly recommend reading the threads here thoroughly. If you still can't pick it up, then click on my screen name (to the left) and click the link to go to my website, it will help you.


  6. #16
    Senior Professional Array

    Join Date
    Jul 2007
    Posts
    199
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    18

    Default

    @juanogcx: I did realize that there was no activation record in DVD Jon's source (and my source as well). I was mainly just trying to get my Java PAS application to the point where the Mac version of iTunes would connect to it, try to get the activation record, and then fail when it got an invalid record.

    I actually have DVD Jon's activation record from disassembling his C# binary and using Cody Mays' decrypter, and I could include it easily in my code, but I don't want to give it out to everyone.

    What I didn't realize previously was that this activation record is actually written to the iPhone itself (I thought it was only used by iTunes to verify activation). So I was looking for a way to patch iTunes such that it wouldn't verify the activation record. But I now realize that even if I do that, it still won't activate the iPhone.

    Anyways, this is all moot now as the guys at iphone.fiveforty.net are soon releasing an activator tool which doesn't require iTunes to be patched at all (and it's coming to Mac first). That is the holy grail of all this work -- to bypass iTunes and have a tool which directly activates the phone (preferably one which works on all platforms).

    But anyways, this was a fun little exercise.

    Maybe I will still release the JAR version with DVD Jon's key encrypted the same way he did it (AES) and release the final source code for those who are more adept with Java than C# and want to learn from it.
    Last edited by The Operator; 07-06-2007 at 03:27 AM.

  7. #17
    Senior Professional Array

    Join Date
    Jul 2007
    Posts
    199
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    18

    Default

    Quote Originally Posted by The Operator View Post
    Maybe I will still release the JAR version with DVD Jon's key encrypted the same way he did it (AES) and release the final source code for those who are more adept with Java than C# and want to learn from it.
    ok, for those Mac users still interested, I have created a new JAR file which generates a correct activation string (via JLJ's token). Here's the link:

    http://www.yousendit.com/download/OG...cVhlM1EwTVE9PQ

    This essentially behaves identically to PhoneActSrv.exe (including not having the token in the clear in the source code), but it runs on all platforms. If anyone is successful in getting this to work with the Mac version of iTunes, let me (and everyone else) know. The instructions are in post #7 in this thread.

    I've also repackaged the Java source code (with comments on where to fill in the blanks). Here's the link to that:

    http://www.yousendit.com/download/OG...R0Z0QTAwTVE9PQ

    Have fun!

    btw, I may play around with iTunes a bit over the next little while and see what I can do. I tried to get an unactivated iPhone today (I'm not in the US), but still too costly.

    Platform freedom forever!

    0p
    Last edited by The Operator; 07-06-2007 at 07:59 AM.

  8. #18
    Senior Professional Array

    Join Date
    Jul 2007
    Posts
    199
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    18

    Default

    btw, the new JAR file _should_ work just fine if used to activate an iPhone in Windows (following the same instructions as for DVD Jon's app). If someone can confirm that, post it up.

  9. #19
    Rookie Array

    Join Date
    Jul 2007
    Posts
    10
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    0

    Default

    I don't have a windows box to test with at the moment; however, I get the same "connection refused" message.

    The activation server is running, and it's on the right port.

    Code:
    carlos-averetts-computer:~/Desktop/tool Folder cyt0plas$ telnet albert.apple.com 80
    Trying 127.0.0.1...
    Connected to albert.apple.com.
    Escape character is '^]'.
    ^]
    telnet> quit
    Having never reverse-engineered software on a mac (yes, Jon, my favorite number _is 90_), I don't know how much direct help I can be.

    At the moment, I'm wondering if the "full" activation procedure won't end up simply be replacing the apple private key in the restore image, and signing the activation request with it.

    At that point, I'll volunteer to do the CA myself

  10. #20
    Senior Professional Array

    Join Date
    Jul 2007
    Posts
    199
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    18

    Default

    Quote Originally Posted by cyt0plas View Post
    I don't have a windows box to test with at the moment; however, I get the same "connection refused" message.

    The activation server is running, and it's on the right port.
    ok, this appears to indicate that the Mac version of iTunes is activating with a different server than the Windows version is. Guess it's time to scan through that otx dump a bit more for clues.

    What would really be helpful is if someone could use Little Snitch to intercept the IP address of the server it connects to when activating. Right before you attempt to activate, delete any iTunes rules in the Little Snitch preferences pane. You shouldn't need to be connected to the internet for this to work.

    At the moment, I'm wondering if the "full" activation procedure won't end up simply be replacing the apple private key in the restore image, and signing the activation request with it.
    Has anyone tried that yet?
    Last edited by The Operator; 07-06-2007 at 05:46 PM.


 

 
Page 2 of 3 FirstFirst 123 LastLast

Similar Threads

  1. Replies: 0
    Last Post: 07-20-2011, 07:00 PM
  2. Java on AppleTV2 (Minecraft server ;)
    By makbryan2 in forum AppleTV 2 (iOS based)
    Replies: 20
    Last Post: 05-25-2011, 08:50 AM
  3. Phone Activation Server
    By cosmoLV in forum Tools
    Replies: 5
    Last Post: 01-23-2008, 05:25 AM
  4. Replies: 2
    Last Post: 07-20-2007, 01:50 PM
  5. phone activation server error
    By cjakobp in forum General
    Replies: 3
    Last Post: 07-17-2007, 02:22 AM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  
Powered by vBulletin®
Copyright © 2014 vBulletin Solutions, Inc. All rights reserved.
Search Engine Friendly URLs by vBSEO
(c) 2006-2012 Hackint0sh.org
All times are GMT +2. The time now is 11:53 AM.
twitter, follow us!