Jailbreak

Check out the most comprehensive jailbreaking coverage on the internet, including the latest news, apps, tweaks, and detailed tutorials about everything jailbreak.

Prepare Your iPhone 3GS For Jailbreak

Sébastien Page ∙ Updated January 23, 2016

The Dev Team posted a message yesterday suggesting that iPhone 3GS owners should prepare their device for jailbreak.

Remember we warned you to stay away from any updates to 3.1 if you want to be able to jailbreak or unlock your 3GS.

Well this is an additional message to all you 3GS owners that would like to jailbreak your device sometime soon, but this advice comes with a warning! A warning that if you accidentally upgrade to 3.1, you will not be able to use Ultransn0w, so please re-read and double check this warning at the bottom of this post before proceeding.

During the restore process iTunes nicely keeps these oh-so-top-secret-files in a lovely accessible place for us to copy out and backup, that place? /tmp on Mac OS X or %TEMP% on Windows. Thanks Apple — handy!

The downside to this approach is that you actually need to go through the restore process to get these signed files, which has risks if you are anywhere near 3.1 or 3.1 beta :-)

Jump the break for instructions on how to get the iBEC and iBSS of your iPhone 3GS.

Dev Team Delays the Release of the iPhone 3GS Jailbreak

Sébastien Page ∙ June 28, 2009

As I predicted in a post I wrote earlier today about the future iPhone 3GS jailbreak, the Dev Team officially announced that it will hold on on the release of the iPhone 3GS jailbreak.

The reason is simple. Apple is most likely coming up with 3.0.1 firmware very soon. Releasing the jailbreak would basically allow Apple to figure out what exploit the Dev Team used to jailbreak the 3GS and fix it.

Once the jailbreak is out, Apple will fix the iBoot-family bug we use to accomplish it. They will simply stop signing the old iBoots and only sign the fixed ones. If you bought your phone after Apple has done this, there’s nothing you can do…the jailbreak isn’t going to work for you.

It is possible that Apple will find the bug we use without our handing it to them on a silver platter (via a public jailbreak). In that case, we will have delayed our jailbreak for “nothing”. But we’d rather be safe than sorry!

Apple is surely coming out with a 3.0.1 firmware release shortly. They need to fix ultrasn0w. They need to fix some UI issues. 3.0 is buggy and 3.0.1 is coming. We’re going to wait and see what 3.0.1 brings before figuring out the release date for our version of the jailbreak.

Hopefully, Apple will release 3.0.1 soon and won't find the bug used to jailbreak the iPhone 3GS. Cross your fingers!

iPhone 3GS Jailbreak Coming Soon

Sébastien Page ∙ June 28, 2009

Less than a week after making the first steps towards an iPhone 3GS jailbreak, GeoHot posted more evidence of it. The jailbreak was made possible by using the 24Kpwn exploit the Dev Team talked about a few days ago.

The bad news is that we're gonna have to wait a bit to jailbreak our iPhone 3GS. Apple is about to release firmware 3.0.1 and it would make little sense for the Dev Team to release their jailbreak now. Instead, it is going to wait a bit and update PwnageTool and RedSn0w once 3.0.1 is out.

I don't know about you guys, but having a stock iPhone 3GS drives me nuts. I miss my jailbreak!

iPhone 3GS Jailbreak & Unlock Confirmed

Sébastien Page ∙ Updated February 5, 2016

Less than a week after the launch of the iPhone 3GS, the Dev Team confirmed it will soon be possible to jailbreak the 24Kpwn exploit that the hybrid team used on the iPod Touch 2G. This 24Kpwn exploit applies for the bootrom of the iPhone 3GS. In other words, you will soon be able to use RedSn0w to jailbreak your iPhone 3GS.

The other news is that once jailbroken, you will be able to use the current version of UltraSn0w to unlock the iPhone 3GS.

This is great news, but how did it happen? Why didn’t Apple fix this in their normal cat&mouse fashion? Well it seems this bootrom was cut in about the August 2008 timeframe, so the unintended early reveal of 24Kpwn earlier this year didn’t affect the iPhone 3GS.

Important: Apple has not given up on the cat&mouse game, and in fact there are challenging aspects of the 3GS jailbreak that aren’t in the other devices. It’ll take some time to safely work these into our tools, but the fundamental weaknesses are there: The bootrom is exploitable via 24Kpwn, and the baseband is exploitable via ultrasn0w. (And just like with the 3G, ultrasn0w for 3GS requires that you not update your baseband when Apple comes out with new firmware.)

