diff --git a/.gitignore b/.gitignore
new file mode 100644
index 0000000..e2fda57
--- /dev/null
+++ b/.gitignore
@@ -0,0 +1,5 @@
+.DS_Store
+ramdisks/*/
+resources/ipwndfu/
+resources/firstrun
+ipwndfu.zip
\ No newline at end of file
diff --git a/README.md b/README.md
index b857b82..ae5925a 100644
--- a/README.md
+++ b/README.md
@@ -5,7 +5,7 @@ Bruteforce A5-A6 numeric password with ease.
 
 # Prerequsites
 
-1. A computer running macOS.
+1. A x86 computer running macOS.
 2. A compatible device (A5-A6)
 
 # Usage
@@ -39,7 +39,7 @@ The tool will use the AES engine as much as possible with no restrictions at the
 
 # Other Stuff
 
-- [Reddit Post]()
+- [Reddit Post](https://www.reddit.com/r/setupapp/comments/1jn09d5/release_iwannabrute_bruteforce_a5a6_with_ease/)
 
 # Credits
 - [AJAIZ](https://github.com/AsyJAIZ) for original bruteforce method.
diff --git a/bin/Darwin/aespatched b/bin/Darwin/aespatched
new file mode 100755
index 0000000..f5ddad1
Binary files /dev/null and b/bin/Darwin/aespatched differ
diff --git a/bin/Darwin/compareFiles.py b/bin/Darwin/compareFiles.py
deleted file mode 100644
index 59207a9..0000000
--- a/bin/Darwin/compareFiles.py
+++ /dev/null
@@ -1,32 +0,0 @@
-#Copyright (c) 2020, @mcg29_
-
-#!/usr/local/bin/python3
-
-import os
-import sys
-
-if __name__ == "__main__":
-	args = sys.argv
-	if len(args) < 3:
-		print("Usage: kcache.raw kcache.patched")
-		sys.exit(0)
-	patched = open(args[2], "rb").read()
-	original = open(args[1], "rb").read()
-	lenP = len(patched)
-	lenO = len(original)
-	if lenP != lenO:
-		print("size does not match, can't compare files! exiting...")
-		sys.exit(1)
-	diff = []
-	for i in range(lenO):
-		originalByte = original[i]
-		patchedByte = patched[i]
-		if originalByte != patchedByte:
-			diff.append([hex(i),hex(originalByte), hex(patchedByte)])	
-	diffFile = open('kc.bpatch', 'w+')
-	diffFile.write('#AMFI\n\n')
-	for d in diff:
-		data = str(d[0]) + " " + (str(d[1])) + " " + (str(d[2]))
-		diffFile.write(data+ '\n')
-		print(data)
-	
diff --git a/bin/Darwin/iBoot32Patcher b/bin/Darwin/iBoot32Patcher
old mode 100644
new mode 100755
diff --git a/bin/Darwin/irecovery b/bin/Darwin/irecovery
old mode 100644
new mode 100755
diff --git a/bin/Darwin/jq b/bin/Darwin/jq
old mode 100644
new mode 100755
diff --git a/bin/Darwin/lzssdec b/bin/Darwin/lzssdec
deleted file mode 100644
index 3143cd4..0000000
Binary files a/bin/Darwin/lzssdec and /dev/null differ
diff --git a/bin/Darwin/partialZipBrowser b/bin/Darwin/partialZipBrowser
old mode 100644
new mode 100755
diff --git a/bin/Darwin/xpwntool b/bin/Darwin/xpwntool
old mode 100644
new mode 100755
diff --git a/resources/setup.sh b/resources/setup.sh
index 58b4a15..8ad27f2 100644
--- a/resources/setup.sh
+++ b/resources/setup.sh
@@ -32,13 +32,12 @@ echo "Starting bruteforce..." > /dev/console
 
 echo "Fixing disabled"
 
