The iPhone dev team recently reported that, with the help of the chronic dev team, “This means iPhone unlockers can safely restore to a custom 4.2.1 pre-jailbroken IPSW and retain their current baseband and unlock”.
PwnageTool also supports all the other 4.2.1 devices other than iPod touch 2G:
- iPhone3G
- iPhone3GS
- iPhone4
- iPhone4-Verizon
- iPod touch 3G
- iPod touch 4G
- iPad
- AppleTV 2G
Other improvements:iBooks has been fixed to work with books protected by DRM.
- The wifi problem on AppleTV 2G was fixed as well.
Thank you Dev Team!
Official Bittorent Releases:
PwnageTool_4.2.dmg -> PwnageTool_4.2.dmg.6176918.TPB.torrent
SHA1 Sum = af365f5de19d7ee19cbe1c67b2f226996a46b3ac
rooster
Apple is preparing on launching iOS 4.3 either today or in the very near future. Good news: it’s already be jailbroken! PwnageTool has already jailbroken the iOS 4.3 beta and is therefore believed to be able to jb the final version as well.
The Jailbreak works on the iPhone 4, iPad, iPod Touch 4G!
This is a semi-tethered jailbreak! It is also not that easy so be wary!
All Downloads can be found at the bottom of the file
Good Luck
———————————————————————————————-
1. Download PwnageTool bundle for your version of iOS device
2. Extract and end up with these two files: CydiaInstaller.bundle and a .bundle file, for this guide, we are using iPhone 4 bundle iPhone3, 1_4.3_8F5148b.bundle. Move all these files to your desktop.
3. Download PwnageTool 4.1.2 and copy it to your desktop. Right click, and then click on “Show Package Contents”
4. Navigate to Contents/Resources/FirmwareBundles/ and paste iPhone3, 1_4.3_8F5148b.bundle file in this location.
5. Now go to Contents/Resources/CustomPackages and here replace the CydiaInstaller.bundle file with the version that you downloaded in Step 1, and then simply close this folder.
6. Download iOS 4.3
7. Start PwnageTool in expert mode and select your device
8. Find your ipsw and select it
9. Select Build
10. Quite PwnageTool
11. Download Ramdisk_Maker.zip, extract the file, and move the folder to your desktop
12. Now open ramdisk_maker.sh file, and edit the paths required in a program like TextEdit, as shown highlighted in this screenshot.
13. Now start Terminal and run the following commands:
cd desktop
cd ramdisk_maker
./ramdisk_maker.sh
14. Follow directions that pop up in terminal:
15. First, create a folder on desktop named My_Ramdisk. Then change the extension of the original iOS 4.3 Beta file from .ipsw to .zip, and then extract this .zip file.
16. Here you will see a file named 038-0408-002.dmg. This is the file we need. Copy this file to My_Ramdisk folder that you created on desktop.
17. Once you have done that, you will notice that Terminal screen will automatically move to the next step.
18. Now go to ramdisk_maker folder that you saved earlier on desktop, here open the fileOptions.plist in a program like TextWrangler (available for free on the Mac App Store). Here change the <integer></integer> value under SystemPartitionSize <key></key> to 1116
19. Now save this Options.plist file and move it to My_Ramdisk folder. At this point, you will once again notice that Terminal will automatically move to complete the process.
20. Once done, you will now notice a new file named final_ramdisk.dmg in My_Ramdiskfolder. Rename this file as 038-0408-002.dmg
21. Now change the extension of the custom iOS 4.3 Beta firmware file that you created earlier from .ipsw to .zip, and then extract this .zip file.
22. Here, replace 038-0408-002.dmg file with the one you created in Step 19 above.
23. Now select all files, and click on “Compress 9 Items” so that it is converts back into .zip file. Now change the extension of this .zip file to .ipsw and you are done making the custom firmware, with fixed ramdisk.
24. Start iTunes, click on your iOS device icon from the sidebar in iTunes. Now press and hold left “alt” (option) button on Mac, or Left “Shift” button if you are on Windows on the keyboard and then click on “Restore” (Not “Update” or “Check for Update”) button in the iTunes and then release this button.
25. This will make iTunes prompt you to select the location for your custom firmware 4.3 file. Select the required custom .ipsw file that you created in Step 24 above, and click on “Open”.
