Help with jailbreaking and Cydia for iPhones, iPads, and iPod touches.

Pangu provides an iOS 9.0 untethered jailbreak. TaiG provides an iOS 8.4 and 8.3 untethered jailbreak.
Check @PanguTeam, @taig_jailbreak, @saurik, and /r/jailbreak for news and updates.
You can use Cydia Impactor if you need to un-jailbreak an 8.1-8.4 device without restoring.
Instructions for jailbreaking iOS 8.0-8.4.
Before asking a question, check Frequently Asked Questions to find quick answers!
How to fix some mysterious problems.

How do I dump from memory an app? The jailbroken device is an iPad2 running iOS 8.4.

$otool -f theApp 
Fat headers
fat_magic 0xcafebabe
nfat_arch 2
architecture 0
    cputype 12
    cpusubtype 9
    capabilities 0x0
    offset 16384
    size 2419600
    align 2^14 (16384)
architecture 1
    cputype 16777228
    cpusubtype 0
    capabilities 0x0
    offset 2441216
    size 2876880
    align 2^14 (16384)

$otool -arch armv7 -l theApp | grep crypt 
     cryptoff 16384
    cryptsize 1130496
      cryptid 1

I've calculated the offset and the length of the encrypted code like this (assuming the start address begins at 0x1000):

(lldb) script print 0x1000 + 16384
(lldb) script print 20480 + 1130496

I've connected lldb remotely (from my mac) to it and then said:

(lldb) me r --force -o ./mem.bin -b 20480 1150976
error: memory read failed for 0x5000

lldb returned an error as you can see, and I'm not sure why. Am I doing this right? Is dumping the app from memory even possible?

Thank you

asked 16 Aug '15, 23:53

blackprison's gravatar image


edited 16 Aug '15, 23:54

Have you tried downloading Disk Pie (BigBoss repo) Try that out

(17 Aug '15, 12:41) TFsMegatron TFsMegatron's gravatar image

Disk Pie will not accomplish what I want, I want to dump to the disk the unencrypted app from memory.

(17 Aug '15, 20:11) blackprison blackprison's gravatar image
Answer this question. (please use the "add new comment" button unless you are actually answering the original question)
toggle preview

Markdown Basics

  • *italic* or _italic_
  • **bold** or __bold__
  • link:[text]( "Title")
  • image?![alt text](/path/img.jpg "Title")
  • numbered list: 1. Foo 2. Bar
  • to add a line break simply add two spaces to where you would like the new line to be.
  • basic HTML tags are also supported



Asked: 16 Aug '15, 23:53

Seen: 1,212 times

Last updated: 17 Aug '15, 20:11

JailbreakQA is by chpwn and comex.
About JailbreakQA. Powered by OSQA.