diff --git a/_compile/build_trollinstaller2.sh b/_compile/build_trollinstaller2.sh index 9aa30a9..55a3021 100755 --- a/_compile/build_trollinstaller2.sh +++ b/_compile/build_trollinstaller2.sh @@ -33,6 +33,14 @@ APP_NAME=$(find *.app -maxdepth 0) BINARY_NAME=$(echo "$APP_NAME" | cut -f 1 -d '.') cd - 2> /dev/null +if [ ! -f "./pwnify_compiled" ] +then + curl https://raw.githubusercontent.com/LinusHenze/Fugu14/master/tools/pwnify_compiled --output ./pwnify_compiled + xattr -c ./pwnify_compiled + chmod +x ./pwnify_compiled + codesign -f -s - ./pwnify_compiled +fi + ./pwnify_compiled ./out/tmppwn/Payload/$APP_NAME/$BINARY_NAME ./out/tmppwn/pwn_arm64e rm ./out/tmppwn/pwn_arm64e diff --git a/install_trollinstaller2.md b/install_trollinstaller2.md index f5f9990..4017bcf 100644 --- a/install_trollinstaller2.md +++ b/install_trollinstaller2.md @@ -16,23 +16,21 @@ 3. Rename the output ipa to `InstallerVictim.ipa`, and put it into `~/TrollStore/_compile/target/InstallerVictim.ipa` -4. Grab pwnify_compiled from Fugu14 repo (https://github.com/LinusHenze/Fugu14/blob/master/tools/pwnify_compiled), sign it using codesign (`codesign -f -s - `) and put it at `~/TrollStore/_compile/pwnify_compiled` - -5. Make sure you have Procursus `ldid` installed and added to your path! (https://github.com/ProcursusTeam/ldid) +4. Make sure you have Procursus `ldid` installed and added to your path! (https://github.com/ProcursusTeam/ldid) - `brew uninstall ldid` (brew ldid is bad ldid if you have it) - Rename the Procursus ldid for your arch to `ldid`, then do `chmod +x ~/Downloads/ldid` - `sudo mv ~/Downloads/ldid /usr/local/bin` -6. cd into _compile and run `./build_trollinstaller2.sh` (`chmod +x ./build_trollinstaller2.sh` if you get a permission error) +5. cd into _compile and run `./build_trollinstaller2.sh` (`chmod +x ./build_trollinstaller2.sh` if you get a permission error) -7. Wait a bit, when done, there will be a `TrollInstaller2.ipa` in ~/TrollStore/_compile/out +6. Wait a bit, when done, there will be a `TrollInstaller2.ipa` in ~/TrollStore/_compile/out ## Using compiled IPA (does not neccessarily require a Mac if you obtained the IPA from non orthodox ways) -8. You can install that to a device using e.g. ideviceinstaller(do `brew install ideviceinstaller` then do `ideviceinstaller -i TrollInstaller2.ipa`) +7. You can install that to a device using e.g. ideviceinstaller(do `brew install ideviceinstaller` then do `ideviceinstaller -i TrollInstaller2.ipa`) - Alternatively, you can use Sideloadly if you select "Normal Installation". - (Other methods may also work, but make sure you don't use a signing cert, you can also use an enterprise plist or something to install it via Safari as shown in Fugu15 demo, something like iFunBox may also work) -9. After installation, you can use the newly installed app on your device to install TrollStore +8. After installation, you can use the newly installed app on your device to install TrollStore