26. wait
27. Since it is semi-tethered you will need tetherboot to help here. So download Tetherboot and extract it
28. First, we will need three files from the original iOS 4.3 Beta firmware namely:kernelcache.release.n90, iBEC.n90ap.RELEASE.dfu, and iBSS.n90ap.RELEASE.dfu.
Change the extension of the original iOS 4.3 Beta file from .ipsw to .zip, like you did in Step 15 above, and then extract this .zip file.
Now copy kernelcache.release.n90 file, and then copy iBEC.n90ap.RELEASE.dfu, andiBSS.n90ap.RELEASE.dfu files which are found under /Firmware/dfu/.
Move all these three files, and tetheredboot utility to a new folder named “tetheredboot” on the desktop
29. Now to boot your iPhone, iPad or iPod touch into tethered mode, connect it with your computer and start it in Recovery Mode by holding Home and Power buttons until the connect to iTunes screen appears on your device.
30.Start Terminal and run the following commands:
sudo sh
enter your administrator password, then:
cd desktop/tetheredboot
./tetheredboot iBSS kernel
31. At some point you will be asked to enter DFU mode
32. Wait
33. Have some food and take a break that was kinda ridiculous! You’re done though so also have some fun!
———————————————————————————————-
Downloads:
Download tetheredboot.zip
Download Ramdisk_Maker.zip.
Download PwnageTool 4.1.2 for Mac
Download Ramdisk_Maker.zip
Download iOS 4.3 Beta
Download iTunes 10.0.1 for Windows and Mac OS X
Download iOS 4.1 for iPhone 4, 3GS, 3GS and iPod touch 4G / 3G
Download iOS 4.1 for Apple TV 2G
Download iOS 3.2.2 for iPad
———————————————————————————————-
rooster
Yesterday, the dev team announced its carrier unlock for the iPhone 3G/3GS for owners with a baseband later than 05.13.04!
Route #1 (redsn0w for OSX + Windows):
- If you have an old-bootrom 3GS and are already unlockable but want to get to 4.2.1, please wait til the dev team releases an “unofficial” bundle for you.
- Use redsn0w for OSX or Windows. Enable the “Install iPad baseband” option and accept the warning.
- When the redsn0w ramdisk is finished, install ultrasn0w via Cydia.
- Enjoy!
Route #2 (PwnageTool for OSX):
- If you have an old-bootrom 3GS and are already unlockable but want to get to 4.2.1, please wait til the dev team releases an “unofficial” bundle for you. Read no further.
- Download this IPSW
- Run PwnageTool to create a custom 4.1 IPSW. Tell it you want to use the iPad baseband you just downloaded. Restore to this custom IPSW.
- Install ultrasn0w through Cydia
- Enjoy!
download PwnageTool
download RedSnow:
- OSX (SHA1 a322ec2c9e91993eca21abaf2e655bb44de3d7d4)
- Windows (SHA1 7250416e17c3aea9838cdfc73712b38b025e2ed0)
DEV TEAM WARNING: If you do flash your baseband via redsn0w, please keep it plugged into USB the whole time. You don’t want your battery to die during the flash process!
ps. (Windows 7 and Vista users, please run redsn0w as Administrator in “XP Compatiblity Mode”)
rooster
Apple has released iOS 4.2.1 and the dev team has snapped up the challenge and presents us with some Turkey Day Gifts!
UltraSn0w Unlockers – Beware!
Please Stay away from the official 4.2.1 firmware and wait for the ability to create custom 4.2.1 IPSW’s that will not update you baseband!
iPhone 3G
Rejoice, you are granted the full, untethered* Jailbreak.
iPhone 3GS
Rejoice, you are granted the full, untethered Jailbreak.
non-MC iPod Touch 2G
Rejoice, you are granted the full, untethered Jailbreak.
The Rest
Unfortunately, all of you’re jailbreaks remain tethered* But have no fear, @comex is working hard on making this jailbreak untethered.
The Dev team reminds you to, “please make sure you have your 4.1 SHSH blobs for all your devices. These will be important even for firmware beyond 4.1 (using both comex’s method and our alternative, depending on how each of them turn out.)”
ultrasn0w unlock: After redsn0w is officially released with the new Cydia and kernel patches, we’ll be able to assess the unlock situation. It’s already looking very promising though, so expect the unlock for the 3G and 3GS to be coming this week. The i4 unlock is taking more effort though, and no further concrete info is available about that yet.
Download
Remember to update to iTunes 10.1 for the best possible results!
