Jailbreak

Check out the most comprehensive jailbreaking coverage on the internet, including the latest news, apps, tweaks, and detailed tutorials about everything jailbreak.

iPhone 3.0 Jailbreak Update

Sébastien Page ∙ June 18, 2009

The Dev Team posted an update regarding the iPhone 3.0 jailbreak. It seems the jailbreak is harder than they expected, but there's nothing too hard for our favorite team of iPhone hackers.

We have two issues that we’ve been trying to resolve:

There are new 3.0 complications with YouTube.app if you’re on a hacktivated (unofficially activated) device There’s a bug in Apple’s new version of asr that our custom IPSW’s are tickling and causing crashes on, on some devices. (For the nerdy or curious among us, the details of that bug were tweeted by planetbeing a month ago.)

As of Thursday morning we now have a workaround for #2. For #1, we’ll try our best to get it fixed but we may end up releasing a preliminary jailbreak in which YouTube doesn’t work for hacktivated devices, and then follow that up with a more complete jailbreak when we can.

As a reminder, this jailbreak is necessary to inject UltraSn0w, the payload that will allow you to unlock your iPhone.

Unlocked iPhone Owners Should Not Update to 3.0 Yet

Sébastien Page ∙ June 17, 2009

Just a quick post to remind every unlocker and jailbreaker out there that if you can't live without your jailbroken and/or unlocked iPhone, you should not update to 3.0.

Updating to 3.0 will simply prevent you from jailbreaking or unlocking your iPhone, no matter if it is a 1st gen or iPhone 3G.

My advice to you: wait a few days for the Dev Team to release a new jailbreak for 3.0 and for UltraSn0w (the new app that will unlock your iPhone) to be released.

Dev Team Demos UltraSn0w – iPhone 3G Unlock

Sébastien Page ∙ June 16, 2009

As announced yesterday, Dev Team member MuscleNerd did a demo of UltraSn0w, the new software unlock for the iPhone 3G (skip to 2.20 min on the video below). Unlike its predecessor YellowSn0w, UltraSn0w will unlock your iPhone 3G no matter what firmware, bootloader or baseband you have, as long as you have the new 3.0 firmware installed.

The actual program that UltraSn0w injects into the baseband to accomplish the unlock is the exact same one the Dev Team developed for YellowSn0w. What changed is that the Dev Team found a new "hole" to inject the unlocking payload.

During his demo, MuscleNerd successfully jailbroke his iPhone 3G and proved it by inserting a T-Mobile SIM card.

UltraSn0w won't be available until Friday and like YellowSn0w, it will be downloadable through Cydia. Your iPhone will obviously have to be jailbroken and the Dev Team will release the necessary tools for that (QuickPwn and PwnageTool) soon.

Again, just to make this clear, there is no baseband downgrade needed. You can just upgrade to 3.0 tomorrow and wait for the Dev Team to push its unlocking tools and UltraSn0w on Friday.

Note that this unlock is only valid for the iPhone 3G. According to the Dev Team, this hack may be applicable to the new iPhone 3G S if it can be jailbroken, which should happen sometimes soon. Go Dev Team!

Jailbroken iPhone Shows Up In The App Store

Sébastien Page ∙ Updated May 26, 2017

This one is kinda funny... There is a new app in the App Store called Photo Effects! that uses the screenshot of a jailbroken iPhone in its description. You can clearly see the jailbreak apps Installer, Launcher, Terminal, and DockSwap. You will also notice that the dock is a custom one.

This comes roughly a month after Apple updated the SDK agreement forbidding developers to jailbreak their iPhones.

Looking at this app in the App Store, I'm wondering why the developer did this. I mean, it's a very stupid move. The screenshot doesn't help understand what the app is about at all. It seems to me like this dev did this as a big "F U" to Apple.

So now, the real question is: how long will it take Apple to remove this app from the App Store?

