* A pixel-perfect WebGL/JavaScript implementation of UIKit/QuartzCore that runs basic iOS apps in a web-based simulator at 60fps
* A Swift 3 -> JavaScript compiler with many language features, full type inference and more
* Many interesting ways of combining the above to form interesting new development/learning/prototyping tools
* One such tool/product has a full WYSIWYG app builder, with drag/drop UI components, auto layout, etc (think Interface Builder but with pluggable logic). I have a backend supporting this that can generate an .xcodeproj, compile, codesign, etc on the fly to a real, fully native app
Started as a browser-based version of Reveal (https://revealapp.com/), and spiralled out of control from there.
Here's one approach you could use if you had a reliable zero-day at your disposal. I've been out of the jailbreak scene for a while, so I might be way off the mark:
1) Have zero-day ([0]) that can be used to deliver executable payload over SMS (think Stagefright). iOS devices can receive text messages before the filesystem is decrypted. Perhaps Apple should close this vector.
2) Deploy dylib that patches the SpringBoard UI (where the lock screen lives), disabling the code that counts incorrect passcode attempts
