In today's video, I will be showing you how to prevent your ++ (Plus Plus) iOS applications from being #revoked if you got them from Ignition, App Valley, TweakBox, Tutu, etc. This method works fine on iOS 12.0, #iOS 12.0.1 and iOS 11.4.1 / iOS 11.4 and it doesn't require a Jailbreak. This method pretty much blocks the device from communicating with the Apple server that handles the certificate expiration and therefore your device will not know that the application certificate has been revoked.
On Jailbroken devices, that is iOS 11.4 Beta 3 and lower, you can use a tweak called NoPlsOCSP which does the same thing but in a different approach. Since NoPlsOCSP is a Cydia tweak running on jailbroken devices, it has unfettered access to the /etc/hosts file and therefore it can block the OCSP server right there with no need for a VPN.
On jailbroken devices, we do not have such access to the hosts file so a new approach is used – a VPN to block the server. This is a pretty rough way of achieving this, but it nonetheless works. Of course, there are caveats. Since your traffic goes through the VPN I would highly recommend you to avoid using it when dealing with sensitive data on the phone as we don't know exactly what the VPN keeps tabs on. Ignition seems to trust it but that doesn't say much. The same method works for the Electra MPTCP.
▽ Resources ▽
▶ Lazarus can be found on Ignition
▶ NEW iOS 10 UNTETHERED JAILBREAK ACHIEVED & UNTETHER RELEASED (REQUIRES 7.0.4 BLOBS)
▶ Pangu's Jailbreak For iOS 12 (DEMO)
▶ iOS 12 (FINAL) UNTETHERED JAILBREAK SUCCESSFULLY ACHIEVED