-cd /mnt2/mobile/Library/Preferences/ > /mnt1/private/etc/antilock.txt
+cd /mnt2/mobile/Library/Preferences/
 for file in com.apple.springboard.plist.???????; do
     if [ -f "$file" ]; then
-        rm "$file"
-        echo "Deleted: $file"
+        rm "$file" > /dev/null
     fi
 done
-mv /mnt2/mobile/Library/Preferences/com.apple.springboard.plist /mnt2/mobile/Library/Preferences/com.apple.springboard.plist.bak
+mv /mnt2/mobile/Library/Preferences/com.apple.springboard.plist /mnt2/mobile/Library/Preferences/com.apple.springboard.plist.bak > /dev/null
 rm /mnt2/mobile/Library/Preferences/com.apple.springboard.plist > /dev/null
 rm /mnt2/mobile/Library/SpringBoard/LockoutStateJournal.plist > /dev/null
diff --git a/ssh_config b/ssh_config
new file mode 100644
index 0000000..13ce31d
--- /dev/null
+++ b/ssh_config
@@ -0,0 +1,37 @@
+    PubkeyAcceptedAlgorithms +ssh-rsa
+    PubkeyAcceptedAlgorithms +ssh-rsa
+    PubkeyAcceptedAlgorithms +ssh-rsa
+    PubkeyAcceptedAlgorithms +ssh-rsa
+    PubkeyAcceptedAlgorithms +ssh-rsa
+    PubkeyAcceptedAlgorithms +ssh-rsa
+    PubkeyAcceptedAlgorithms +ssh-rsa
+    PubkeyAcceptedAlgorithms +ssh-rsa
+    PubkeyAcceptedAlgorithms +ssh-rsa
+    PubkeyAcceptedAlgorithms +ssh-rsa
+    PubkeyAcceptedAlgorithms +ssh-rsa
+    PubkeyAcceptedAlgorithms +ssh-rsa
+    PubkeyAcceptedAlgorithms +ssh-rsa
+    PubkeyAcceptedAlgorithms +ssh-rsa
+    PubkeyAcceptedAlgorithms +ssh-rsa
+    PubkeyAcceptedAlgorithms +ssh-rsa
+    PubkeyAcceptedAlgorithms +ssh-rsa
+    PubkeyAcceptedAlgorithms +ssh-rsa
+    PubkeyAcceptedAlgorithms +ssh-rsa
+    PubkeyAcceptedAlgorithms +ssh-rsa
+    PubkeyAcceptedAlgorithms +ssh-rsa
+    PubkeyAcceptedAlgorithms +ssh-rsa
+    PubkeyAcceptedAlgorithms +ssh-rsa
+    PubkeyAcceptedAlgorithms +ssh-rsa
+    PubkeyAcceptedAlgorithms +ssh-rsa
+    PubkeyAcceptedAlgorithms +ssh-rsa
+    PubkeyAcceptedAlgorithms +ssh-rsa
+    PubkeyAcceptedAlgorithms +ssh-rsa
+    PubkeyAcceptedAlgorithms +ssh-rsa
+    PubkeyAcceptedAlgorithms +ssh-rsa
+    PubkeyAcceptedAlgorithms +ssh-rsa
+    PubkeyAcceptedAlgorithms +ssh-rsa
+    PubkeyAcceptedAlgorithms +ssh-rsa
+    PubkeyAcceptedAlgorithms +ssh-rsa
+    PubkeyAcceptedAlgorithms +ssh-rsa
+    PubkeyAcceptedAlgorithms +ssh-rsa
+    PubkeyAcceptedAlgorithms +ssh-rsa
diff --git a/start.sh b/start.sh
old mode 100644
new mode 100755
index 8206de9..acab1a1
--- a/start.sh
+++ b/start.sh
@@ -1,6 +1,6 @@
 #!/bin/bash
 
-script_version="1.0"
+script_version="1.1.0"
 
 mk_bruteforce_ramdisk() {
         device=$1
@@ -148,33 +148,10 @@ mk_bruteforce_ramdisk() {
 
         echo "Patching kernel..."
 
-        #offset for lzssdec
-        OFFSET=$(xxd -p kernelcache | tr -d '\n' | grep -bo "cefaedfe" | awk -F: 'NR==1 {print $1}')
+        ../../bin/Darwin/aespatched kernelcache kernelcache.dec
 
-        if [ -z "$OFFSET" ]; then
-            echo "Cannot find offset for lzssdec"
-            exit 1
-        fi
-
-        DECIMAL_OFFSET=$(($OFFSET / 2))
-        ADJUSTED_OFFSET=$(($DECIMAL_OFFSET - 1))
-
-        ../../bin/Darwin/lzssdec -o "$ADJUSTED_OFFSET" < kernelcache > kernelcache.dec
         mv kernelcache kernelcache.orig
 
