def restore32(device, iosversion):
if os.path.exists("resources/bin/futurerestore"):
shutil.move("resources/bin/futurerestore", "futurerestore")
elif os.path.exists("resources/bin/igetnonce"):
shutil.move("resources/bin/igetnonce", "igetnonce")
elif os.path.exists("resources/bin/tsschecker"):
shutil.move("resources/bin/tsschecker", "tsschecker")
elif os.path.exists("resources/bin/irecovery"):
shutil.move("resources/bin/irecovery", "irecovery")
print("Getting SHSH...")
ecid = localdevice.getecid()
device32 = str(localdevice.getmodel())
cmd = f'./tsschecker -d {device32} -i {iosversion} -o -m resources/manifests/BuildManifest_{device32}.plist -e {ecid} -s'
so = subprocess.run(cmd, shell=True, stdout=subprocess.DEVNULL)
returncode = so.returncode
if returncode != 0:
print(
"Saving SHSH failed.\nPlease try again and report the error + full logs if it persists.\nExiting..."
)
exit(938862428)
dir_name = os.getcwd()
test = os.listdir(dir_name)
for item in test:
if item.endswith(".shsh2"):
shutil.move(os.path.join(dir_name, item),
"resources/other/apnonce.shsh")
print("Restoring...")
print(
'\033[91m' +
"Note that errors about 'BbSkeyId', 'FDR Client' and 'BasebandFirmware Node' are not important, just ignore them and only report errors that actually stop the restore."
+ '\033[0m')
if device32 != "iPad2,1" or "iPad2,4" or "iPad2,5" or "iPad3,1" or "iPad3,4" or "iPod5,1":
cmd2 = './futurerestore -t resources/other/apnonce.shsh --use-pwndfu --latest-baseband custom.ipsw'
so = subprocess.run(cmd2, shell=True, stdout=subprocess.DEVNULL)
returncode = so.returncode
if returncode != 0:
print(
"Resoting Failed.\nPlease try again and report the error + full logs if it persists.\nExiting..."
)
exit(938862428)
else:
cmd2 = './futurerestore -t resources/other/apnonce.shsh --no-baseband --use-pwndfu custom.ipsw'
so = subprocess.run(cmd2, shell=True, stdout=subprocess.DEVNULL)
returncode = so.returncode
print(returncode)
if returncode != 0:
print(
"Resoting Failed.\nPlease try again and report the error + full logs if it persists.\nExiting..."
)
exit(938862428)
def saveshsh(path):
print("Getting SHSH...")
if not os.path.exists("igetnonce"):
shutil.move("resources/bin/igetnonce", "igetnonce")
if not os.path.exists("tsschecker"):
shutil.move("resources/bin/tsschecker", "tsschecker")
device = localdevice.getmodel()
ecid = localdevice.getecid()
nonce = localdevice.getapnonce()
if device != "iPad4,3":
cmd = f'./tsschecker -d {device} -i 10.3.3 -o -m resources/manifests/BuildManifest_{device}.plist -e {ecid} --apnonce {nonce} -s'
else:
cmd = f'./tsschecker -d iPad4,3 --boardconfig j73AP -i 10.3.3 -o -m resources/manifests/BuildManifest_iPad4,3.plist -e {ecid} --apnonce {nonce} -s'
so = subprocess.run(cmd, shell=True, stdout=open('errorlogshsh.txt', 'w'))
returncode = so.returncode
output = 'errorlogshsh.txt'
if returncode != 0:
with open(output, 'r') as fin:
print(fin.read())
print("ERROR..\nReturn code:", returncode)
print(
"SHSH Saving Failed.\nPlease try again and report the error/full logs and the 'errorlogshsh.txt' file if it persists.\nExiting..."