If you're really into iPhone hacking, the Dev Team released the technical notes about the 24Kpwn exploit in the iPhone 3GS. These notes can be found here.

There is no information so far on the expected release date of the iPhone 3GS jailbreak but I am confident the Dev Team will have it ready within the next 2 weeks. The sooner, the better. I don't know about you guys, but I'm going nuts with my unjailbroken iPhone.

Is This A Potential iPhone 3G S Jailbreak?

Sébastien Page ∙ June 23, 2009

George Hotz aka GeoHot, the iPhone hacker who was responsible for the first hardware unlock on the first gen iPhone, just posted an interesting image on his blog.

iClarified was the first site to break the news and give us some insight about what all these crazy codes mean:

Details of the exploit are still being gathered; however, it looks like GeoHot was able to insert a custom command to iBoot meaning sigchecks have been bypassed (thanks mav). This should be a start for the iPhone 3GS (N88AP) jailbreak which has been dubbed purplera1n.

That is some very good news for iPhone 3G S owners (me included) who are eagerly waiting for a jailbreak. I guess time will tell. Keep your fingers crossed!

Unlock Your iPhone 3G With UltraSn0w

Sébastien Page ∙ Updated August 1, 2009

UltraSn0w, the soft unlock for the iphone 3G 3.0 firmware is now available thanks to the good work of the Dev Team. Don't wait any minute to install UltraSn0w and unlock your iPhone 3G.

Note that this tutorial was originally written for the 3.0 unlock but the steps are exactly the same to unlock iPhone OS 3.0.1. I simply updated this guide with the latest info.

Before installing UltraSn0w, your iPhone 3G has to be jailbroken and running the latest 3.0 3.0.1 firmware. You can either jailbreak your iPhone 3G using RedSn0w (see tutorial here) or by using PwnageTool (see tutorial here).

After jailbreaking your iPhone 3G, follow these simple steps:

Launch Cydia. Add the following source to Cydia repo666.ultrasn0w.com (note there is a "0" in sn0w, not an "o"). After installing this source in Cydia, search for "ultraSn0w". Install UltraSn0w and reboot your iPhone. Voila!

Note that T-Mobile users should disable 3G before using UltraSn0w.

Unfortunately, the new iPhone 3G S still can't be unlocked because there is no jailbreak for it yet.

Tutorial: iPhone 2G Unlock Using RedSn0w

Sébastien Page ∙ Updated January 23, 2016

This RedSn0w guide & tutorial will show you how to unlock your iPhone 2G using RedSn0w. This guide is to unlock the iPhone 2G only. If you want to unlock the iPhone 3G, you will have to jailbreak your iPhone first using this guide, then run UltraSn0w, the unlocking tool for iPhone 3G.

This tutorial was originally written for jailbreaking firmware 3.0 but it also works with firmware 3.0.1. I just updated this guide with the latest information.

Note that this RedSn0w tutorial is for Windows users but I assume the steps are similar on a Mac.

1. Before doing anything, make sure you have the latest version of iTunes and the latest firmware 3.0 3.0.1 installed on your iPhone 2G.

2. Create a new folder on your desktop. In this folder, download RedSn0w as well as the 3.0 firmware (not 3.0.1) for your iPhone 2G from our iPhone downloads page (make sure you pick the right firmware). Also download the following bootloader files: BL 3.9 and BL 4.6

3. Unzip and launch RedSn0w.

4. Click “browse” and select the 3.0 (not 3.0.1) firmware you downloaded in a folder in step 2.

5. Once the firmware has been successfully identified, click “next”.

6. Select “install Cydia” and "unlock", then click “next”.

7. Browse for the bootloader files you downloaded in step 2, and click "next".

8. Make sure your iPhone is plugged into the computer and that it is off. Click “next”.

9. RedSn0w will then guide you to put your iPhone into DFU mode. Hold down the power button for 2 seconds. Without releasing the power button, also hold down the home button for 10 seconds. Without releasing the home button, release the power button but keep holding the home button for 30 seconds.

10. If done correctly, your iPhone should reboot and the jailbreak process should start. This step may take up to 15-20 minutes so be patient.

