Currently this image supports the following functionality:
- ProxyPI
Proxy wired iOS internet connection and only allow cert server communication for safe agent signing.
The proxy pi allows connections to the following domains:
elcomsoft.com
humb.apple.com
ppq.apple.com
The connection is only permitted after a DNS request was issued. If you want to test this, make sure to use the domain (first), not the ip directly!
i.e. this works:
ping elcomsoft.com
PING elcomsoft.com (35.161.100.221): 56 data bytes
but this does not (without performing a DNS request first)
ping 35.161.100.221
The simplest way to use it is:
- Flash image in microSD card (at least 4GB)
- Power on RPI
- Connect iPhone with lightning to ethernet adapter to the builtin Ethernet port of the Raspberry PI
- Use a USB-to-Ethernet adapter to connect the Raspberry PI to internet
If you want to use WiFi for uplink you need to:
- Use an ethernet cable to connect a computer to the Raspberry Pi builtin ethernet port
- SSH into the pi with
ssh eift@192.168.41.1the password isElcomsoft - Run
sudo nmtuiand setup WiFi - Finally, disconnect the computer and connect the iPhone to the builtin ethernet port of the Raspberry PI
This image currently supports
- Raspberry Pi 3B
- Raspberry Pi 3B+
- Raspberry Pi 4
- Orage Pi 5
- Orange Pi R1 Plus LTS
The downlink (i.e. the connection to the iPhone) is always the builtin ethernet port.
For uplink (connection to the internet) either an additional USB-to-Ethernet adapter or WiFi (on supported boards) can be used.
On the Orange Pi R1 Plus LTS, the port next to the USB-C port is uplink while the other port (the one closer to the GPIO pins) is downlink.
- Make sure docker is installed on your system and can be run in
--privilegedmode - Make sure
qemu-user-staticis installed on your host system (if running on linux) - Make sure
binfmt-supportis installed, configured and running on our host (if running on linux)
Finally Run ./makeimage.sh