)
exit(938862428)
else:
if os.path.exists('errorlogshsh.txt'):
os.remove('errorlogshsh.txt')
dir_name = os.getcwd()
test = os.listdir(dir_name)
if not str(path).endswith("/"):
path = path + "/"
dest_name = path + "OTA.shsh"
for item in test:
if item.endswith(".shsh"):
if os.path.exists(dest_name):
os.remove(dest_name)
shutil.move(os.path.join(dir_name, item), dest_name)
if os.path.exists("igetnonce"):
shutil.move("igetnonce", "resources/bin/igetnonce")
if os.path.exists("tsschecker"):
shutil.move("tsschecker", "resources/bin/tsschecker")
return dest_name
def restore64(device):
print("Entering PWNREC mode...")
ecid = localdevice.getecid()
os.chdir("IPSW/Firmware/dfu")
irecerr = "Sending iBSS/iBEC Failed.\nPlease reboot device, start the tool again and report the error + full logs if it persists.\nExiting..."
#irecovery needs to have the image thats being sent in the current work directory, irecovery binary can be anywhere
if device == "iPhone6,2" or device == "iPhone6,1":
cmd = '../../../resources/bin/irecovery -f iBSS.iphone6.RELEASE.im4p'
so = subprocess.run(cmd, shell=True, stdout=subprocess.DEVNULL)
returncode = so.returncode
if returncode != 0:
print("ERROR..\nReturn code:", returncode)
print(irecerr)
exit(938862428)
time.sleep(5)
cmd = '../../../resources/bin/irecovery -f iBEC.iphone6.RELEASE.im4p'
so = subprocess.run(cmd, shell=True, stdout=subprocess.DEVNULL)
returncode = so.returncode
if returncode != 0:
print("ERROR..\nReturn code:", returncode)
print(irecerr)
exit(938862428)
elif device == "iPad4,1" or device == "iPad4,2" or device == "iPad4,3":
cmd = '../../../resources/bin/irecovery -f iBSS.ipad4.RELEASE.im4p'
so = subprocess.run(cmd, shell=True, stdout=subprocess.DEVNULL)
returncode = so.returncode
if returncode != 0:
print("ERROR..\nReturn code:", returncode)
print(irecerr)
exit(938862428)
cmd = '../../../resources/bin/irecovery -f iBEC.ipad4.RELEASE.im4p'
so = subprocess.run(cmd, shell=True, stdout=subprocess.DEVNULL)
returncode = so.returncode
if returncode != 0:
print("ERROR..\nReturn code:", returncode)
print(irecerr)
exit(938862428)
elif device == "iPad4,4" or device == "iPad4,5":
cmd = '../../../resources/bin/irecovery -f iBSS.ipad4b.RELEASE.im4p'
so = subprocess.run(cmd, shell=True, stdout=subprocess.DEVNULL)
returncode = so.returncode
if returncode != 0:
print("ERROR..\nReturn code:", returncode)
print(irecerr)
exit(938862428)
cmd = '../../../resources/bin/irecovery -f iBEC.ipad4b.RELEASE.im4p'
so = subprocess.run(cmd, shell=True, stdout=subprocess.DEVNULL)
returncode = so.returncode
if returncode != 0:
print("ERROR..\nReturn code:", returncode)
print(irecerr)
exit(938862428)
else:
print(
'\033[91m' +
"Somehow you made it here with an invalid device, nice work! Please tell me how @mosk_i"
+ '\033[0m')
exit(5)
os.chdir("../../..")
time.sleep(5)
seperate = False
saveshsh("resources/other", ecid, device, seperate)
time.sleep(3)
print("Restoring...")
print(
'\033[91m' +
"Note that errors about 'BbSkeyId', 'FDR Client', 'BasebandFirmware Node' and 'ERROR: zip_name_locate: Firmware/all_flash/manifest' are not important.\nJust ignore them and only report errors that actually stop the restore."
+ '\033[0m')
futurerestore = "resources/bin/futurerestore"
if device == "iPad4,1" or device == "iPad4,4":
print(
f"Restoring without a baseband as your {device} doesn't have cellular capabilities..."
)
cmd2 = f'{futurerestore} -t resources/other/apnonce.shsh -s resources/other/sep.im4p -m resources/manifests/BuildManifest_{device}.plist --no-baseband custom.ipsw'
so2 = subprocess.run(cmd2,
shell=True,
stdout=open('errorlogrestore.txt', 'w'))
returncode = so2.returncode
output = 'errorlogrestore.txt'
if returncode != 0:
with open(output, 'r') as fin:
print(fin.read())
print("ERROR..\nReturn code:", returncode)
print(
"Restore Failed.\nPlease try again and report the error + full logs if it persists.\nExiting..."