11. Once this process is over, you will get a message saying that it is “done!”

12. Click the “finish” button and reboot your iPhone. The reboot may take up to 10 minutes so again, be patient.

13. Congratulations, you just jailbroke and unlocked your iPhone 3.0 3.0.1 with RedSn0w.

Tutorial: iPhone 3.0 Jailbreak Using RedSn0w

Sébastien Page ∙ Updated August 8, 2009

This RedSn0w guide & tutorial will show you how to use RedSn0w to jailbreak your iPhone 2G, iPhone 3G, or iPod Touch 2G. Note that this step is required to unlock your iPhone 3G using UltraSn0w later on. For more information about the latest jailbreak methods for each iPhone, I recommend you read this before doing anything.

This guide is for PC users but I assume the steps are very similar on Mac. If you want to build custom firmware files with more flexibility it is suggested that you use PwnageTool on Mac OS X (PwnageTool jailbreak tutorial - PwnageTool unlock guide).

1. Before doing anything, make sure you have the latest version of iTunes and the latest firmware 3.0 installed on your iPhone.

2. Create a new folder on your desktop. In this folder, download RedSn0w as well as the latest 3.0 firmware for your iPhone from our iPhone downloads page (make sure you pick the right firmware).

3. Unzip and launch RedSn0w.

4. Click "browse" and select the 3.0 firmware you downloaded in a folder in step 2.

5. Once the firmware has been successfully identified, click "next".

6. Select "install Cydia" and click "next".

7. Make sure your iPhone is plugged into the computer and that it is off. Click "next".

8. RedSn0w will then guide you to put your iPhone into DFU mode. Hold down the power button for 2 seconds. Without releasing the power button, also hold down the home button for 10 seconds. Without releasing the home button, release the power button but keep holding the home button for 30 seconds.

9. If done correctly, your iPhone should reboot and the jailbreak process should start. This step may take up to 15-20 minutes so be patient.

10. Once this process is over, you will get a message saying that it is "done!"

11. Click the "finish" button and reboot your iPhone. The reboot may take up to 10 minutes so again, be patient.

12. Congratulations, you just jailbroke your iPhone 3.0 with RedSn0w. Cydia should now be on your springboard :)

Dev Team Releases RedSn0w Jailbreak

Sébastien Page ∙ Updated January 23, 2016

After the release of PwnageTool for Mac yesterday, the Dev Team just announced the release of of RedSn0w, a jailbreak method that will work for iPod Touch, iPod Touch 2G, iPhone, and iPhone 3G. RedSn0w can also unlock the iPhone 2G.

RedSn0w, which works on both Mac and PC, provides similar functionality to QuickPwn, which makes me wonder whether or not the Dev Team will update QuickPwn, or simply replace it with RedSn0w.

According to the Dev Team:

GOLDEN RULE: If you are using a 3G iPhone with yellowsn0w and rely on yellowsn0w to obtain cellular service, then you should NOT use redsn0w right now. Ultrasn0w (the 3G carrier unlock) is not included with this release and therefore your baseband will be locked and unable to use an operator other than the official one it was bought for. UltraSn0w will be released via APT (cydia and icy) soon. If you have an original iPhone (1st generation) then 3.0 carrier unlock works with this redsn0w release. Yellowsn0w in its current form will NOT work with the baseband version that is present in the 3.0 update, you will need Ultrasn0w, which will be released sometime soon, Ultrasn0w will work with all iPhone 3G models (but not 3GS), even ones that were previously unlockable, Ultrasn0w (when available) will be released via APT (this means you will be able to get it via Cydia or Icy). Please read all parts of this post before downloading and using these tools. Read items 1, 2 and 3 again and again. At the bottom of this post are the bittorrent files for the latest version of redsn0w. This app is suitable for the recent 3.0 release redsn0w will NOT work for the iPhone 3GS. redsn0w WILL work for Original iPhone (1st Generation), Original iPod touch, iPod touch 2G and the iPhone 3G (not the iPhone 3GS).

The Dev Team also suggests to use PwnageTool on Mac (see tutorial and guide) to build custom firmware files with more flexibility.