Via

Apple Releases iPhone 3.0 Beta 5 – Dev Team Says It’s Already Jailbroken

Sébastien Page ∙ May 7, 2009

You gotta love the Dev Team! It hasn't been 24 hours since Apple released the fifth beta of their OS 3.0 that our favorite team of iPhone hackers has already shown proofs that it has been jailbroken. And better than that, the Dev Team says that unless Apple changes the hardware of the iPhone, all future version of the OS will be jailbreakable as well.

As should be expected, the modern devteam jailbreak process is still valid. The picture below is 3.0beta5 jailbroken on an iPhone 3G. As we’ve said in previous posts, nothing other than a hardware respin can prevent our jailbreak from working on all exisiting iPhone and iPod Touches. They’ve chased our jailbreak so far down in the chain of trust, the only way they can fix it is in hardware.

One thing worries me a bit here though. Why is the Dev Team so open about it? I mean, they said several times now that Apple would have to spin the iPhone hardware to prevent all future jailbreak. If I was the Dev Team, that's something I would keep for myself. I assume by now Apple has figured out what little piece of electronics it needs to add to the future iPhone to prevent any jailbreak.

What I think about that is that the Dev Team likes challenges. It likes to be fair play too! It's as if the Dev Team said to Apple "hey, look what you need to do to prevent me from hacking your phone. I'm telling you all that because I'm smarter than you and whatever you do, I'll still me able to hack your phone".

In its blog post today, the Dev Team also warns us about the non-official version of QuickPwn:

Because there are so many beta releases, we couldn’t possible refine, test, and release both PwnageTool and QuickPwn for each of them. That’s why we’re waiting until the final release. You may have seen other “hijacked” versions of QuickPwn out there, but all of them are buggy, none of them work on OSX, and almost everyone who uses them reverts back to 2.2.1 (because none of the useful jailbroken apps (Qik, Cycorder, and others) work on 3.0 yet).

As usual, it is safe to remind everyone that if you care about the YellowSn0w unlock, you should NOT play with the 3.0 betas as they may prevent you from ever being able to unlock your iPhone.

Unofficial iPhone 3.0 Beta 3 Jailbreak Available

Sébastien Page ∙ Updated January 23, 2016

Earlier this week, we talked about the new iPhone 3.0 Beta 3. It didn't take long to iPhone hackers to update an unofficial version of QuickPwn to jailbreak the new beta firmware.

As usual, this QuickPwn is not the official release by the Dev Team and using it might prevent you from ever being able to unlock your iPhone using YellowSn0w.

So far, this jailbreak only works with iPhone 2G, 3G and 1st gen iPod Touch. It's also worth noting that this version of QuickPwn will not install Cydia on your iPhone. Instead, it will install Icy, a Cydia "competitor".

I do not recommend using this jailbreak. As a matter of fact, I don't even recommend installing the 3.0 Beta as it is still a little unstable and will most likely prevent you from unlocking in the near future. That's just my opinion anyways and you are obviously free to do whatever you want.

You can download QuickPwn for 3.0 Beta 3 and read the QuickPwn tutorial for instructions.

iPhone 3.0 Jailbreak Confirmed

Sébastien Page ∙ Updated June 20, 2009

UPDATE - iPhone 3.0 jailbreak and unlock tutorials now available:

Jailbreak iPhone 3.0 using PwnageTool for Mac Unlock iPhone 3.0 using PwnageTool for Mac Jailbreak iPhone 3.0 using RedSn0w for Windows Unlock iPhone 3.0 using RedSn0w for Windows

That was quick! Apparently the Dev Team already got a hold of the new iPhone 3.0 SDK and confirmed that you will be able to jailbreak iPhone firmware 3.0 when it's available.

With all of the great stuff lined up for us with the 3.0 OS that Apple described today, many 3G owners may find themselves with itchy update fingers. If you find yourself with access to the 3G IPSW for 3.0 via the iPhone Dev Center program, and you are using yellowsn0w, do not update or restore to that official IPSW. You will lose yellowsn0w and find yourself unable to revert the baseband to get it back.

