0:00
what's going on YouTube GSN here today
0:02
we're answering a question that I'm
0:04
getting quite a lot in the comments and
0:06
that is can AI build an IOS Jailbreak or
0:08
at least help you build an IOS Jailbreak
0:11
if you want to learn how to build one
0:12
well we're going to start looking into
0:14
it and I'm going to show you exactly
0:15
what it can and can't do and I'm also
0:17
going to point you in the right
0:19
direction if you want to learn how to
0:21
build a jailbreak and how iOS security
0:22
works so jailbreak tools like dopamine
0:25
and chain and pelvin and stuff like that
0:27
allow you to install tweaks like themes
0:29
and customiz icons and whatever on your
0:31
iOS device but it's much more behind the
0:33
jailbreak than Ms the ey there's a lot
0:35
of intricate code and it's not easy to
0:38
understand for example you do have
0:39
kernel exploit that could be very long
0:42
and could be very hard to understand
0:43
especially if you're not familiar with
0:44
the platform but then after you
0:46
understand the exploit there's still the
0:48
post exploitation part which means you
0:49
know patching the kernel bypassing the
0:52
sandbox getting root debilitating empy
0:55
or stuff like that you know installing
0:57
Cydia or cilio or zebra whatever so can
1:00
AI like chat GPT or I don't know geminy
1:03
or whatever help you with that well the
1:05
short answer is it depends for example
1:08
let's have this prompt over here build
1:09
me an iOS 17 Jailbreak in Objective C
1:12
and C we press enter you're going to get
1:14
something like this creating a jail
1:15
break for iOS is highly complex yada
1:18
yada yada it tells you that there are
1:19
legal and ethical concerns it might give
1:22
you a sample code but really this one is
1:24
just dummy code it won't do much in fact
1:27
it won't do anything for example we have
1:29
this promp it will definitely tell you
1:30
I'm sorry I can't assist with creating
1:32
or Distributing exploits or any other
1:34
Bypass or security whatever chat gbd
1:36
doesn't really understand the concept
1:38
that jailbreaking iOS is completely
1:40
legal and there's a dmca exemption for
1:43
that I mean it understands it but it
1:45
doesn't want to act upon it but you can
1:47
still use chat GPT quite a lot and many
1:49
other AIS too for example we go on an
1:52
open-source jailbreak if you want to
1:54
learn how to build one that's the best
1:55
place to start looking you go to an
1:57
open- Source jailbreak for example
1:58
blizzard jailbreak kn over here that's
2:00
my Jailbreak on my account and here I
2:02
should have my jailbreaks files here and
2:05
we go here to Blizzard jailbreak right
2:07
this should contain the main Logic for
2:09
you know patching the sandbox and you
2:11
know getting root whatever so as you can
2:13
see here we have lots of code that you
2:15
probably don't understand well you can
2:17
use chat GPT or any other AI to have it
2:20
explain to you what this does so let's
2:22
copy this structure over here I'm going
2:24
to copy it and I'm going to ask chat GPT
2:26
about it as you can see I pasted the
2:28
whole structure in here and I asked the
2:30
AI please explain to me how this helps
2:32
in an IOS Jailbreak and surprisingly
2:34
enough it's not going to tell you that
2:35
it can't assist with that it will
2:37
actually start explaining as you can see
2:39
it says the Mac policy op structure you
2:41
provided is related to the mandatory
2:43
access control or Mac framework which is
2:45
indeed correct that's exactly what it is
2:47
in the Apple operating system including
2:49
iOS and it starts telling you exactly
2:51
what can be done with it and then you
2:52
can say explain to me each policy and it
2:55
will start doing so you can see here it
2:57
starts breaking down each Mac policy and
2:59
it explains what it does what it
3:01
determines what it checks so this way
3:03
you would know what the patch really
3:05
this is pretty interesting stuff then
3:06
let's go ahead in here and have a
3:08
different part of code for example let's
3:10
have this function I'm not going to get
3:11
the name of the function so that the AI
3:13
wouldn't know it's supposed to get root
3:15
with it let's start a new window as you
3:17
can see I pasted the code in here and I
3:18
said explain to me what this function
3:20
does on an IOS Jailbreak you press enter
3:23
and yep it will start actually
3:24
explaining to you every single part of
3:26
it it says this code appears to be part
3:28
of a Jil exploit for iOS this design to
3:30
escape privileges to rout that is
3:32
exactly what it does really and it tells
3:34
you that it retrieves and prints the
3:35
current user ID and that is correct
3:37
that's exactly what it does initializes
3:39
the variables check for non root user
3:42
and find the proc and kpr and it says
3:44
this code reads the process list all
3:46
proc to find the proc structure for the
3:48
current process that's correct and the
3:50
kernel process K proc that's correct as
3:52
well and it contains information about
3:54
the active processes and it's typically
3:56
the kernel process structure that's
3:57
correct get the kernel version that is
3:59
correct as well and determine offset
4:01
based on kernel version that's again
4:04
correct because when creating a
4:05
jailbreak it is indeed important to have
4:07
the proper offsets for your device and
4:09
modify the credentials to gain root
4:11
access and it explains exactly how that
4:13
is done and call set you ID zero to
4:15
change the user ID to root U ID Z and
4:18
print the new user and you can actually
4:19
ask it further how does tfp0 work and it
4:22
will actually explain to you it's task
4:24
for Port zero or task for P0 and it
4:27
tells you exactly what it is how it is
4:29
obtained and it even gives you code
4:31
examples on how to use it so yes while
4:33
you can simply ask the AI to build you a
4:35
full iOS 17 jelbreak with just magically
4:38
build one if you want to learn how to
4:39
make a jailbreak you can take components
4:41
from existing open- Source jailbreaks
4:43
and ask the AI to explain them to you if
4:45
you want them explained even better I
4:48
highly recommend Jonathan Len's books
4:50
the star OS internals volume 1 2 and
4:52
three the first one delves into the user
4:54
mode the second one into the kernel mode
4:56
and the third volume is security and
4:58
insecurity which also maintains a
5:00
breakdown of popular Gill bricks at the
5:02
time so he takes various Gill bricks and
5:05
explains each component to you for
5:06
example yo and Phoenix jailbreak and you
5:09
know pangu and stuff like that so this
5:11
is pretty nice pretty good books I
5:12
definitely recommend them they are
5:14
available on Amazon another way you can
5:16
learn how to build this kind of stuff is
5:18
as I said just look on the code of Open
5:19
Source tools and try to understand but
5:21
yes building a jailbreak does require
5:24
understanding how to code if you don't
5:25
know how to make an application like a
5:27
proper application not just hell world
5:29
you will certainly not be able to make a
5:31
jailbreak because making a jailbreak is
5:33
essentially just making a program after
5:35
all an application so you still need to
5:38
be very familiar with the system and how
5:40
to code for it so I hope this video
5:42
helped thank you for watching I amgs now
5:44
till the next time subscribe to stay
5:45
updated and peace out
