For a few days now, jailbreak fans have been able to rush to TrollInstallerX, a tool to easily install TrollStore 2. While the first version was not bug-free, the 1.0.1 update of TrollInstallerX is much more stable. Better still, it supports firmware from iOS 14 to iOS 17 beta.
Easily install TrollStore
For the record, TrollStore is a powerful permanent signing app for iPhones and iPads with a software vulnerability in the CoreTrust API. It has played a particularly important role in recent hacks and jailbreaks. With TrollStore, users can sign IPA files on their Apple device, much like sideloading, but without the requirement of the seven-day re-signing.
Last week, @alfiecg_dev has released the much anticipated direct installation method of TrollInstallerX.
TrollInstallerX is a universal TrollStore installer. It is extremely reliable and easy to use. It is also very fast, able to install TrollStore and/or its persistence helper in seconds on the latest devices.
According to the official GitHub page, TrollInstallerX can be used on arm64 and arm64e devices running iOS 14.0 up to iOS 16.6.1. There are two different installation methods, depending on the device and firmware you have.
- Direct installation : using the kfd kernel exploit, as well as the dmaFail PPL bypass on iOS 15.2+ arm64e devices, TrollInstallerX can install TrollStore and its persistence helper directly on the device without having to exit the installer.
Supports iOS 14.0 – 16.6.1 (arm64) and iOS 14.0 – 16.5.1 (arm64e).
Noticed : A15, A16 and M2 devices running iOS 16.5.1 do not support this method.
Note 2 : A8 devices are only supported on iOS 14.0 – 15.1 at the moment. - Indirect installation : Using the kernel kfd exploit, TrollInstallerX can replace a system app of your choice with the TrollStore persistence helper. This method only exists due to the lack of a PPL bypass on iOS 16.6 and up, as well as the fact that dmaFail is not functional on A15, A16, and M2 devices on iOS 16.5.1.
Supports iOS 16.5.1 – 16.6.1 (arm64e).
Noticed : This method is the only one that supports A15, A16 and M2 devices running iOS 16.5.1.
Both methods allow you to install a persistence helper into a removable system application. The reason this is necessary is due to the way the CoreTrust bug works – under certain circumstances, TrollStore and other applications installed by it will be reset to the user record, instead of the system. You cannot open any of these applications until you use the persistence helper to reset them to the System record.
Since sideloading requires the use of a computer, using TrollHelperOTA Without a computer remains the easiest way to install TrollStore.
TrollInstallerX Update
Update 1.0.1 adds early support for early betas of iOS 17.0, and only applies to iOS and iPadOS 17.0 betas 1, 2, 3, and 4. Testers are needed for non-SPTM devices (i.e. A10-A14 and M1-M2 device users) on these firmware versions. TrollInstallerX can theoretically use direct install on arm64 devices that meet the above criteria, and indirect install on arm64e devices that meet the above criteria.
This doesn’t mean that you can use TrollInstallerX to install TrollStore on the public iOS & iPadOS 17.0 release. Although TrollStore supports this version, there is no installation method for this firmware yet. It’s a bit silly.
If you want to know more about TrollInstallerX or update to the latest version, visit the GitHub page of the project.