Jailbreak iPhone, iPod Touch, iPad

Here are recommendations from Chronic Dev Team:

1. Make a backup of your device in iTunes by right clicking on your device name under the ‘Devices’ menu and click ‘Back Up’.
2. Once your backup is complete return to your device and go to Settings – General – Reset – Erase all Content and Settings. This will make the jailbreak process much faster.
3. Open Absinthe and be sure you are still connected via USB cable to your computer.
4. Click ‘Jailbreak’ and wait…. just be patient and do not disconnect your device.
5. Once jailbroken return to iTunes and restore your backup from earlier. Right click on your device name under the ‘Devices’ menu in the left panel of iTunes and click ‘Restore from Back Up…’ then select the latest backup you created before. (restoring this backup will return all the content previously on your device ie, apps, photos, etc.)

Step-by-step tutorials are available here.

Chronic Dev Team released Absinthe 2.0 with much anticipated untethered jailbreak for iOS 5.1.1.

Absinthe 2.0 supports the following devices:

• iPad 3 (WiFi/CDMA/Global)
• iPad 2 (WiFi/CDMA/GSM)
• iPad 1
• iPhone 4S
• iPhone 4 (GSM), iPhone 4 (CDMA)
• iPhone 3GS
• iPod 4G
• iPod 3G

You can download Absinthe 2.0 here.

Step-by-step tutorials are available here.

Xvolks has posted a video demonstrating the iOS 5.1.1 untethered jailbreak using the new yet unreleased utility Absinthe 2.0.

I’ve tested Absinthe v2 on my iPhone 4 GSM, iOS 5.1.1. It jailbroke it flawlessly. I’ve took a (bad) video of it

The video was later removed from the public, but you know there is nothing that can be hidden

Yesterday Pod2g has said the jailbreak will be released in a few days.

UPDATE: Gevey Ultra 5.1 does not work any more.

Gevey has released the Ultra 5.1 to unlock the GSM iPhone 4 on iOS 5.1. The new version supports the following modem versions: 01.59, 2.10, 3.10.1, 4.10.1, 4.11.08, and 4.12.01.

The new GEVEY Ultra unlocks your GSM iPhone 4 running iOS 5.1 and earlier and now supports modem firmware versions 1.59, 2.10, 3.10.1, 4.10.1, 4.11.08, and 4.12.01. Currently, a tethered Jailbreak is available for iOS 5.1 for iPhone 4, and you will also need to install the latest Furious Mod file for proper operation.

You can purchase the GEVEY Ultra 5.1 for $49.99 here.

A new unlock has been discovered that works for all iPhones and all 5.x firmware versions, all basebands are supported.

The method discovered by Loktar_Sun appears to exploit a logical bug in Apple’s server and can be performed on any jailbroken iOS device. His procedure involves using Sam Bingner’s SAM (Subscriber Artificial Module) package to perform a series of steps that unlocks your phone to use a specific SIM.

It has been confirmed working by iPhone Dev-Team member MuscleNerd who notes an update may be coming to SAM from @sbingner to make the procedure simpler.

We will post detailed step by step unlock instructions soon.

UPDATE: Tutorial is ready! You can find it here.

The iPhone Dev-Team has released UltraSn0w 1.25 which brings iOS 5.0.1 support to the unlock for older compartible basebands.

iPhone Dev Team’s iPhone 4, 3G, and 3GS software unlock, now with added PwnApple. Compatible with iPhone 4 baseband 01.59.00 and iPhone 3G/3GS basebands 04.26.08, 05.11.07, 05.12.01, 05.13.04 and 06.15.00! Thanks to @sherif_hashim and @Oranav for contributing baseband crashes

UltraSn0w 1.2.5 is now available in Cydia.

If you have one of the supported basebands and wish to update to iOS 5.0.1 you will need to do so with a custom ipsw that doesn’t update your baseband.

UPDATE: official ultrasn0w with iOS 5.0.1 released!

This tutorial is for those users of locked iPhone 3GS and iPhone 4, who updated to iOS 5.0.1 and realized that ultrasn0w unlock doesn’t work there.

