Pangu

Pangu is an untethered jailbreak for all devices on iOS 7.1.x, except the Apple TV. It was initially released on 23 June 2014, and became subject to controversy and criticism.

Controversy
Pangu used to install 25PP, a Chinese cracked app store, if the user ticked the checkbox to install it. As of version 1.1.0, the 25PP checkbox is not included unless the device language is set to Chinese. iH8sn0w confirmed that Pangu does not install anything else on the device apart from Cydia.

Pangu also uses a revoked enterprise certificate in order to inject the jailbreak, which is removed after the jailbreak is complete. (See misuse of developer certificates for other uses of similar techniques.)

Originally (in v1.0.0), Pangu used code taken from i0n1c's jailbreak training sessions, as well as an info leak vulnerability from said sessions. Version 1.1.0 kept most of the code, but swapped i0n1c's info leak with another one, which disclosed another vulnerability to Apple.

Supported Devices
The only unsupported devices are those of the Apple TV family. All other devices capable of running iOS 7.1.x are supported.

Analysis
Members of the Pangu team presented about their work at the SyScan360 conference in July 2014, although notes about this don't appear to be available on the web.

Installed Packages

 * APR (/usr/lib)
 * APT 0.7 (apt-key)
 * APT 0.7 Strict (lib)
 * Base Structure
 * Big Boss Icon Set
 * Bourne-Again SHell
 * bzip2
 * Core Utilities (/bin)
 * Cydia Installer
 * Cydia Translations
 * Darwin Tools
 * Debian Packager
 * Debian Utilities
 * Diff Utilities
 * Find Utilities
 * GNU Privacy Guard
 * grep
 * gzip
 * LZMA Utils
 * New Curses
 * PAM (Apple)
 * PAM Modules
 * Pangu 7.1-7.1.x Untether
 * pcre
 * Profile Directory
 * readline
 * sed
 * shell-cmds
 * system-cmds
 * Tape Archive
 * UI Kit Tools