PongoOS is a pre-boot execution environment for Apple boards built on top of checkra1n.
Building On macOS
make all
Building On Linux
ld64
and cctools’ strip
.echo ‘deb https://assets.checkra.in/debian /’ | sudo tee /etc/apt/sources.list.d/checkra1n.list
sudo apt-key adv –fetch-keys https://assets.checkra.in/debian/archive.key
sudo apt-get update
sudo apt-get install -y ld64 cctools-strip
If clang
, ld64
or cctools-strip
don’t have their default names/paths, you’ll want to change their invocation. For reference, the default variables are equivalent to:
EMBEDDED_CC=clang EMBEDDED_LDFLAGS=-fuse-ld=/usr/bin/ld64 STRIP=cctools-strip make all
Build Artifacts
The Makefile will create four binaries in build/
:
Pongo
– A Mach-O of the main PongoOSPongo.bin
– Same as the above, but as a bare metal binary that can be jumped tocheckra1n-kpf-pongo
– The checkra1n kernel patchfinder, as a Pongo module (Mach-O/kext)PongoConsolidated.bin
– PongoOS and the KPF merged into a single binaryUsage
checkra1n -k Pongo.bin # Boots to Pongo shell, KPF not available
checkra1n -k PongoConsolidated.bin # Auto-runs KPF and boots to XNU
checkra1n -k PongoConsolidated.bin -p # Loads KPF, but boots to Pongo shell
Structure
src/
.tools/
.aarch64-none-darwin
.example/
.scripts/
.pongoterm
, an interactive shell client for macOS.checkra1n/kpf
.checkra1n/kpf-test
(can only be run on arm64).Pystinger is a Python-based tool that enables SOCKS4 proxying and port mapping through webshells. It…
Introduction When it comes to cybersecurity, speed and privacy are critical. Public vulnerability databases like…
Introduction When it comes to cybersecurity, speed and privacy are critical. Public vulnerability databases like…
If you are working with Linux or writing bash scripts, one of the most common…
What is a bash case statement? A bash case statement is a way to control…
Why Do We Check Files in Bash? When writing a Bash script, you often work…