-        PATTERN="b0f5fa6f00f0"
-        HEX_PATTERN=$(echo "$PATTERN" | sed 's/\?/./g')
-        MATCH_OFFSET=$(xxd -p kernelcache.dec | tr -d '\n' | grep -abo "$HEX_PATTERN" | awk -F: 'NR==1 {print $1}')
-
-        if [ -z "$MATCH_OFFSET" ]; then
-            echo "Cannot find offset for IOAESAccelerator patch"
-            exit 1
-        fi
-        ADJUSTED_MATCH_OFFSET=$((MATCH_OFFSET / 2 + 4))
-
-        dd if=/dev/zero bs=1 count=4 conv=notrunc of=kernelcache.dec seek=$ADJUSTED_MATCH_OFFSET 2>/dev/null
-        printf '\x0C\x46\x0C\x46' | dd of=kernelcache.dec bs=1 seek=$ADJUSTED_MATCH_OFFSET conv=notrunc 2>/dev/null
-
         ../../bin/Darwin/xpwntool kernelcache.dec kernelcache -t kernelcache.orig
 
         cd ../../
@@ -321,10 +298,16 @@ check_ramdisk_cache(){
 
 pwn_device() {
 
+    if [ "$is_fake_device" = true ]; then
+        echo "device is fake, exiting"
+        exit
+    fi
+
     if [[ -z "${is_a5+x}" ]]; then
         echo "Detected $device_name ($deviceid)."
         if (system_profiler SPUSBDataType 2> /dev/null | grep ' Apple Mobile Device (DFU Mode)' >> /dev/null | bin/Darwin/irecovery -q 2> /dev/null | grep 'PWND' >> /dev/null); then
             echo "Device already in pwnDFU. Continuing..."
+            ipwndfu send_ibss
         else
             case $pwnder in
                 "ipwndfu") ipwndfu pwn ;;
@@ -493,14 +476,29 @@ download_file() {
 }
 
 get_device_info() {
-    if ! (system_profiler SPUSBDataType 2> /dev/null | grep ' Apple Mobile Device (DFU Mode)' >> /dev/null); then
-        echo "[*] Waiting for device in DFU mode"
-    fi
-    
-    while ! (system_profiler SPUSBDataType 2> /dev/null | grep ' Apple Mobile Device (DFU Mode)' >> /dev/null); do
-        sleep 1
+    fake_deviceid=""
+    for arg in "$@"; do
+        case $arg in
+            fake-deviceid=*)
+                fake_deviceid="${arg#*=}"
+                ;;
+        esac
     done
-    deviceid=$(bin/Darwin/irecovery -q | grep PRODUCT | sed 's/PRODUCT: //')
+    if [[ -n "$fake_deviceid" ]]; then
+        echo "[*] Using fake device: $fake_deviceid"
+        is_fake_device=true
+        deviceid="$fake_deviceid"
+    else
+        if ! (system_profiler SPUSBDataType 2> /dev/null | grep ' Apple Mobile Device (DFU Mode)' > /dev/null); then
+            echo "[*] Waiting for device in DFU mode"
+        fi
+
+        while ! (system_profiler SPUSBDataType 2> /dev/null | grep ' Apple Mobile Device (DFU Mode)' > /dev/null); do
+            sleep 1
+        done
+
+        deviceid=$(bin/Darwin/irecovery -q | grep PRODUCT | sed 's/PRODUCT: //')
+    fi
     case $deviceid in
   #      "iPhone3,1") device_name="iPhone 4 (GSM)" pwnder="ipwnder32" ;;
   #      "iPhone3,2") device_name="iPhone 4 (GSM, Rev A)" pwnder="ipwnder32" ;;
@@ -570,6 +568,9 @@ send_ramdisk() {
     ../../bin/Darwin/irecovery -f kernelcache
     echo "Booting device now..."
     ../../bin/Darwin/irecovery -c bootx
+    echo ""
+    echo "Device should show text on screen now."
+    echo "After passcode is found please reboot using home + power button."
 }
 
 version_check() {
@@ -743,8 +744,7 @@ done
 if [[ ! -e "./resources/firstrun" || $(cat "./resources/firstrun") != "$platform_ver" || $check_fail == 1 ]]; then
     install_depends
 fi
-
-get_device_info
+get_device_info "$@"
 echo ""
 echo "Enter ramdisk version (9.0.2 is default)"
 echo ""
@@ -772,4 +772,4 @@ othertmp=$(ls "$(dirname "$0")" | grep -c tmp)
 
 pushd "$(dirname "${BASH_SOURCE[0]}")" > /dev/null
 
-main
+main "$@"