Indeed DevTeam have not updated software unlock utility ultrasn0w to work with the latest iOS 5.0.1. There are two workarounds, that will make ultrasn0w work on 5.0.1.

Read the rest of this entry »

The iPhone Dev-Team has released an update to their UltraSn0w unlock bringing support for iOS 5. Remember that NO new basebands are supported in this release. It only adds support for iOS 5 with old basebands.

Here is the list of supported basebands:

• iPhone 4: 01.59.00
• iPhone 3G/3GS: 04.26.08, 05.11.07, 05.12.01, 05.13.04, 06.15.00.

If have one of the above baseband version and need unlock you can upgrade to iOS 5 without updating your baseband using RedSn0w 0.9.9b5.

Ultrasn0w 1.2.4 is available in Cydia.

We’ve updated ultrasn0w to be compatible with iOS5, which came out a few days ago. While ultrasn0w 1.2.4 (available now in Cydia) doesn’t add support for any new basebands, the update is required for any ultrasn0w unlockers trying out iOS5 (it remains backwards compatible though, so you should be able to use it no matter what firmware you have).

The supported basebands for the iPhone 3G and 3GS are 04.26.08, 05.11.07, 05.12.01, 05.13.04, and 06.15.00. The baseband supported for the iPhone4 is 01.59.00.

Remember, the only way to get to iOS5 while preserving your ultrasn0w-compatible baseband is by using a custom IPSW. redsn0w now has the ability to create such a custom IPSW for you (at least on Macs…the same capability for Windows will be coming soon).

The majority of people who use ultrasn0w at iOS5 right now will probably be those with old-bootrom iPhone3GS devices, since they already have an untethered jailbreak via redsn0w. For everyone else, the iOS5 jailbreak is currently tethered and you need to “Just boot” tethered with redsn0w every time your phone reboots. That’s not always easy to do if your phone reboots while away from home!

Note: there’s a special “trick” that iPhone3GS owners with baseband 06.15 need for iOS5. During the new setup screens you see when you start iOS5 for the first time, you’ll be asked about Location Services. Be sure to select “Disable Location Services” when asked! Later on in the setup, you’ll have the chance to turn on Location Services again when asked if you want to use “Find my iPhone”. It’s fine to turn it back on at that point, if that’s your desire (or you can always go in and enable it in Settings.app).

Also, some iPhone3GS users with the 06.15 baseband may have tried to install iOS5 using a stock IPSW (even though you should never ever try to use a stock IPSW if you’re an ultrasn0w unlocker). If you did try this, your baseband is probably in an inconsistent state, and you’ll need to reflash the 06.15 baseband again (using redsn0w). Be very careful if you use redsn0w to reflash the iPad baseband — don’t interrupt the process! And please avoid using stock IPSWs in the future Unlockers should never go near stock IPSWs.

UPDATE: Apple latest firmware is iOS 5.1.1. Apple has stopped signing all other firmwares, including iOS 5.0.1, iOS 4.3.3 and iOS 4.3.5. This means you can NOT restore to 5.0.1/4.3.3/4.3.5 any more (both original and custom), unless you have saved your SHSH keys for it.

If you have decided to perform an untethered jailbreak and unlock, you need to get the following information:

1. What type of device do you have (iPhone 3G/3GS/4, iPod Touch 3G/4G, iPad 1/2, Apple TV)?
2. Do you need unlock (if your iPhone locked to one carrier and you want to use it with another)?
   The answer is NO, if the device is not iPhone, if it was purchased as factory unlocked and can be used with any cellular carrier (f.e. in Canada, France, etc).
   If the answer is YES, you need to find out your modem version (Setting-General-About-Modem).
3. What firmware version do you have? Take a look at Setting-General-About-Version. For example it could be iOS 4.3.3.
4. What operating system do you use on your desktop (Windows, Mac OS)?