)
exit(938862428)
else:
cmd2 = f'{futurerestore} -t resources/other/apnonce.shsh -s resources/other/sep.im4p -m resources/manifests/BuildManifest_{device}.plist -b resources/other/baseband.bbfw -p resources/manifests/BuildManifest_{device}.plist custom.ipsw'
so2 = subprocess.run(cmd2,
shell=True,
stdout=open('errorlogrestore.txt', 'w'))
returncode = so2.returncode
output = 'errorlogrestore.txt'
if returncode != 0:
with open(output, 'r') as fin:
print(fin.read())
print("ERROR..\nReturn code:", returncode)
print(
"Restore Failed.\nPlease try again and report the error/send me the full logs and the 'errorlogrestore.txt' file if it persists\nExiting..."
)
exit(938862428)
else:
if os.path.exists('errorlogrestore.txt'):
os.remove('errorlogrestore.txt')
def restore32(device, iosversion):
print("Getting SHSH...")
ecid = localdevice.getecid()
device32 = str(localdevice.getmodel())
if iosversion == "6.1.3":
cmd = f'{tsschecker} -d {device32} -i {iosversion} -o -m resources/manifests/BuildManifest613_{device32}.plist -e {"0x" + ecid} -s'
else:
cmd = f'{tsschecker} -d {device32} -i {iosversion} -o -m resources/manifests/BuildManifest_{device32}.plist -e {"0x" + ecid} -s'
so = subprocess.run(cmd, shell=True, stdout=subprocess.DEVNULL)
returncode = so.returncode
if returncode != 0:
print(
"Saving SHSH failed.\nPlease try again and report the error + full logs if it persists.\nExiting..."
)
exit(938862428)
dir_name = os.getcwd()
test = os.listdir(dir_name)
for item in test:
if item.endswith(".shsh2"):
shutil.move(os.path.join(dir_name, item),
"resources/other/apnonce.shsh")
print("Restoring...")
print(
'\033[91m' +
"Note that errors about 'BbSkeyId', 'FDR Client', 'BasebandFirmware Node' and 'ERROR: zip_name_locate: Firmware/all_flash/manifest' are not important.\nJust ignore them and only report errors that actually stop the restore."
+ '\033[0m')
futurerestore = "resources/bin/futurerestore"
if device32 == "iPad2,1" or device32 == "iPad2,4" or device32 == "iPad2,5" or device32 == "iPad3,1" or device32 == "iPad3,4" or device32 == "iPod5,1":
cmd2 = f'{futurerestore} -t resources/other/apnonce.shsh --no-baseband --use-pwndfu custom.ipsw'
so2 = subprocess.run(cmd2,
shell=True,
stdout=open('errorlogrestore.txt', 'w'))
returncode = so2.returncode
output = 'errorlogrestore.txt'
if returncode != 0:
with open(output, 'r') as fin:
print(fin.read())
print("ERROR..\nReturn code:", returncode)
print(
"Restore Failed.\nPlease try again and report the error/send me the full logs and the 'errorlogrestore.txt' file if it persists\nExiting..."
)
exit(938862428)
else:
if os.path.exists('errorlogrestore.txt'):
os.remove('errorlogrestore.txt')
else:
cmd2 = f'{futurerestore} -t resources/other/apnonce.shsh --use-pwndfu --latest-baseband custom.ipsw'
so2 = subprocess.run(cmd2,
shell=True,
stdout=open('errorlogrestore.txt', 'w'))
returncode = so2.returncode
output = 'errorlogrestore.txt'
if returncode != 0:
with open(output, 'r') as fin:
print(fin.read())
print("ERROR..\nReturn code:", returncode)
print(
"Restore Failed.\nPlease try again and report the error/send me the full logs and the 'errorlogrestore.txt' file if it persists\nExiting..."
