A couple of weeks ago Ian Beer of Google’s Project Zero released an exploit for devices running below 10.3.3, I’m sure most of you tweakers and jailbreakers heard about it. But I’ve seen people say it’s useless and all that crap. Well it is not right, an exploit is an exploit is an exploit.

It’s basically a userland exploit. I’m sure you must’ve read about it in other articles, But in this article I’m gonna show you how I had fun with it.

I ran a simple C webserver by using triple fetch. Yeap that’s right a web server. It may not sound that interesting to you but it was for me and I’m sure at least some of you will feel the same way!

So how did I do this? Pretty simple actually I took a simple webserver written in C compiled it for iOS and voila we have it and then I leveraged triplefetch to help me run it. 🙂

So let’s begin,

First we have to clone the repo,

git clone https://github.com/hayzamjs/TripleFetch_WebServer

Then you can navigate to the folder where it is downloaded.

After that open ‘nsxpc2pc.xcodeproj’ file and Xcode will pop up.

Click on the run/play button after you’ve done that.

You may see a lot of text in the debugging panel, like so :-

It may even not work the first time, or the second, just restart the phone and try to run again it is bound to work in the second time, if not the next.

After it shows the following output you’re good to go,

Now you can move over to your phone and you’ll see cServer move the scroller to that and then click ‘exec bundle binary’.



After you click on ‘exec bundle binary’, it’ll output cServer onto the screen, like so.

After that you’re done, you can visit http://youPhoneIP:15000 to view the webserver running on your iPhone, this could’ve been done using a normal obj-C/swift application but I tried to use triple fetch exploit to make things interesting, we’re running unauthorized code on an iOS device, that’s the dream people! 🙂

Here’s a screenshot of the webpage,

If you wanna know how to modify and make your own C apps run on like I did, check out the github repo.

That’s it for now guys, thanks for taking the time to read this, do share this post if you liked it 🙂