PwnageTool Pwn Apple

The Dev Team just released the latest version of PwnageTool to jailbreak iOS 4. There are many requirements that your iPhone must fulfill in order to be jailbreakable with PwnageTool and you should make sure to read this before going ahead with the jailbreak process.

Let me make this clear, READ THIS before going any further in the jailbreak process. Your iPhone might not be eligible for a jailbreak.

Now that we have the “warning” out of the way, jailbreaking your iPhone iOS 4 with PwnageTool is fairly easy and straightforward. PwnageTool is a Mac only tool that is used to jailbreak while preserving the baseband to make sure you can unlock if necessary at a further date.

This step by step guide and tutorial will show you how to jailbreak your iPhone iOS 4 using PwnageTool.

Step 1: Download the latest version of PwnageTool from our iPhone downloads section. You will need a torrent downloader (ie. uTorrent) to download the file.

Step 2: Make sure iTunes is up to date (currently version 9.2). If not, update iTunes and reboot your computer.

Step 3: Sync and backup your iPhone in iTunes.

Step 4: Download the latest iOS 4 firmware from here for your specific device.

Step 5: Launch PwnageTool and select your iPhone.

Step 6: PwnageTool will automatically detect your firmware. Click on the blue arrow to continue.

Step 7: PwnageTool will now ask if you have an iPhone contract that you would normally activate with iTunes. Choose YES if you have a contract with an official carrier (ie. AT&T in the US) and you don’t care about unlocking your device. Click NO if you don’t have a contract with an official carrier and want to unlock your iPhone.

Step 8: PwnageTool will now create the custom IPSW.

Step 9: When done, you will see the “iHaz success” message.

Step 10: Now that you have your custom cooked firmware, you need to install this firmware on your iPhone. To do so, plug your iPhone in iTunes. Once iTunes has recognized your iPhone, hold the “Alt/Option” key and click “Restore” at the same time. DO NOT click “Restore” without holding the “Alt/Option” key! A dialog box will pop up and you’ll be able to choose the custom IPSW file you created.

Step 11: PwnageTool will now install your cooked iOS 4 firmware on your iPhone. This process might take a few minutes so be patient. When done, your iPhone will reboot.

You’re done!

Additionally, make sure to check out these instructions if you need to unlock your iPhone.

UPDATE: This post is slightly outdated. Check out this page for the latest jailbreak information.

  • ck

    Given the combination involved (version of phone, os, bootroom etc). I would be nice if someone could put together a grid chart which shows the JB/Unlock options clearly.
    I am willing to help….

  • Kloop

    That would be greatly appreciated!

  • Tiago

    i´ve been waiting for 30 minutes is this normal? it says : restoring the iphone software. thanks

  • Dealbreaker

    so the Tool didn’t say to option click the restore button. It said to simply connect USB, start iTunes. Since I already hit restore, am I f’d?

  • Amanda

    Does this work on the 3GS? Because there was an article earlier saying that you could only jailbreak/unlock the 3G.

    I have the 3GS and it is currently running baseband 5.11 would I be able to jailbreak and unlock?

  • Hugo

    Amanda, you can jailbreak 3GS only if you have the old bootrom. I’m a lucky guy 🙂

  • Tom

    I read an article earlier saying the jailbreak was for the 3g only but the tool only gives the option for the 3gs or touch 2g, can I still use it to jailbreak a 3g?

  • Rainrose

    How about windows? Thanks.

  • Guy

    I think it’s pretty fucking lame that one cannot jailbreak if they’ve updated their phone to ios4 already.

  • thefallen

    Just for the sake of it and out of curiosity…

    Has anyone tried to restore from iOS 4 back to 3.1.3 using corresponding SHSH Blobs and Cydia as the server for validation? If anyone succeeds on this, please let me know.


    • jim hansem

      Yes i restored from 4.01 to 3.1.3 new baseband 3gs mc. jailbreakme com every thing works fine 210 mb ram free.saurik sshs

  • Hugh

    @ thefallen

    I’ve done it, you need to put your iPhone in DFU.
    Check youtube to see how to put in DFU.
    It gives errors but just try again, when you see “connect to iTunes” msg, use blackr4in to boot it 🙂

    Good luck

  • thefallen


    When I try to boot it with blackra1n it gives me the error related to iTunes 9.1 so I ran blackbreeze to fix blackra1n. Tried the fixed blackra1n, but it gave me an error. I assume it is because of the drivers from iTunes 9.2…?

  • said:

    omg alex,this is mind blowing man!!!! the os4 woooooooow 😀

  • Kalvin

    does this jailbreak enable multitasking, home screen wallpaper, and battery percentage like redsn0w? If not how would i get these features? I have an iPhone 3g if that mmakes a difference….please help!

  • thefallen


    nevermind… i was able to boot it with iRecovery… so I can say I SUCCESSFULLY DOWNGRADED MY 3GS FROM 4.0 TO 3.1.3!! 😀

  • Hey Sebastian,

    If I go to the store on the 24th will I be able to get an iPhone even if I did not pre-order? If not, what about the next day?

  • rudy

    aw… i got an error while updating my 3GS
    an unknown error occured 1600
    is anybody know how to fix this?

  • thefallen


    AT&T Will Begin Selling iPhone 4 on June 29
    Check modmyi . com

  • zell

    this Jailbreak just sit there waiting for a connection to the USB…

  • Pete

    Can’t wait for PC break for 3G

  • iPhone 3GS


    Use redsn0w

  • Also, Wal-Mart may be selling the WHITE iPhone 4 on its first day of release – keep an eye out for that (or break out your tents and start camping now) @ Jordan

  • KP

    I was able to smoothly jailbreak and unlocked my 3GS!
    Love the multitasking feature 😀 Thanks for the tutorial

  • Amanda

    @Hugo, were you able to unlock your 3GS as well?