)
exit(938862428)
else:
if os.path.exists('errorlogrestore.txt'):
os.remove('errorlogrestore.txt')
def restore64(device):
if os.path.exists("resources/bin/futurerestore"):
shutil.move("resources/bin/futurerestore", "futurerestore")
if os.path.exists("resources/bin/igetnonce"):
shutil.move("resources/bin/igetnonce", "igetnonce")
if os.path.exists("resources/bin/tsschecker"):
shutil.move("resources/bin/tsschecker", "tsschecker")
if os.path.exists("resources/bin/irecovery"):
shutil.move("resources/bin/irecovery", "irecovery")
print("Entering PWNREC mode...")
ecid = localdevice.getecid()
os.chdir("IPSW/Firmware/dfu")
irecerr = "Sending iBSS/iBEC Failed.\nPlease reboot device, start the tool again and report the error + full logs if it persists.\nExiting..."
if device == "iPhone6,2" or device == "iPhone6,1":
cmd = '../../../irecovery -f iBSS.iphone6.RELEASE.im4p'
so = subprocess.run(cmd, shell=True, stdout=subprocess.DEVNULL)
returncode = so.returncode
if returncode != 0:
print("ERROR..\nReturn code:", returncode)
print(irecerr)
exit(938862428)
time.sleep(5)
cmd = '../../../irecovery -f iBEC.iphone6.RELEASE.im4p'
so = subprocess.run(cmd, shell=True, stdout=subprocess.DEVNULL)
returncode = so.returncode
if returncode != 0:
print("ERROR..\nReturn code:", returncode)
print(irecerr)
exit(938862428)
elif device == "iPad4,1" or device == "iPad4,2" or device == "iPad4,3":
cmd = '../../../irecovery -f iBSS.ipad4.RELEASE.im4p'
so = subprocess.run(cmd, shell=True, stdout=subprocess.DEVNULL)
returncode = so.returncode
if returncode != 0:
print("ERROR..\nReturn code:", returncode)
print(irecerr)
exit(938862428)
cmd = '../../../irecovery -f iBEC.ipad4.RELEASE.im4p'
so = subprocess.run(cmd, shell=True, stdout=subprocess.DEVNULL)
returncode = so.returncode
if returncode != 0:
print("ERROR..\nReturn code:", returncode)
print(irecerr)
exit(938862428)
elif device == "iPad4,4" or device == "iPad4,5":
cmd = '../../../irecovery -f iBSS.ipad4b.RELEASE.im4p'
so = subprocess.run(cmd, shell=True, stdout=subprocess.DEVNULL)
returncode = so.returncode
if returncode != 0:
print("ERROR..\nReturn code:", returncode)
print(irecerr)
exit(938862428)
cmd = '../../../irecovery -f iBEC.ipad4b.RELEASE.im4p'
so = subprocess.run(cmd, shell=True, stdout=subprocess.DEVNULL)
returncode = so.returncode
if returncode != 0:
print("ERROR..\nReturn code:", returncode)
print(irecerr)
exit(938862428)
else:
print(
'\033[91m' +
"Somehow you made it here with an invalid device, nice work! Please tell me how @mosk_i"
+ '\033[0m')
exit(5)
os.chdir("../../..")
time.sleep(5)
print("Getting SHSH...")
nonce = localdevice.getapnonce()
if device != "iPad4,3":
cmd = f'./tsschecker -d {device} -i 10.3.3 -o -m resources/manifests/BuildManifest_{device}.plist -e {ecid} --apnonce {nonce} -s'
else:
cmd = f'./tsschecker -d iPad4,3 --boardconfig j73AP -i 10.3.3 -o -m resources/manifests/BuildManifest_iPad4,3.plist -e {ecid} --apnonce {nonce} -s'
so = subprocess.run(cmd, shell=True, stdout=open('errorlogshsh.txt', 'w'))
returncode = so.returncode
output = 'errorlogshsh.txt'
if returncode != 0:
with open(output, 'r') as fin:
print(fin.read())
print("ERROR..\nReturn code:", returncode)
print(
"SHSH Saving Failed.\nPlease try again and report the error/full logs and the 'errorlogshsh.txt' file if it persists.\nExiting..."
