Run HelloWorld on Jailbroken iOS 11

iPhone 5s, iOS 11.1

Jailbroken by Electra

How to jailbreak

Cydia Impactor and a new Apple ID required (You can use your own Apple ID at your risk).

If any error occurs on Cydia Impactor, try to login in Xcode and remove useless app/cert.

Trust your developer certificate in iOS Settings => General => Profiles & Device Management => DEVELOPER APP.

Write HelloWorld



sign with jtool


upload and run helloworld

If this binary is not signed with platform-application entitlement, it will get a ‘Killed’ if it’s under /bin/


I wrote a cli based memory editor, which requires more than a hello world.

1 entitlements

2 patch_setuid() from coolstar’s example. But I’m using code from electra’s cydia fork, also mentioned after his example.

3 Special thanks to ThisTakenIsUsername.

Run HelloWorld on Jailbroken iOS 11 by @sskaje:

Mach-O Disable ASLR/PIE

ASLR, Address Space Layout Randomization

Address space layout randomization (ASLR) is a computer security technique involved in protection from buffer overflow attacks. In order to prevent an attacker from reliably jumping to a particular exploited function in memory (for example), ASLR involves randomly arranging the positions of key data areas of a program, including the base of the executable and the positions of the stack, heap, and libraries, in a process’s address space.



Mach-O, short for Mach object file format, is a file format for executables, object code, shared libraries, dynamically-loaded code, and core dumps. A replacement for the a.out format, Mach-O offered more extensibility and faster access to information in the symbol table.

Mach-O was once used by most systems based on the Mach kernel.[citation needed] NeXTSTEP, OS X, and iOS are examples of systems that have used this format for native executables, libraries and object code.

There are several tools turning ASLR/PIE off, some of those need to be compiled. So I decided to write one in Python. Repository:

Disable ASLR on jailbroken iPod Touch 4 with python installed from Cydia
Disable ASLR

Disable ASLR on OS X for iOS App
Disable ASLR on OS X for iOS App

Mach-O Disable ASLR/PIE by @sskaje:

Incoming search terms:

Duplicated: For those who cannot use lsof on a jailbroken iDevice

From Apple signed fake device attributes?

If you find the lsof not working with a message like ‘lsof: PID 3206 information error: Cannot allocate memory’, then you may need from Then chmod +x lsof-arm7-iOS4.2

Tested under iOS 6.1.3 on iPod Touch 4.

Duplicated: For those who cannot use lsof on a jailbroken iDevice by @sskaje:

Incoming search terms:

Apple signed fake device attributes?

You are not authorised to read all content in this post.

Please login…

Apple signed fake device attributes? by @sskaje: