Billy Ellis
This “jailbreak” or “root shell exploit” is intended for developers and hackers only. This is so you can test your own binaries on iOS 10 before the release of a fully untethered jailbreak tool.
– you can run any pseudo-signed thin ARM64 binaries – if you want the kernel task port it’s host special port 4
– you’re running as an unsandboxed root user so you can talk to any iokit user clients/mach services
– amfid is patched to allow any signatures/entitlements
Unfortunately, the fs is still RO so any binaries you want to test must first be placed in the “iosbinpack64” folder and installed along with the app.
Compatibility:
By default, iPad mini 2 (iPad4,4) and iPod touch 6 (iPod7,1) are supported.
For use with any other devices you will need to manually change the offsets (refer to the full guide linked above).
For 32 bit devices you will need to rewrite a significant amount of the code.
Luca’s tweet – https://twitter.com/qwertyoruiopz/status/809376411316289536
Full jailbreak for iOS 10 should be released to the public soon according to Luca!
Thanks for watching!
Follow me on Twitter for updates – https://twitter.com/bellis1000
Note: Billy Ellis is the original author of this video, we just embed it, if you have any questions please contact him via Youtube.