iPhone Phone Farm

Does anybody know if rootless jb is still detected by apps?
iphones can be automated with appium but you need macOS.
 
Yes, of course, by most bigger apps.

P. S.: You call it "jailbreak" at iPhones.
If jailbreak aren't allowed from big app what should i do:
1-use Chrome's Dev Tools with remote debugging enabled .


2- using a jailbroken iPhone.
Remove the sim/turn on airplane mode, we need all data to be routed through our network. configure the device to use WiFi, it should be the same network as your PC/Mac. Configure the testing device's proxy to be your PC/Mac internal IP address, on port 8080 where you'll be acting as a man-in-the-middle for all HTTP/S requests
Install Burp Suite, OWASP ZAP, or Fiddler on your PC/Mac. These are intercepting proxies that will allow you to intercept, log, and manipulate the requests from your smart phone's wifi connection and the remote servers, capturing all the traffic from an application.
Generate a root certificate with Burp Suite, install it on your iPhone. I will need to find a way to get the device to trust user-provided self-signed certificates with the same level of trust as other system certificates. This is necessary in order to decrypt the applications encrypted HTTPS requests, which nearly all applications use.
Fire up the application and use it, start analyzing the requests and seeing what you can learn.
Back to the point, awesome progress Lucky. Very inspirational.

Should i go for Path 1/2?
 
If jailbreak aren't allowed from big app what should i do:
1-use Chrome's Dev Tools with remote debugging enabled .


2- using a jailbroken iPhone.
Remove the sim/turn on airplane mode, we need all data to be routed through our network. configure the device to use WiFi, it should be the same network as your PC/Mac. Configure the testing device's proxy to be your PC/Mac internal IP address, on port 8080 where you'll be acting as a man-in-the-middle for all HTTP/S requests
Install Burp Suite, OWASP ZAP, or Fiddler on your PC/Mac. These are intercepting proxies that will allow you to intercept, log, and manipulate the requests from your smart phone's wifi connection and the remote servers, capturing all the traffic from an application.
Generate a root certificate with Burp Suite, install it on your iPhone. I will need to find a way to get the device to trust user-provided self-signed certificates with the same level of trust as other system certificates. This is necessary in order to decrypt the applications encrypted HTTPS requests, which nearly all applications use.
Fire up the application and use it, start analyzing the requests and seeing what you can learn.
Back to the point, awesome progress Lucky. Very inspirational.

Should i go for Path 1/2?

It's out of the scope of this thread to discuss reverse engineering methods.

To keep it short: None of the above will work.

1. The Chrome browser components will be detected by the big social media apps and jeopardize your accounts. No "normal" user would use a browser all day long.

2. Please look up "SSL pinning". (Besides the already discussed jailbreak detection.)
 
What does JB stand for
It stands for jailbreak.
I worked with Android and iOS before and iOS is better than Android.
Don't even bother with Android unless you have an expert and know what you are doing.
Accounts get disabled very quickly.

It seems the IPA needs to be patched for iOS to disable jailbreak detection in that case.
@ReverseEngineering, do you know if they check the address location in memory as well to see if something runs on top of the app itself?
 
It stands for jailbreak.
I worked with Android and iOS before and iOS is better than Android.
Don't even bother with Android unless you have an expert and know what you are doing.
Accounts get disabled very quickly.

It seems the IPA needs to be patched for iOS to disable jailbreak detection in that case.
@ReverseEngineering, do you know if they check the address location in memory as well to see if something runs on top of the app itself?
Thanks for advice, i use adb + Appium for automation on iPhone using mac
Do you know if automation on Twitter with jailbreak iPhone ? If Not what app work?
 
Last edited:
I work on Instagram and i meeet my Daily limit of follow of 10 users a Day.
My technique Is like IG story , the limit Is 10x higher then other task.

I Need proxy providers , can you PLS dm me
 
Join the Vietnamis group where you can get software, or you can get them to build it for you. They are quite proficient in these matters and are already working on creating fake accounts on Facebook and Instagram, charging between $20 to $30.
 
Hey! I had some questions.

Used to run an iPhone farm with around 450 iPhones. Could you PM me? I'm too new to PM.
For automation if each pc run 30 smartphone and you have 450 PC, you must have 15 PC right ?



Tò manage automation -if proxy setup correctly i dont Need connect PC and iPhone THROUGH cable , right ?

I would need to add iPhone and PC networking to the list.

