AppleJuice
AppleJuice is an exploit found by ECTO-1A that make tons of fake Apple devices advertsing packets. This packets are recognized by Apple real devices like iPhone or iPad and make them crash due to huge flow of packets that device must elaborate. The porting for ESP32 is made by RapierXbox and it's adapted for CapibaraZero.
Vulnerable iOS versions
| iOS version | Compatible |
|---|---|
| iOS 16.x | ❌ |
| iOS 17.0 | ✅ |
| iOS 17.1 | ✅ |
| iOS 17.2* | ❌ |
*until iOS 17.2 beta 3 the exploit wasn't fix
On the newer versions of iOS, some connection popup spawn but phone doesn't crash anymore.
Start the attack
- Go under bluetooth attack section of CapibaraZero
- Select BLE spam bluetooth
- Select AppleJuice and start the exploit
- Wait 30 seconds and your iPhone will start to lag and will reboot