It sounds like you're referring to — but that's not a published academic paper.
: It provides a more formal academic look at how "one-click" tools (like Broque) simplify highly sophisticated memory-corruption exploits for everyday use. broque ramdisk
Scenario: Your child spammed the wrong code, and the iPhone says "iPhone is disabled, connect to iTunes." It sounds like you're referring to — but
The tool sends this image via libimobiledevice or irecovery while the device is in pwned DFU mode . Once loaded, the device boots into the Broque environment rather than iOS. broque ramdisk
sudo mkdir /mnt/ramdisk sudo mount /dev/ram0 /mnt/ramdisk