Reverse SSH : 

Acceder à l'iphone depuis internet : 

- Depuis l'iphone : ssh -R 19999:localhost:22 user@serveur

- depuis le serveur : ssh localhost -p 19999

iPhone:~ root# id
uid=0(root) gid=0(wheel) groups=0(wheel),1(daemon),2(kmem),3(sys),4(tty),5(operator),8(procview),9(procmod),20(staff),29(certusers),80(admin)

iPhone:~ root# pwd
/var/root

iPhone:~ root# ifconfig 
lo0: flags=8049 mtu 16384
	inet 127.0.0.1 netmask 0xff000000 
en0: flags=8863 mtu 1500
	ether 64:b9:e8:50:f3:26 
pdp_ip0: flags=8011 mtu 1450
	inet 10.0.66.60 --> 10.0.66.60 netmask 0xffffffff 
pdp_ip1: flags=8011 mtu 1024
pdp_ip2: flags=8011 mtu 1024
pdp_ip3: flags=8011 mtu 1024
en1: flags=8822 mtu 1500
	ether 0a:0b:ac:1b:3b:e0 

\o/



adblock : 

yeti:~ root# curl http://jamesisbored.com/iphone/content/hosts.php > /etc/hosts
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100  627k  100  627k    0     0  95128      0  0:00:06  0:00:06 --:--:--  121k

(simple redirection sans append car il y a déjà ce qu'il faut au début du fichier hosts.php)



MobileTerminal fonctionnel : 
yeti:~ root# wget http://mobileterminal.googlecode.com/files/MobileTerminal_520-1_iphoneos-arm.deb
yeti:~ root# dpkg -i MobileTerminal_520-1_iphoneos-arm.deb



Afficher Field Test :
yeti:/ root# cd /Applications/FieldTest.app/
yeti:/Applications/FieldTest.app root# cp Info.plist Info.plist.orig 
yeti:/Applications/FieldTest.app root# plutil -convert xml1 Info.plist
yeti:/Applications/FieldTest.app root# nano Info.plist

=> Enlever les lignes suivantes :
SBAppTags

      	hidden


yeti:/Applications/FieldTest.app root# plutil -convert binary1 Info.plist
yeti:/Applications/FieldTest.app root# killall -15 SpringBoard

yeti:/Applications root# grep "hidden" */Info.plist                  
Binary file AdSheet.app/Info.plist matches
Binary file DemoApp.app/Info.plist matches
Binary file TrustMe.app/Info.plist matches
Binary file WebSheet.app/Info.plist matches
Binary file iOS Diagnostics.app/Info.plist matches
Binary file iPodOut.app/Info.plist matches

\o/