Here’s one example, which overrides checks in a function named TNFDisallowPromotedContent, that disables ads for Twitter employees (I guess they don’t eat that part of their own dog food). All those nop commands between 0x004bd7aa and 0x004bd7b8 overwrite logic checks that would turn ads on for all non-employees of Twitter. Perhaps if Twitter employees were forced to look at their own ads, they might realize how annoying they are, and also how poor their analytics are.
Huh. I can see not showing ads to employees because having them click on ads might be a conflict of interest, but I think they should be forced to experience the same thing as normal users. Do Google employees see ads in Gmail?
Very good post, but it was somewhat misleading I think because parts of it seemed to imply that I, as a regular non jailbreaking user, might end up with hacked apps on my phone without knowing about it.
Something to keep in mind: Both when using the $99 developer program or the enterprise developer program require the provisioning profile to be installed on the device for the patched application to run.
Installing the provisioning profile either requires the device to be connected to iTunes, or it requires a lot of warning dialogs, one of which involves clicking a “please trust this” button.
That’s quite the hurdle for a social engineer to have to climb in order to scam somebody into installing their patched twitter app.