And for those wondering, yes the 3.0 OS is jailbreakable on all devices. It’s just those using 3G yellowsn0w that have to show some restraint and wait for PwnageTool to create a custom IPSW that avoids the baseband update.

Translation: if you have any interest in preserving your ability to use YellowSn0w, wait for the GO from the Dev Team to update to 3.0!

iPod Touch 2G Full Jailbreak PC Tutorial

Guest Author ∙ Updated January 23, 2016

As you all know the greatest thing just occurred: the iPod Touch 2G has been fully jailbroken. But how do you jailbreak? Very simple.

This tutorial is for PC users only. There is no Mac version available yet. The Dev Team is updating PwnageTool and Quickpwn to work for this. You need to wait a bit. This method requires a FULL restore.

OK so you must first download QuickFreedom. You can download it here, here, or here.

Make sure you have the C++ Distributable Package and LIBUSB. You can install LIBUSB directly from the program. Just press the button in the beginning. So here we go:

When you open the program you are welcomed to the main menu. Click the "Jailbreak" button in the center. Make sure it says LIBUSB is installed and give it a second for it to find and copy the firmware file. When the option becomes available click next. Choose whether you want to install Installer and if you want custom boot logos. When done press the "Create Firmware" button. When that's done it will put the custom ISPW in the desktop. Click next. Now put your iPod in DFU mode. Hold the Power and Home button for 10 seconds and then the Home button for 8 seconds. When in DFU press the "Start Pre-Jailbreak" button. When it is done you can close the program. Open up iTunes. Go to your iPod. Press and hold shift and click restore. Select the ISPW in the Desktop and wait for it to restore. When it finishes you are done.

Post any problems in the comments and I'll try to help.

***********WARNING***********

I have seen a few reports that this is NOT working correctly with Windows 7 and that installing LIBUSB causes some problems. Please do not try this if you are on Windows 7. I will look into this and will get back to you.

UPDATE: Hey guys. QuickFreedom 1.1.1 has been released. It's the same as before so you can still follow the instructions above. But this update fixes most if not all bugs that you guys in the comments were experiencing. You can download it here, here, and here.

iPod Touch 2G Is Now Fully Jailbroken

Sébastien Page ∙ Updated January 23, 2017

I knew they were up to something. The Dev Team had just been too quiet for a while, and a few days ago, I called them up on it. I was right!

Let's welcome the iPod Touch 2G to the now growing family of jailbroken iDevices, or the "pwned for life" family, as MuscleNerd calls it. Apparently, the Dev Team has found a fatal flaw in the iPod Touch 2G's bootrom, making it pwnable, no matter what firmware update comes along.

You could already jailbreak your iPod Touch 2G via a tethered version, but that was not very convenient, and this method probably turned off many of you. This new method available is the 24kpwn LLB patch, aka fully untethered, and supposedly much easier.

The Dev Team says:

Those of you who hang out on IRC or were able to read between the lines in the various blogs, forums, wikis and twitters may realize that we — and importantly, that’s a that’s a collective, cross-team “we” :) — had been hoping to hold onto this full ipt2g jailbreak until the next version of the iPhone came out. That didn’t happen, but maybe it’s too late for Apple to fix the bootrom in the next iPhone.

In a forum post announcing the iPod Touch 2G jailbreak, MuscleNerd says:

Here it is. Just drop it into your existing pwnagetool or xpwn flow. You can even combine it with the nor-only variations to make this easy to install from iTunes without touching your main fs.

It's bitter sweet that this has to come out in this manner, because it *really* would have been nice to save for the next iPhone. On the other hand, nobody knows the struggle to jb like iPod Touch 2G owners So it's good for them.

Now it's a waiting game to see if Apple can react fast enough.

