< NULLCON 2025 - GOA />

About the Speaker

CFP CTF Training Speakers Sponsors Registration Venue
GO BACK
img
Lars Fröder
Security Researcher Cellebrite Labs

< Talk Title />

State of iOS Jailbreaking in 2025

< Talk Category />

iOS and macOS Track

< Talk Abstract />

Ever since the introduction of the iPhone in 2009, hackers and enthusiast have been exploiting security vulnerabilities to gain control over their iOS devices, to escape Apples walled garden.

In recent years, Apple has heavily cracked down on Kernel post exploitation with features such as
- Kernel Patch Protection (KPP/KTRR)
- Pointer Authentication (PAC)
- Page Protection Layer (PPL)

Bypasses for some of these features are now required to gain the desired level of control over the operating system.

This talk aims to provide an up-to-date high level overview over the most recent tools to archive code execution and jailbreak on iOS and their internals, including the vulnerabilities they exploit.

The talk covers two tools developed by the presenter:
- TrollStore, a way to install unsigned apps based on a codesign vulnerability on iOS 14.0 - 16.6.1, 17.0- Dopamine, a jailbreak for iOS 15.0 - 16.5

< Speaker Bio />

Lars is a Security Researcher at Cellebrite Labs.