State Of IOS Jailbreaking In 2025 - Lars Fröder
Nullcon Goa 2025 · Main Stage
In this insightful talk, Lars Fröder, a prominent security researcher and developer of widely recognized tools like TrollStore and Dopamine, delves into the intricate world of iOS jailbreaking, offering a historical perspective, a detailed technical breakdown of his contributions, and a stark outlook on its future in 2025. Fröder, who has been involved in iOS development since 2017 and security research since 2022, primarily discusses work undertaken in his free time, highlighting the motivations behind jailbreaking and the escalating challenges faced by the community.
AI review
Fröder is the real deal — he built both tools under discussion, and the CVE-2023-41991 CoreTrust walkthrough is one of the cleanest explanations of a multi-signer logic confusion bug I've seen presented publicly. The Dopamine architecture (launchd hook as jailbreak server, dyld patch to universalize DYLD_INSERT_LIBRARIES, fcntl interception for library validation bypass) is presented with enough precision that a competent researcher could actually implement it. The 'ETA never' conclusion on iOS 17/18 public jailbreaks is sobering and, based on the exploit-class graveyard he walks through…