    I am only really concerned about unlocking. But I don’t know if I have the new or old bootrom. I believe I have the old one because I bought the iPhone last year around August and it was quite easy to jailbreak/unlock. Does that make a difference at all?

  • thanxs for this useful information 🙂

  • Z

    You should have the old bootrom and so this should work. Make sure to follow the instructions precisely tho. Also you can check Sebastien’s previous post, I left a comment on my findings about the bootrom.

  • Z

    Sorry, you were mainly concerned about the unlock. The answer is yes, you can unlock your phone after the jb. Here is the link thanks to Sebastien:

    I hope this helps

  • JohnnyBSurfing

    Ok there needs to be one last instruction.
    When you get done your sweet loved Iphone 3Gs is now OS 4 but whiped out back to new, no contacts no apps etc.
    A. do what it says there and Restore it from the (iphone)
    B. Do something else like sync?

    I just clicked the Restore from (iphone)
    now it says restore in progress.

  • Tuncay

    Can you do this on Windows computers also?

  • Prasad Vasadi


    Recently I bought I Phone 3Gs 32 GB through sim card. The display showing itunes symbol. I wanted to jailbreak/unlock that phone. I don’t have any details about previous OS and base band what they used. Serial # 88925QZ23NS. seller said updated for OS 4.0. Please help me out how to jailbreak/unlock 3gs. Earlier i did my 2g phone with Pwange tool with 3.1.3. 3gs I am not.

    Prasad Vasadi

  • Niraj

    Hey guys I have 16 gig 3gs bb 5.12 with os 3.1.3n I jailbreak with spirit n unlocked it. Everything is workin great but only visible voicemail is not workin. I tried every thing but still same. Is there any suggestion ? That would b highly appreciated. Thanks

  • shaffs007

    Download snowbreeze v1.6 for Windows.

  • Tuncay

    I used Spirit to jailbreak my iPhone 3.1.3 so does that mean I cant jailbreak my iPhone if I upgrade it to 4.0?

  • shaffs007

    Doesnt matter if you used Spirit in the past, with snowbreeze and ultrasn0w (as per the instructions) this will be a whole new set up of your iPhone with iOS4 replacing 3.1.3. Your iPhone will be jailbroken once the ipsw is created using snowbreeze and deployed using iTunes; and then unlocked via ultrasn0w (to be downloaded from Cydia). But as far as the instructions go, I DONT think it will work for 3GS. So be careful.

    I just upgraded my 3G to iOS4 and it worked like a charm following the instructions.

    Good Luck!!!!!

  • Tuncay

    Hmm can you please give me a link with introduction of jailbreaking iPhone 4.0 with snowbreeze.

    Btw will I loose every app I downloaded with jailbreak?

  • Eddie

    @ Rudy

    For those who are getting the 1600 error, I was getting it on windows 7 using DFU mode and shift+restore.

    After many unsuccessful attempts I tried putting my phone in Recovery mode (which is apparently different from DFU), did the shift restore thing

    To put it in recovery mode, unplug your phone, turn it off, then press and hold the home button. While holding the home button, plug your phone back in and you should see a picture of an ipod cable and an itunes logo on the phone. From there just shift restore and wait.

    Good luck.

    For more info about recovery mode:

  • Eddie

    An edit to my post above:

    * …from DFU), did the shift restore thing,* and it worked

  • Ruud


    Thanks for that information!
    Sn0wbreeze instructions got me into the DFU mode as well and then you get the 1600 error.

    Your solution is right!


  • hemn

    How can i jailbreak my iphone 3gs with new bootrom? please help me 🙁

  • MOe

    hey guys…
    i need help.. i have jailbroken my iphone 3.1 using spirit, and now ive installed ios 4 and i cant jailbreak it .. what shall i do ?? ive tired redsnow and snowbreez but no use. any ideas ??

  • LA

    I’m at step 10, restore the cook firmware, and got a message “An unknown error occurred (2001)…” Does anyone know what this means and how to solve it. Any help is appreciated.

  • LA

    btw, mine is 3GS 16GB with version 4 and baseband: 05.13.04. Thanks.

  • Angela

    I have the old bootrom but whenever I try to restore it the error 1604 keeps popping out. I tried 3 times and it doesn’t work.


  • Matt

    @ Angela

    Me too. Can someone please help us?

  • Ska_Jedi_916

    Somebody please release the 3GS ios4 jailbreak for those of us who have never jailbroken / unlocked it before! This is BS!

  • Slide7

    So does it work? Has anyone tried it?

  • Mathias


    I just got a 3 GS 2 weeks ago and never JB it before,
    i wuold appriciate any suggestions or links for a new Iphone user


  • shaffs007

    @Angela & Matt: Just ignore that error as it is nothing major, USB2.0 runs as USB1.1 somtimes and that is what causes the issue. Just connect the USB cable in another slot and try again and if it still doesn’t work try restarting your computer. I am guessing you are using Windows7??? Coz I am and it only happens on my Windows7 machine.

    @Slide7:You can read the above comments from other users right!!!!!

  • Slide7

    @ shaffs007 :

    well when I was looking there were no feedbacks applied. All were complaints. So calm your ****s.

  • Matt

    @ Shaffs007:
    I can’t speak for Angela but I’m running Mac OS X 10.6

    I have tried your suggestions and the problem still remains.