)
exit(938862428)
else:
if os.path.exists('errorlogshsh.txt'):
os.remove('errorlogshsh.txt')
dir_name = os.getcwd()
test = os.listdir(dir_name)
for item in test:
if item.endswith(".shsh"):
shutil.move(os.path.join(dir_name, item),
"resources/other/apnonce.shsh")
time.sleep(3)
print("Restoring...")
print(
'\033[91m' +
"Note that errors about 'BbSkeyId', 'FDR Client' and 'BasebandFirmware Node' are not important, just ignore them and only report errors that actually stop the restore."
+ '\033[0m')
if device != "iPad4,1" or "iPad4,4":
cmd2 = f'./futurerestore -t resources/other/apnonce.shsh -s resources/other/sep.im4p -m resources/manifests/BuildManifest_{device}.plist -b resources/other/baseband.bbfw -p resources/manifests/BuildManifest_{device}.plist custom.ipsw'
so2 = subprocess.run(cmd2,
shell=True,
stdout=open('errorlogrestore.txt', 'w'))
returncode = so2.returncode
output = 'errorlogrestore.txt'
if returncode != 0:
with open(output, 'r') as fin:
print(fin.read())
print("ERROR..\nReturn code:", returncode)
print(
"Restore Failed.\nPlease try again and report the error/send me the full logs and the 'errorlogrestore.txt' file if it persists\nExiting..."
)
exit(938862428)
else:
if os.path.exists('errorlogrestore.txt'):
os.remove('errorlogrestore.txt')
else:
cmd2 = f'./futurerestore -t resources/other/apnonce.shsh -s resources/other/sep.im4p -m resources/manifests/BuildManifest_{device}.plist --no-baseband custom.ipsw'
so2 = subprocess.run(cmd2,
shell=True,
stdout=open('errorlogrestore.txt', 'w'))
returncode = so2.returncode
output = 'errorlogrestore.txt'
if returncode != 0:
with open(output, 'r') as fin:
print(fin.read())
print("ERROR..\nReturn code:", returncode)
print(
"Restore Failed.\nPlease try again and report the error + full logs if it persists.\nExiting..."
)
exit(938862428)
def restore64(device): # my2
print("Downgrading...")
ecid = localdevice.getecid()
os.chdir("IPSW/Firmware/dfu")
# irecovery needs to have the image that's being sent in the current work directory, irecovery binary can be anywhere
cmd = '../../../resources/bin/irecovery -f iBSS.iphone6.RELEASE.im4p'
so = subprocess.run(cmd, shell=True, stdout=subprocess.DEVNULL)
returncode = so.returncode
irecerr = "Sending iBSS/iBEC Failed.\nReboot device"
if returncode != 0:
print("ERROR:", returncode)
print(irecerr)
exit(938862428)
time.sleep(5)
cmd = '../../../resources/bin/irecovery -f iBEC.iphone6.RELEASE.im4p'
so = subprocess.run(cmd, shell=True, stdout=subprocess.DEVNULL)
returncode = so.returncode
if returncode != 0:
print("ERROR:", returncode)
print(irecerr)
exit(938862428)
os.chdir("../../..") # main
#--------------------------------------------------------------------------
time.sleep(5)
seperate = False
saveshsh("resources/other", ecid, device, seperate)
time.sleep(3)
#--------------------------------------------------------------------------
print("Restoring...")
print(
"Note that errors about 'BbSkeyId', 'FDR Client', 'BasebandFirmware Node' and 'ERROR: zip_name_locate: Firmware/all_flash/manifest' are not important."
)
futurerestore = "resources/bin/futurerestore"
cmd2 = f'{futurerestore} -t resources/other/apnonce.shsh -s resources/other/sep.im4p -m resources/manifests/BuildManifest_{device}.plist -b resources/other/baseband.bbfw -p resources/manifests/BuildManifest_{device}.plist custom.ipsw'
so2 = subprocess.run(cmd2,
shell=True,
stdout=open('errorlogrestore.txt', 'w'))
returncode = so2.returncode
output = 'errorlogrestore.txt'
if returncode != 0:
with open(output, 'r') as fin:
print(fin.read())
print("ERROR:", returncode)
print("Restore Failed. Check errorlogrestore.txt")
exit(938862428)
#if os.path.exists('errorlogrestore.txt'):
#os.remove('errorlogrestore.txt')