After playing a bit with the coruna exploit chain, I dumped the kernel exploit and one of the implants in powerd
https://github.com/matteyeux/coruna
https://github.com/matteyeux/coruna
matteyeux
- 374 Followers
- 54 Following
- 122 Posts
@besendorf I have been told that you can try the full chain with this github repo
https://github.com/khanhduytran0/coruna
https://github.com/khanhduytran0/coruna
@BucciaBuccia no idea which minor version is patched
@BucciaBuccia this one https://sadjd[.]mijieqi[.]cn/group[.]html is still up, I tested it yesterday. Then I dumped from memory the payloads
I played a bit with Claude to deobfuscate the javascript code from the Coruna exploit chain, I was able to recover the implant and some ARM64 shellcode
Apple providing virtual iPhone could have reduced Corellium’s value as a company providing virtual iPhones and SEP stuff as an upsale.
Luckily it was acquired by Cellebrite before that happened.
Luckily it was acquired by Cellebrite before that happened.
Finaly got some time to play with vphone600 VM, now wen eta official apple support cuz I don't want to lower the security of my main laptop
Now that this guy from Trenchant has been convicted, I wonder whether Trenchant reported the stolen bugs to the vendors or if they’re still being used. Maybe OpZero will report them 😬
I suspect that Apple will provide virtual iPhones for security research this year (2026)