Windows 7 users are also asked to run Redsn0w in “XP Compatibility” mode for similar “best results”
Mac
PC
* tethered vs untethered Jailbreak –
a tethered jailbreak requires the jailbreak to be re-configured upon every restart of your device while a untethered jailbreak, as follows logically, does not require this and needs only be jailbroken once.
The Dev Team just released PwnageTool 4.1.2 for Mac OS X!
But…
ULTRASN0W UNLOCKERS BEWARE!! ULTRASN0W UNLOCKERS BEWARE!! The biggest mistake you can make (and it is a big one!) is lettings iTunes restore to the official IPSW — you’ll lose the unlock and won’t be able to go back! You must use Option-Restore, not just the Restore button by itself. Then navigate to your custom IPSW — not to the stock one! If you accidentally started a restore to the official IPSW, unplug your iPhone immediately before the restore gets to the “Updating Firmware” step!
This exploit works untethered on these devices at firmware 4.1:
- AppleTV 2G
- iPad (firmware 3.2.2)
- iPod touch 4G
- iPod touch 3G
- iPhone4
- iPhone 3GS
- iPhone 3G
So, what does PwnageTool do:
IT allows you to restore a custom made IPSW file. Ex) you can restore to a pre-jailbroken firmware while still keeping your current baseband. For iPhone 3G users, one can also get their own boot and recovery logos as well as multitasking and battery charge percentage.
PwnageTool’s main advantage to ramdisk-based methods (limera1n, greenpois0n, redsn0w) is for unlockers — those that need to keep their current baseband and preserve their ultrasn0w unlock. But in this new age of both bootrom- and userland-based exploits, it’s an excellent platform for continuing the jailbreak through all future firmwares.
Here is the official Torrent:
PwnageTool 4.1.2 Torrent - PwnageTool_4.1.2.dmg.5904259.TPB.torrent
SHA1 Sum = 1c0d5ea45464e336fcb38c644dc125c3a16b5493
rooster
“SHAtter” developed by @pod2G, is well on its way toward finding a jailbreak for the iPod Touch 4th Generation.
This early in the game, I’m quite pleased they have already found some holes in Apple’s code.
The dev team comments that this jailbreak solution is far faster than the one set up by pwnagetool (which is reserved more toward iPhone 4 users)
Here is a video of SHAtter!
I will update you as soon as this becomes a user friendly reality.
Apple TV and SHAtter:
It’s looking like SHAtter is going to be the gift that keeps on giving. Even though the new AppleTV isn’t yet in people’s homes, the firmware is available on Apple’s normal public distribution servers and SHAtter has been used to decrypt its keys! The main filesystem (“Mojave8M89.K66OS”) key for 018-8609-066.dmg is:
31c700a852f1877c88efc05bc5c63e8c7f081c4cb28d024ed7f9b0dbc98c7e1406e499c6
If you’re familiar with vfdecrypt, you can use that key to decrypt the image and mount it.
pretty cool thing this SHAtter.
If you want to follow their twitter updates directly click here!
rooster
Good News!
The dev team has released a new, beta version of RedSn0w for the:
iPhone 3G and iPod Touch 2G at:
Firmware 4.1 and 4.0.
Considering the specificity of these hacks, I give big time props to the dev team.
Their hack uses similar exploits and reveals nothing new to Apple.
A urgent message:
IF YOU USE THE ULTRASN0W UNLOCK, PLEASE WAIT FOR PWNAGETOOL TO SUPPORT 4.1. DO NOT USE REDSN0W.
To use 4.1, you NEED to already have updated to 4.1 officially (through Apple); if you do that, you can potentially lose the ultraSn0w unlock forever.
Currently, THIS IS ONLY FOR MAC OS X, windows coming soon!
Caveats:
iPod Touch 2G “MC” versions will, unfortunately be tethered.
===== How do I use it? ====
If you’ve already updated your device to 4.1 or 4.0, the next steps are:
- Launch the beta redsn0w 0.9.6b1
- Select your stock 4.1 or 4.0 ipsw (you’ve already used this to update your device to 4.1 or 4.0)
- Select “Install Cydia” and any of the other options shown above, then click “Next”. Use DFU mode to install the jailbreak.
Note: If you choose to “Enable battery percentage”, you actually toggle that off and on via Settings->General->Usage.
===== Download links =====
Mac OSX x86
rooster