Simply put, i can send http requests to any machines in the same wifi or internet router.right?

I can use ifconfig in order to check what ip is assigned to each machine right ?

Open a port within the ip by using ufw
 
It seems the IPA needs to be patched for iOS to disable jailbreak detection in that case.
@ReverseEngineering, do you know if they check the address location in memory as well to see if something runs on top of the app itself?

Which app do you mean exactly?

For example, TikTok even crawls a part of your file system to detect an emulator usage.


Thanks for advice, i use adb + Appium for automation on iPhone using mac

Something about your story seems to be wrong, since there is no ADB for iPhones. The "A" in "ADB" stands for "Android" btw.


Hey! I had some questions.

Used to run an iPhone farm with around 450 iPhones. Could you PM me? I'm too new to PM.

I PM'ed you
 
Which app do you mean exactly?

For example, TikTok even crawls a part of your file system to detect an emulator usage.




Something about your story seems to be wrong, since there is no ADB for iPhones. The "A" in "ADB" stands for "Android" btw.




I PM'ed you
I'm still learning and i'm working with Instagram and reddit

Btw i Need tò run only One account for cloned app.


With jailbreak iPhone do you Suggest me tò use this there software for safe purpose:

-"Instagram SSL pin" on github and use those to clone.

- Xposed modules to change hardware information for Instagram and allow several other things.

-"" IPA patch for iOS to disable jailbreak detection ."


-LSPosed with Android Faker.
 
-"Instagram SSL pin" on github and use those to clone.

- Xposed modules to change hardware information for Instagram and allow several other things.

-"" IPA patch for iOS to disable jailbreak detection ."

-LSPosed with Android Faker.

Please create a separate thread about your plans, since you keep talking about typical Android extensions.

This thread is dedicated to "iPhone farms", so please don't mess it up with off-topic Android content. Thank you! ;-)
 
Hey! I had some questions.

Used to run an iPhone farm with around 450 iPhones. Could you PM me? I'm too new to PM.
Why did you stop?

Which app do you mean exactly?

For example, TikTok even crawls a part of your file system to detect an emulator usage.




Something about your story seems to be wrong, since there is no ADB for iPhones. The "A" in "ADB" stands for "Android" btw.




I PM'ed you
Instagram
 
Why did you stop?


Instagram
Forgive my language but there is no other way to express this: It was a shitty solution. Beyond shit. & A huge pain in the ass for the entire duration we ran it for. It's a novice solution for people that don't know how to do it right, especially if you're trying to scale to fill / send tens of millions of instagram likes or tens of millions of instagram followers using them.

It just doesn't work or make sense to do using iPhones. The reason we stopped is because we became more advanced and switched to using Pi's, and then eventually, switched to 4x Ubuntu 32-core servers which now perform and send the same amount of actions equivalent to thousands of iPhones. So 1x server = roughly 1452 iphones.

Our evolution chain was:
- Bypassing SSL Pinning and hooking the Instagram iOS app via tweaks to intercept and replicate requests. That way 1x iPhone would become 5-6x iPhones because it would run 5-6 accounts at the same time and simply replace the POST / GET data relative to simultaneous account data. AutoTouch would be active on runtime. & we even hooked certain functions to disable post loading and used uiopen:// to speed up the load posts process. Ex: uiopen://instagram?mediaid=1

- Eventually got rid of all iPhones, switched to a ton of raspberry PI 4b+'s. Horrible solution and investment. The code would run on each pi and it would virtualize all of the requests, however, each pi could barely support more than 2-3x dongles and would constantly need daily reboots.

- Present day. We got rid of all PI's and all iPhones. We no longer run our own proxy farm and have setup strategic deals with good 4G proxy providers. We use a custom web & iOS API back-end that I built. All requests are sent through it and we're scaling creation / setup / fulfillment to run around 1,300,000 Instagram accounts per month. Hoping to simultaneously control / run 10,000,000+ IG accounts at the same time in the next 3-6 months max.

We've wasted $400k+ USD trying to figure the above out ^ It's definitely nostalgic to hear people talking about using physical iPhone automation lol.
 
Back
Top
AdBlock Detected

We get it, advertisements are annoying!

Sure, ad-blocking software does a great job at blocking ads, but it also blocks useful features and essential functions on BlackHatWorld and other forums. These functions are unrelated to ads, such as internal links and images. For the best site experience please disable your AdBlocker.

I've Disabled AdBlock