Edit: The patch needs to be applied directly to the LLB without decrypting it first, using "bspatch" or equivalent. The resulting img3 should have this sha1: SHA1(LLB.n72ap.RELEASE.img3)= 82734c7cdf945ba5421b83962aab3ab91e4fb23a

The raw patch to the firmware that transforms the “tethered” jailbreak into an untethered one was released but it’s not yet packaged up into the PwnageTool or QuickPwn flows. I will try to come up with a tutorial asap.

As usual, if you have any question, feel free to leave a comment.

UPDATE: dannyswrld created an iPod Touch 2G jailbreak tutorial for us!

RedSn0w Lite Now on Windows Too! (updated)

Guest Author ∙ Updated January 23, 2016

The Dev Team released RedSn0w Lite not too long ago. This is the tethered jailbreak for the iPod Touch 2G. It was Mac compatible only however. But thanks to some programs by people RedSn0w Lite is now possible for Windows. Problem is it's hard, there are a few choices, and a guide is needed. So here we go.

UPDATE: The tutorial has been re-written to make it easier for you.

What You Will Need:

The GUI Jailbreak RedSn0w Booter Calm and Patience

Preparation:

BACK-UP YOUR IPOD!!!!! Create a folder on your Desktop called "Jailbreak" Extract the two files above into the "Jailbreak" folder but in separate folders. Kill both "iTunes" and the "iTunesHelper" process. Unplug your iPod and the USB cable Open up the GUI program and if you don't have the two packages it says on the home screen please click on the button to install them. Once done you can plug your iPod back in. Place the 2.2.1 ISPW firmware file into the same folder the GUI program is in.

PART 1:

Start up the GUI program. Click next. From the list of files select the 2.2.1 ISPW file. Then click "Start making ISPW file". This will take a few minutes. When finished in the same folder as the GUI program you will have another ISPW file named "JailbrokenISPW". Remember that. Now click on next. Now you need to put your iPod into DFU mode. You need to be PRECISE on your timing here. Hold the power and home button for 10 seconds. Then let go of the power button but keep holding the home button for 8 seconds. If this worked your iPod's screen should be blank. Now press the "Upload DFU file" button. When that finishes, unplug your iPod for 2 second then plug it back in. If it worked your iPod's screen should now be completly white. If so then press the "Upload 0wnboot patch" button. When that is done press next. Now press the "Press me" button. This will open up a CMD window. Right click on the window and click paste. Wait for this to finish. When it finishes open up iTunes and close the GUI program. It will say your iPod is in recovery mode. Now hold down the shift key and press restore. There, navigate to the folder where the "JailbrokenISPW" file is and select it. Wait for iTunes to finish restoring it. When it restarts your computer will not recognize it. But don't worry.

Part 2:

Now pay attention to Part 2. These are the steps you need to follow when your iPod reboots.

Make sure iTunes and the "iTunesHelper" process are dead. Open up the "Redsn0w Booter". It's pretty simple. Again put your iPod into DFU mode by holding the power and home button for exactly 10 seconds and then release the power button but keep holding the home button for 8 seconds. Once your iPod is in DFU mode simply press the "Boot" button. In around 20-30 seconds your iPod will boot up. If your iPod stays in a white screen and the CMD window is not open, make sure iTunes and the "iTunesHelper" process are dead and try again.

And you are done. You have jailbroken your iPod Touch 2G! Now something important. I STRONGLY recommend before running Cydia or anything that you sync all your stuff from iTunes. You can still sync later but at least for me I encountered a lot less bugs when I synched all my stuff first. After you sync make sure to run Cydia first. Then from there you are on your own. Remember it is a tethered jailbreak so you must run the booter every time your iPod restarts. If you are not familiar with some terms please see this FAQ I wrote on the tethered jailbreak.

Please be aware of 3 things:

- One is that after EVERY reboot, you must run the steps above. - That this is a somewhat "beta" release from the Dev Team, that they or non of the people who made the software above are responsible for anything. And neither are we. - And that the Dev Team is not providing ANY support for redsn0w lite.