How to perform jailbreak, when you do NOT need an unlock

For iPhone 3G the latest is iOS 4.2.1. You can perform jailbreak with any utility. For iOS 4.2.1 you can also use them or GreenPois0n (Windows, Mac OS).

iPad 2 jailbreak is available only for iOS 4.3.3 via JailbreakMe and and iOS 5.0.1 via Absenthe.

iPhone 4S jailbreak is available for iOS 5.0 / iOS 5.0.1 via Absenthe.

iOS 4.3.3

Apple stopped signing iOS 4.3.3, so you cannot update to iOS 4.3.3 without SHSH keys saved (in advance some time ago). If you have iPhone 4, iPhone 3GS, iPad 1, iPod Touch 3G or iPod Touch 4G that run iOS 4.3.3 – use JailbreakMe or RedSn0w to untether jailbreak your device.

If you have saved SHSH keys for iOS 4.3.3 you can use PwnageTool (Mac OS) or Sn0wBreeze (Windows).

iOS 4.3.4/4.3.5

For iOS 4.3.4/4.3.5 only tethered jailbreak is possible with redsn0w. Tethered means that each time you restart your device you will have to connect it to a computer and run redsn0w. The untethered iOS 4.3.5 jailbreak is possible only for iPhone 3GS with old bootrom. You can detect your bootrom version using this tutorial.

iOS 5

To jailbreak and unlock iOS 5 use latest version of redsn0w 0.9.9 or sn0wbreeze 2.8. You can jailbreak tethered or semi-tethered.

The untethered iOS 5 jailbreak is possible only for iPhone 3GS with old bootrom. You can detect your bootrom version using this tutorial.

iOS 5.0.1

For iPhone 4/3GS, iPad 1, iPod Touch 3G/4G an untethered jailbreak is available for iOS 5.0.1. For untethered jailbreak use the latest redsn0w 0.9.10 or Corona – package from Cydia to untether currently installed tethered jailbreak.

Tutorial how to untether installed tethered jailbreak is available here.

For iPhone 4S and iPad 2 use Absenthe.

For tethered iOS 5.0.1 jailbreak you an use redsn0w 0.9.9 and sn0wbreeze 2.8.

iOS 5.1 / iOS 5.1.1

For now only tethered jailbreak is available for iPhone 4/3GS, iPad 1 and iPod Touch 3G/4G for iOS 5.1 and iOS 5.1.1.

You can download all firmwares here.

Tutorials

Here are our step-by-step tutorials that will guide you through the jailbreak process:

iPhone 4S

UnTethered jailbreak iOS 5.0 / iOS 5.0.1:

• Absinthe (Windows)
• Absinthe (Mac)

iPhone 4

Tethered jailbreak iOS 5.1.1:

• RedSn0w (Windows)

Tethered jailbreak iOS 5.1:

• RedSn0w (Windows)
• Custom firmware and jailbreak using Sn0wBreeze (Windows)

UnTethered jailbreak iOS 5.0.1:

• RedSn0w (Windows)
• Custom firmware using RedSn0w
• Custom firmware using Sn0wBreeze (Windows)
• Custom firmware using PwnageTool (Mac)

Semi-Tethered jailbreak iOS 5:

• RedSn0w (Windows)
• RedSn0w (Mac OS)
• Sn0wBreeze (Windows)

Tethered jailbreak iOS 4.3.5:

• RedSn0w (Windows)
• RedSn0w (Mac OS)

UnTethered jailbreak iOS 4.3.3:

• RedSn0w (Windows)
• RedSn0w (Mac OS)
• PwnageTool (Mac OS)
• Sn0wBreeze (Windows)
• JailbreakMe (works without a computer)

Read the rest of this entry »

Comex, famous iPhone hacker, tweeted today that the kernel exploit for jailbreak he had found long ago was closed by Apple in recent iOS 4.3.1. This exploit could be used to jailbreak iPad 2.

As noticed by @0naj, my kernel exploit was fixed in 4.3.1.

I try not to be paranoid, but it is really hard to explain this as anything but a leak.

The funny thing is that my “new” kernel exploit is actually the kernel exploit used by JailbreakMe 2.0. It was never properly fixed.

It stayed there from 4.0.2 through 4.3, but was magically found in time for 4.3.1. well, go go @MuscleNerd and @i0n1c I guess

This is not good news. However we have recently seen working untethered jailbreak video. There are other vulnerabilities in iOS 4.3.1.