apple

jailbreaking made easy for everyone [update: fix out now]

even with the current release of iOS13.5 it is possible to jailbreak an iOS device, to either customize your design or even worse to get around systemlevel security

  • first your need to download AltStore, also sideload any ipa without a jailbreak
  • trust App as developer in settings on your device
  • open unc0ver.dev and select “Open in AltStore”
  1. open unc0ver to perform jailbreak
  • done, now check Cydia App for Tweaks e.g. OpenSSH
we’re connected via putty

but in my opinion…

  • require a desktop macOS/Win10/LInux perform
  • AltServer works just for a single device at a time
  • unc0ver needs to be excuted after a device reboot
  • iOS 13.5.1 beta already fixed is [update: is fixed right now]
  • minor benefit for personal
  • enterprise are aware of this issue and scan device with UEM and Advance Thread Detection

it will always be a cat-and-mouse game 

technology

websessions with custom background

in times of corona in homeoffice and a lot of websessions it’s a nice feature to hide your background or change carpet color

teams

offer “background effects” to insert custom image to live video, at windows add your custom image here

%APPDATA%\Microsoft\Teams\Backgrounds\Uploads

zoom

called as virtual backgrounds it is also possible to hide real background, for multiple os and even with custom files


webex

called as video background it is for suce possible to add custom background, since a few days also for iOS devices


… and many many more

technology

gather ios device logs on the fly without a mac

it usually requires a mac with configurator installed to gather iOS device logs while troubleshooting an issue, there a some alternatives around…

#1 virtualize macOS

… and use apple’s configurator on windows, read more how to establish this below

touch @macos

apple introduced the “all news” touch bar in 2017 for macbook pro, but what most mac users missing is a touchscreen – the addon airbar, extra hardware attached to the screen, looks unbeautiful every smartpsmartsmaand a lot other notebook own a touchdisplayt, so what to do if you don’t want to run or carry separate device – vitualize… Continue reading touch @macos

#2 itools

as an alternative software for iTunes, it it further able to access device logs and is supported at windows & macOS for the following devices

iPhone X, iPhone 8,iPhone 5, iPhone 6, iPhone SE, iPhone 7,iPhone 5C,iPhone 5S, iPhone 6S,iPhone 6 plus, iPhone 6S plus, iPhone 7 Plus, iPod touch, iPad 4,iPad Mini 4, iPad Mini 3 and iPad Mini 2,iPad Pro (9.7 , 12.9 inch),iPad Air and iPad Air 2


#3 buildin analystics

even directly from the device it self it’s possible to gather debug information, with this workaround

  • enable AssistiveTouch
  • select analytics
  • press virtual Homebutton
  • reproduce the issue/crash
  • upload logs
google

android bloatware in business

android device arrive with alot of preinstalled app like facebook, flipboard, skype and for sure google service (youtube,maps,gmail,etc.) – for private use this is anoying, but for business it is essential to secure the usecase

android enterprise

when enabling Android Enterprise for Kiosk/Company devices, during setup the default apps could be disabled with this switch – PROVISIONING_LEAVE_ALL_SYSTEM_APPS_ENABLED – Samsung offers this with it’s KNOX Mobile Enrollment and google with buildin zero-touch service

be aware that you loose the native camera app if your usecase require one

device management

after your device is enrolled in mobile device managment system (emm, uem or whatever) your able to restrict installed apps by package name, apps differ from device manufaturer and os level, package names also useful to arrange/allow in kiosk setup, for samsung XCover4s these are:

  • com.samsung.android.messaging
  • com.sec.android.app.samsungapps
  • com.samsung.android.calendar
  • com.samsung.android.email.provider
  • com.sec.android.app.myfiles
  • com.sec.android.gallery3d
  • com.sec.android.app.clockpackage.clockpackage
  • com.sec.android.app.clockpackage.alarm.alarmalert
  • com.google.android.gm
  • com.google.android.youtube
  • com.google.android.googlequicksearchbox
  • com.sec.android.app.fm
  • com.google.android.apps.maps
  • com.samsung.android.contacts
  • com.samsung.android.dialer
  • com.samsung.android.game.gamehome
  • com.sec.factory.camera
  • com.sec.android.app.camera
  • com.sec.android.app.clockpackage
  • com.sec.android.app.sbrowser
  • com.microsoft.skydrive
  • com.facebook.katana

adb tools

remove bloatware from a single device or find from from a reference device locally connected

  1. install USB drivers for your device
  2. download & install ADB tools
  3. enable Developer Options & USB debugging
  4. plug in your device into the computer
  5. open a terminal and type: adb devices
  6. will return the ID of your device
  7. in adb shell with: adb shell
  8. list all installed packages: pm list packages
  9. to remove packages type: pm uninstall -k -user 0 <package name>

take care to not disable system critical apps of android, check here

apple

how to install an old version of an iOS app

usually it’s not that simple for apple user to install a previous version of an app, sideloading of apps is reserved for android devices or just in cydia store via iOS jailbreak

TestFlight is apple’s Beta Testing Service to test Pre-Release version with new features, it support up to 10.000 tester invited per mail or via shared link, your able to install newer and even older versions of the invited app, or switch betweeen versions is possible, but builds remain just active for 90 days

the link will refer to the previous installed TestFlight app, select the shared beta app and select any previous build

general

nothing but alternatives

locked to a single provider of your services or your using a service the doesn’t fit perfekt and you look for an alternative, here is the solution

alternative.me provide nothing but alternatives – simply add the current app/service/business application your using and check what possible alternatives are around, e.g. switch from chrome to brave browser

they also check the appeal in categorys women, men, kids, luggage, hobbies & sports

finally they analyze emotions and sentiments with a schema to generate the fear & greed index for crypto currencies

interesting portfolio mix with clever benefits

apple, security

iOS VPNonDemand gets “inactive”

recently we noticed VPN wasn’t working, could be the disabled connect on demand option – nope – the entire VPN configuration was inactive?!

a bit history: apple introduced VPN on demand (VPoD) still in iOS 5, it’s required setup certificate authentication – at first it was just possible to define single domains, over the years it advanced to ignore, evaluate or disconnect for certain domains – along with iOS 7 apple intoduced Per-app VPN to connect specific apps – since iOS13 it is even possible to tunnel just mail/calandar/contacts domains

noticed that this just happed for VPoD configuration, even if a single domain overlap in OnDemand rule, always the last pushed VPN configuration is active

even though all other obsete profiles are remove, the VPN config stays in it’s current state, even if it’s the last remaining configuration

you either manually enable the desired config or repush the config via MDM to remote enable

google

you know chrome’s offline easteregg and how to play online

you notice it when sites doesn’t load or videos can’t played… not at Firefox or IE

google added in 2014 a little endless runner to chrome browser, the developer wrote about the idea – when your trying to load something and the connection suddenly stops – simply tab the screen or hit the spacebar – jump over the cactus/cacti the speed raises with game progress

  • at your desktop just hit chrome://dino to play the game even when your online

let the games begin