PongoOS : A Pre-Boot Execution Environment For Apple Boards

PongoOS is a pre-boot execution environment for Apple boards built on top of checkra1n.

Building On macOS

Install Xcode + command-line utilities
Run make all

Building On Linux

Install clang (if in doubt, from apt.llvm.org)
Install ld64 and cctools’ strip.
- On Debian/Ubuntu these can be installed from the checkra1n repo:

echo ‘deb https://assets.checkra.in/debian /’ | sudo tee /etc/apt/sources.list.d/checkra1n.list
sudo apt-key adv –fetch-keys https://assets.checkra.in/debian/archive.key
sudo apt-get update
sudo apt-get install -y ld64 cctools-strip

On other Linux flavours you’ll likely have to build them yourself. Maybe this repo will help you.

If clang, ld64 or cctools-strip don’t have their default names/paths, you’ll want to change their invocation. For reference, the default variables are equivalent to:

EMBEDDED_CC=clang EMBEDDED_LDFLAGS=-fuse-ld=/usr/bin/ld64 STRIP=cctools-strip make all

Build Artifacts

The Makefile will create four binaries in build/:

Pongo – A Mach-O of the main PongoOS
Pongo.bin – Same as the above, but as a bare metal binary that can be jumped to
checkra1n-kpf-pongo – The checkra1n kernel patchfinder, as a Pongo module (Mach-O/kext)
PongoConsolidated.bin – PongoOS and the KPF merged into a single binary

Usage

checkra1n -k Pongo.bin                  # Boots to Pongo shell, KPF not available
checkra1n -k PongoConsolidated.bin      # Auto-runs KPF and boots to XNU
checkra1n -k PongoConsolidated.bin -p   # Loads KPF, but boots to Pongo shell

Structure

The core PongoOS and drivers are in src/.
- Build-time helper tools are in tools/.
The stdlib used by PongoOS (Newlib) is in aarch64-none-darwin.
- This includes a custom patch for Newlib to work with the Darwin ABI.
An example module exists in example/.
Scripts to communicate with the PongoOS shell are in scripts/.
- This includes pongoterm, an interactive shell client for macOS.
The checkra1n kernel patchfinder (KPF) is in checkra1n/kpf.
- This currently includes the SEP exploit, though that is to be moved into mainline PongoOS in the future.
A userland version of the KPF can be built from checkra1n/kpf-test (can only be run on arm64).

Download

R K

Next Sigurls : A Reconnaissance Tool & It Fetches URLs From AlienVault's OTX »

Previous « Wprecon : A Vulnerability Recognition Tool In CMS Wordpress

Published by

R K

Tags: ApplePongoOSPre-Boot

3 years ago

Ethical Hacking And Penetration Testing Tools – Harnessing Python For Robust Cybersecurity Solutions

This repository contains tools created by yogSahare0 while learning Python 3 for ethical hacking and penetration testing.…

3 days ago

Cyber security

SentinelEye – Automated Wireless Security Toolkit

"NetSecChallenger" provides a suite of automated tools designed for security professionals and network administrators to…

3 days ago

Cyber security

Autohack : Your Step-By-Step Guide To Installation And Setup

The essential tool for cybersecurity enthusiasts! This guide provides a detailed walkthrough on how to…

3 days ago

Cyber security

Poodone – A Comprehensive Toolkit For Cybersecurity Professionals

Meet "Poodone," the ultimate Python script designed for cybersecurity enthusiasts and professionals alike. Packed with…

4 days ago

Pentesting Tools

Unbekannt Framework – The Comprehensive Hacking And Pentesting Suite For Windows

The Linux version is no longer supported! The last Linux version is 6.0 that you…

4 days ago

Cyber security

Jin – Your Hacking CLI Toolkit

Jin is a hacking command-line tools designed to make your scan port, gathering urls, check…

4 days ago

Kali Linux Tutorials