The kernel file descriptor (kfd) project that made rounds this past weekend because of its ability to achieve kernel read and write on firmware up to and including iOS & iPadOS 16.5 is becoming even more famous as iOS developers devise new and unique ways to take advantage of it.
Combined with a PPL bypass, Dopamine jailbreak lead developer Lars Fröder (opa334) says that it would be possible to make a jailbreak for newer devices running supported firmware, but as we don’t have that yet, Fröder has so far suggested on Twitter that kfd in an of itself might be capable of emulating MacDirtyCow-like functionality.
For those who don’t know what MacDirtyCow is, it’s effectively an exploit for iOS & iPadOS 15.0-16.1.2 that allows reading and writing to device’s kernel memory without a jailbreak. It made many add-ons such as Cowabunga and the Misaka package manager incredibly popular.
Add-ons made for the MacDirtyCow exploit can modify a device’s interface and behavior without a jailbreak, and appear to work similarly to jailbreak tweaks. Sadly, what you can accomplish with it is limited when compared with jailbreak tweaks.
So what does all of this mean? Basically, in the interim of waiting for a PPL bypass, iOS developers may be able to create MacDirtyCow-like add-ons for iOS & iPadOS 16.5 that utilize kfd instead. This would open the door to system customizations on more recent firmware for users who can’t take advantage of MacDirtyCow.
Having said that, some developers are already on it. Cowabunga lead developers sourcelocation and leminlimez are already working to see if they can get the project working on iOS & iPadOS 16.5, a feat that they say is possible, but will require effort to fork over:
Likewise, the Misaka package manager may also be coming to kfd devices. Lead developer straight_tamago took to Twitter with a poll to see who would be interested in such a feat, and most people answered yes to that poll:
Are you excited to see what becomes of kfd? Let us know in the comments section down below.