SHA1 SUMS

SHA1(redsn0w-mac_0.7.zip)= 284639d37fd6675056814b6c8a5b0583ad91c370 SHA1(redsn0w-win_0.7.1.zip)= e264e44954aa417a3eb12ed29770790a30f85a66

Official Bittorrent Releases -

Mac OS X torrent Windows torrent

Note that UltraSn0w, the iPhone 3G jailbreak, hasn't been released yet. Also note that there is currently no way to jailbreak or unlock the new iPhone 3G S.

Tutorial: Unlock iPhone 2G 3.0 Using PwnageTool For Mac

Sébastien Page ∙ Updated January 29, 2016

This tutorial will show you how to unlock your iPhone 2G using PwnageTool for Mac. This guide will allow you to use your iPhone 2G with any carrier.

1. Make sure you have downloaded the latest version of iTunes 8.2 and that you have updated your iPhone to the latest 3.0 firmware.

2. Create a folder on your desktop. In this folder, download PwnageTool 3.0 and your iPhone 2G 3.0 firmware from our iPhone downloads page. Also download bootloader files 3.9BL, 4.6BL.

3. Launch PwnageTool, agree to the warning, and select the “expert mode”.

4. Select your iPhone model (iPhone 2G) and click the blue arrow to continue.

5. Now if your computer doesn’t automatically detect the iPhone 2G 3.0 firmware you downloaded in step 1, browse for it.

6. You will then have a menu with 7 choices. Choose “general”, which will allow you to set your own root partition size. Click the blue arrow to continue.

7. You will now have 3 checkboxes. Make sure that "activate the phone" and “enable baseband update” are checked. You will also need to increase the root partition size. Usually setting the root partition around 700MB is enough. Click next to continue.

8. When you get to the “bootneuter settings”, only check the boxes for "unlock baseband" and "auto delete bootneuter.app". Click the blue arrow to continue.

9. The “Cydia settings” allow you to choose packages to download now so you don’t have to download them from Cydia later. Choose any of the packages you want and click next.

10. You will now have the possibility to choose your own boot logo. I will skip this step as it is useless.

11. After setting your own boot logos (if you chose to), you will now be able to build your own IPSW file. Click the blue “build” button to start.

12. If it's the first time you do this, you will get a message asking you to upload the bootloader file v3.9. When asked to search the web for it, click "no". When asked to browse for it, click "yes" and select it from the folder we created in step 2. Repeat the process for bootloader v4.6.

13.You will then be asked if you're a legit iPhone user. If you click "yes" this will not unlock the phone, thus defeating the whole purpose of this guide. Make sure you click "no".

14. You will then have to choose a folder to save your custom firmware (ie. desktop). You custom firmware will now be built, which may take up to 15-20 minutes. Be patient.

15. Enter your administrator password.

16. When asked if your iPhone has been pwned before, say “no”, even if it has. Make sure your iPhone is connected to your computer and turn it off, as prompted.

17. This is the tricky part. You will now have to follow directions to enter DFU mode. It will ask you to hold the home and power buttons for 10 seconds. Then, you will have to release the power button and hold the home button for 10 seconds.

18. If done correctly, you will get a message saying that you successfully entered DFU mode. Close PwnageTool and launch iTunes.

19. iTunes will then give you a message saying it has detected an iPhone in recovery mode. Click OK.

20. In iTunes, hold the Alt/Option key and click “restore” at the same time. It will open a window where you will have to select the custom firmware that you built a few minutes before.

21. iTunes will then restore your iPhone 2G using the custom firmware. This step may take 15-20 minutes so again, be patient.

22. Once done, you will have to “set up your iPhone”, either as a new phone (which I recommend), or from backup.

23. Reboot your iPhone and you should have a Cydia icon on the springboard.

24. Congrats! You just unlocked your iPhone 2G using PwnageTool 3.0

Tutorial: Jailbreak Your iPhone 3G 3.0 With PwnageTool For Mac

Sébastien Page ∙ Updated January 23, 2016

This tutorial will show you how to jailbreak your iPhone 3G using PwnageTool for Mac. Following this guide is the first step to take in order to unlock your iPhone 3G later on using UltraSn0w.

1. Make sure you have downloaded the latest version of iTunes 8.2 and that you have updated your iPhone to the latest 3.0 firmware.

2. Create a folder on your desktop. In this folder, download PwnageTool 3.0 and your iPhone 3G 3.0 firmware from our iPhone downloads page.