Whether the tethered jailbreak is for you or not depends on whether you mind going to your computer every time your iPod reboots. Your choice. But at least you know how to now. The Dev Team is working hard on the full un-thered version of redsn0w which will not require you to run the booter after every reboot and is much easier to use. But this is not as easy as you might think.

There is also a semi-tethered version now out. Basically what this is, once you run the booter you can use your jailbroken stuff. When it reboots, if you are using the semi-tethered jailbreak, what will happen is your iPod will boot into normal mode. All your jailbreak stuff will still be there but you can't use them. I personally do not like this because it requires more work, it's a bit more complicated, and a lot of jailbreak apps (such as Winterboard) must be patched. So I prefer the tethered version.

RedSn0w Lite FAQ

Guest Author ∙ Updated January 23, 2017

I have seen some confusion about RedSn0w out there and I thought I would make a quick post clearing things up and with a few FAQ.

What is RedSn0w and why can I only find RedSn0w lite?

RedSn0w is the iPod Touch 2G jailbreak. You can only find RedSn0w lite because it's the lite (and tethered) version. The full version is not out yet so that's why you can't find it.

What is a "tethered" jailbreak?

A tethered jailbreak requires that every time your device reboots that you go to your computer and run a "booter". It's pretty fast, and tells your iPod to boot. The problem is that until you run this booter, you cannot use your iPod (but scroll down a bit).

Are there any dangers?

Well I think so. The Dev Team is not providing support and said "that is could void your warranty". So I would hold for the full version.

What's the semi-tethered jailbreak?

Ahhh. It's much better than the tethered jailbreak. The way it works is that if your device reboots, instead of you being completely unable to use your iPod, your device boots up. All your jailbroken stuff is still there, icons and all. But even if you try to launch the jailbroken stuff, it won't. But hey, much better than the regular tethered version.

How do you run RedSn0w lite or the semi-tethered jailbreak on Windows?

There are many ways to do so. But I'm trying to write a tutorial for the regular tethered jailbreak, but the process is sort of consing and writing a tutorial is not easy. As to the semi-tethered jailbreak, the easiest way is this YouTube video.

Now a very important note if you do the semi-tethered jailbreak. DO NOT install Winterboard directly. It won't work you need to install a patch.

Doing this is all at your own risk!! But that's your choice.

My YellowSn0w Success Story

Sébastien Page ∙ February 18, 2009

I am currently in my home country of France for a couple of weeks. Before getting here, I was a little worried about whether I could use my iPhone with a local carrier as I never was able to try YellowSn0w when I was in the US. I unlocked my iPhone 3G about a month ago using YellowSn0w but since all my friends either are with AT&T or Verizon, I couldn't make sure the unlocking worked.

One of the first things I did when I got at my Mom's was popping out her Orange (French carrier) SIM and put it in my iPhone. An error message showed up saying the SIM was locked and giving me the option to unlock it. I taped "unlock" and waited a few seconds until I realized that I was not getting any cell signal at all.

I rebooted my iPhone, got the same error and still no success. Until I finally remembered that the SIM card you put in your jailbroken iPhone cannot be SIM locked. This means that the SIM card can't be protected by a PIN.

So I put back the SIM card in my Mom's phone and went to the settings to deactivate the lock on the SIM. As I am writing this, I realize that I probably could have deactivated it from my iPhone's settings…

Two seconds later, I was getting signal and tried making my first call with my unlocked phone. It was a success. I also realized that I was getting on Edge. I asked my Mom if she had Internet access on her phone but she said she didn't. I launched Safari and went online in no time. My Mom had Internet access on her phone and she wasn't even aware of it…

The following day I went buy a my own SIM card as I couldn't use my Mom's for the next 2 weeks… I bought a SFR SIM as it to me the best carrier.

So this is my success story with YellowSn0w. If there is one thing to remember here, it is that if you have an issue with YellowSn0w, make sure the SIM you insert in your iPhone is not locked (PIN protected).