Re: Macbook M1 bypass FMM / EFI Unlock
We need to determine how the bootloader unlock is actually performed, whether its a bit flip on the SSD or in the SEP. If it's in SEP, you're shit out of luck. If it's in the info partition then there may be a way to unlock it manually with write access to the chip. Seems unlikely of Apple to overlook such a glaring security hole though, so don't hold your breath. If someone can gain code execution prior to activation then there may be a way to unlock iBoot and install Asahi or a modified macOS install with activation lock removed....
Thank you to the guys at HEGE supporting Badcaps [ HEGE ] [ HEGE DEX Chart ]
Announcement
Collapse
No announcement yet.
User Profile
Collapse
-
Last edited by TheSynthax; 12-06-2022, 12:14 PM.
-
Re: Macbook M1 bypass FMM / EFI Unlock
I assume the the secure boot switch is more than just a bit flip, right? Anyone taken a dump before and then after turning off secure boot? With secure boot off it should be possible to use M1N1 or Asahi and just hacktivate macOS like an old iPhone. Obviously a bit more complicated than that, but with secure boot off it should be quite easy to access the filesystem and bypass setup.
Leave a comment:
No activity results to display
Show More
Leave a comment: