Skip to content

KFD Jailbreak [KFD Exploit]

    KFD Jailbreak / KFD Exploit

    KFD Jailbreak is a newly released project. It is known as Kеrnеl Filе Dеscriptor for read and write kernel memory on iOS devices. It uses different vulnerabilities to get access to certain memory parts called PTEs that are hanging in the system. These are called PUAF primitives, which is short for “physical use-after-free.”

    Already KFD is used for iOS 16 – iOS 16.5 and iOS 16.6 beta 1 running A12+ iOS device customization. Essentially, all the capabilities previously achievable through the MacDirtyCow exploit can also be done using the KFD exploit.

    What can KFD exploit do right now?

    • Revamp the appearance of the Home Screen 
    • Adjust concealed system preferences
    • Eliminate the Dock background
    • Substitute icons
    • Transform the visual style of the Control Center 
    • Enable Dynamic Island across all iOS 16 devices

    What kind of jailbreak would KFD exploit lead to?

    • It’s probable that it would result in a Semi-Untethered jailbreak.
    •  Exploits based on puaf_physpuppet would need to be manually installed and would require reauthorization. 
    • Exploits based on puaf_smith can be accessed through WebContent. If a complete chain of exploits is created, users wouldn’t have to sign or manually install the jailbreak, making it the more favorable choice.

    KFD Jailbreak download

    KFD Jailbreak IPA is not available to download yet. Currently the KFD Jailbreak project is ongoing. The Dopaminе Jailbrеak team contributed to this project. 

    Also, exploit has been released as an open-source project under the permissive MIT license, accessible through a dedicated GitHub Repository.

    However still you can customize the iOS devices using KFD exploit based customization methods without jailbreaking.


    iOS devices : iPhone XR,iPhone XS, iPhone XS Max, iPhone 11, iPhone 11 Pro, iPhone 11 Pro Max, iPhone SE (2nd gen), iPhone 12, iPhone 12 mini, iPhone 12 Pro, iPhone 12 Pro Max, iPhone 13, iPhone 13 mini, iPhone 13 Pro,iPhone 13 Pro Max, iPhone SE (3rd gen), iPhone 14, iPhone 14 Plus, iPhone 14 Pro, iPhone 14 Pro Max

    iOS versions :  iOS 16.6 Beta 1, iOS 16.5, iOS 16.4.1, iOS 16.4,iOS 16.3.1, iOS 16.3, iOS 16.2, iOS 16.1.2, iOS 16.1.1, iOS 16.1, iOS 16.0.3, iOS 16.0.2, iOS 16.0.1, iOS 16,

    Note –  KFD exploit was fixed on iOS 16.5.1, So, iOS 16.5.1, iOS 16.6 final version, iOS 16.6.1, iOS 16.7 and iOS 17 does not work with KFD exploit. Refer iOS 16.5 / iOS 16.5.1 Jailbreak, iOS 16.6/iOS 16.6.1 Jailbreak, iOS 16.7 Jailbreak, iOS 17 Jailbreak pages for other solutions.

    Developer’s Suggestion for other iOS users

    • iOS 17+ any device users = Downgrade :  Signed 16.5.1 restore > iOS beta 16.6b1
    • iOS 16.5.1 arm64e device users = Update to iOS beta ipsw 16.6b1
    • iOS 15.5 – iOS 15.6.1 arm64e device users = Update : DelayOTA* > iOS 16.5
    • iOS 16.5.1 arm64 device user = Update to iOS beta ipsw 16.6b1
    • iOS 15.5 – iOS 15.6.1 arm64 device users = Update : DelayOTA* > iOS 16.5

    *How many days are left to DelayOTA: iOS 16.5 (20F66) 9/19/2023, 1:00:00 AM

    KFD Exploit based customization methods

    1. Misaka Tweak Manager

    Misaka version 2.0.2 updated added the KFD exploit support. Now Misaka is compatible with a wide range of devices, both jailbroken and not, including A12-A16 models (iPhone Xs to iPhone 14 Pro Max) running iOS 16.2 to iOS 16.5, as well as iOS 16.6b1. You can download and install additional features that utilize either the MacDirtyCow or kfd exploit to make changes to the system beyond its default settings using Misaka. Read more about Misaka Tweak Manager.

    2. Cluckabunga

    Cluckabunga is a different tool created to personalize iOS system settings without requiring a jailbreak. It achieves this by utilizing the recently discovered KFD exploit for iOS 16.2 to 16.5 running for A12 to A16 devices, Cluckabunga is developed by LeminLimez. It is also known as Chicken Butt. Cluckabunga was released as an open source project available through GitHub

    3. KFDFontOverwrite

    KFDFontOverwrite is an application that permits you to replace fonts on iOS. It accomplishes this by utilizing the kfd kernel read/write techniques and building upon xsf1re’s fork, which extends these methods even further. The WDBFontOverwrite application, originally designed for MacDirtyCow, has been adjusted to work with the updated kfd exploit. This version is functional on iOS versions up to iOS 16.5, including the 16.6 beta 1 release.

    4. Picasso Beta

    Introducing a Jailed toolbox application compatible with all arm64e iPhones running iOS 16 to iOS 16.5, including 16.6b1, utilization of the KFD exploit. This application comes with an array of features tailored to enhance your device’s experience. These features include enabling Dynamic Island functionality on any device, fine-tuning Springboard elements such as Dock color, Folder background color, Control Center background color, Notification banner background color, and Notification shadow color. Moreover, you can now enjoy a personalized touch with system-wide custom Fonts and even add a unique animation to the Face ID lock icon on your Lock Screen. The application extends its capabilities to the Settings app, offering customization options, and provides the flexibility to customize audio effects for charging, screenshot, lock, notifications, and more.

    5. Posi0nKFD

    Posi0nKFD grants you the ability to effortlessly personalize your iOS 16- iOS 16.5 and iOS 16.6, beta 1 running A12 to A16 deviceS. It provides a range of features including the ability to hide the Dock and Home Bar, enabling iPhone 14 Pro Resolution, and even facilitating the use of custom fonts. Moreover, you can enhance your Control Center with personalized icons and introduce a unique flair to your Lock Screen by employing custom icons as well.