Adds Cryptex1 blob saving support!
iOS 16 added a new component with its own seed(generator) and nonce called Cryptex1. The seed gets entangled even on a10(X)/a11 devices using the 0x8A4 key.
A jailbreak is REQUIRED to save and use cryptex blob. In fact, checkm8 need needed to even use cryptex blobs!
If you are jailbroken, you can use the x8A4 tool to encrypt the cryptex seed. You dump the 0x8A4 key to encrypt the cryptex seed.
To encrypt the seed, first dump the 0x8A4 key with sudo x8A4 -k 0x8A4. You can then use the AES Nonce tool to encrypt the seed.
Usage:
python3 aes_cryptex_nonce.py <Dumped 0x8A4 Key> <Cryptex Seed>
python3 aes_cryptex_nonce.py aes_cryptex_nonce.py DF6A9324032C86159F0DE3A1D477B3F2 11111111111111111111111111111111 -> f7cfa05f0207570426e6c96af9a8da73eeb15a17341a1d09244a3ea05b7b5077
Then finally you can save cryptex blobs like so:
tsschecker --device iPhone10,3 --boardconfig d22ap --ecid 0x69 -g 0x1111111111111111 -x 0x11111111111111111111111111111111 -t f7cfa05f0207570426e6c96af9a8da73eeb15a17341a1d09244a3ea05b7b5077 -l -E -s
Requires Baseband Serial Number for saving baseband blobs!
Run ideviceinfo -k "BasebandSerialNumber" to get baseband serial number