3. Launch PwnageTool, agree to the warning, and select the "expert mode".

4. Select your iPhone model (iPhone 3G) and click the blue arrow to continue.

5. Now if your computer doesn't automatically detect the iPhone 3G 3.0 firmware you downloaded in step 1, browse for it.

6. You will then have a menu with 6 choices. Choose "general", which will allow you to set your own root partition size. Click the blue arrow to continue.

7. You will now have 3 checkboxes. Make sure only "enable baseband update" is checked. You will also need to increase the root partition size. Usually setting the root partition around 700MB is enough. Click next to continue.

8. When you get to the "bootneuter settings", simply click the blue arrrow to continue.

9. The "Cydia settings" allow you to choose packages to download now so you don't have to download them from Cydia later. Choose any of the packages you want and click next.

10. You will now have the possibility to choose your own boot logo. I will skip this step as it is useless.

11. After setting your own boot logos (if you chose to), you will now be able to build your own IPSW file. Click the blue "build" button to start.

12. Choose a folder to save your custom firmware (ie. desktop).

13. Your custom firmware will now be built, which may take up to 15-20 minutes. Be patient.

14. Enter your administrator password.

15. When asked if your iPhone has been pwned before, say "no", even if it has.

16. Make sure your iPhone is connected to your computer and turn it off, as prompted.

18. If done correctly, you will get a message saying that you successfully entered DFU mode. Close PwnageTool and launch iTunes.

19. iTunes will give you a message saying it has detected an iPhone in recovery mode. Click OK.

20. In iTunes, hold the Alt/Option key and click "restore" at the same time. It will open a window where you will have to select the custom firmware that you built a few minutes before.

21. iTunes will then restore your iPhone 3G using the custom firmware. This step may take 15-20 minutes so again, be patient.

22. Once done, you will have to "set up your iPhone", either as a new phone (which I recommend), or from backup.

23. Reboot your iPhone and you should have a Cydia icon on the springboard.

24. Congrats! You just jailbroke your iPhone 3G using PwnageTool 3.0 :)

Dev Team Releases PwnageTool 3.0 For Mac

Sébastien Page ∙ Updated April 18, 2016

The Dev Team just released a new version of PwnageTool that will jailbreak the iPhone 1st gen., iPhone 3G, and the iPod Touch 1s gen. The new iPhone 3G S is not supported yet.

According to the Dev Team:

Because of some bugs and unexpected changes this will be a multipart release, starting with the release of PwnageTool for Mac OS X. QuickPwn for Mac OS X and Windows will follow sometime soon, please don’t bug us about it, we are working flat out to get everything finished to release them.

GOLDEN RULE: If you are using a 3G iPhone with yellowsn0w and rely on yellowsn0w to obtain cellular service, then you should NOT use PwnageTool right now. UltraSn0w is not included with this release and therefore your baseband will be locked and unable to use an operator other than the official one it was bought for. UltraSn0w will be release via APT (cydia and icy) soon. If you have an original iPhone (1st generation) then 3.0 unlock works with this PwnageTool release. Yellowsn0w in its current form will NOT work with the baseband version that is present in the 3.0 update, you will need Ultrasn0w, which will be released sometime soon, Ultrasn0w will work with all iPhone 3G models (but not 3GS), even ones that were previously unlockable, Ultrasn0w (when available) will be released via APT (this means you can get it via Cydia or Icy). Please read all parts of this post before downloading and using these tools. Read items 1, 2 and 3 again and again. At the bottom of this post are the bittorrent files for the 3.0 capable version of PwnageTool. This app is suitable for the recent 3.0 release. PwnageTool will NOT work for the iPhone 3GS. PwnageTool WILL work for Original iPhone (1st Generation), Original iPod touch (1st Generation) and the iPhone 3G.

This will just unlock the 1st gen iPhone. It will not unlock your iPhone 3G or iPhone 3G S. The Dev Team will release UltraSn0w soon and this is the tool you will need to unlock your iPhone 3G.

Official Bittorrent Releases -

http://torrents.thepiratebay.org/4963802/PwnageTool_3.0.dmg.4963802.TPB.torrent SHA1 = 2e19d39398233f88ae0782fd82462a9223791f7f

iPhone 3G S owners will have to wait for the Dev Team to come up with a jailbreak first. Stay tuned for more info and tutorials on how to do all this...