Jailbreak iPhone, iPod Touch, iPad

The iPhone Dev-Team has released a tethered jailbreak of iOS 6 for the iPhone 3GS, iPhone 4, and iPod touch 4G.

Just like at the at the wind-down of last year’s WWDC, we’re releasing a developer-only version of a redsn0w tethered jailbreak for app developers.

Supported Devices:

• iPod touch 4G
• iPhone3GS
• iPhone4 (GSM)
• iPhone4 (CDMA)

You can download the latest version of RedSn0w from here:

• RedSn0w 0.9.13dev1 (Mac): redsn0w_mac_0.9.13dev1.zip
• RedSn0w 0.9.13dev1 (Windows): redsn0w_win_0.9.13dev1.zip

DevTeam comments are available here.

Here are our step-by-step tutorials that will guide you through all the process of untether jailbreaking iOS 5.1.1 with absinthe, redsn0w and sn0wbreeze:

iPhone 4S

UnTethered jailbreak iOS 5.1.1

• Absinthe (Windows)
• RedSn0w (Windows)

iPhone 4

UnTethered jailbreak iOS 5.1.1

• Absinthe (Windows)
• RedSn0w (Windows)
• Sn0wBreeze (Windows)

Read the rest of this entry »

The iPhone Dev-Team has released RedSn0w 0.9.12b2. New version has some bugfixes and additional question about jailbreak mode for A4 devices.

Redsn0w allows owners of A4+earlier devices to install rocky-racoon two different ways:

• Backup/restore method similar to Absinthe and cinject.
• Traditional limera1n-based ramdisk install. It is much faster, especially for users with lot’s music, movies, apps on the device.

Redsn0w 0.9.12b2 will ask owners of iPhone 3GS, iPhone 4, iPod Touch 3G, iPod Touch 4G and iPad 1 what jailbreak mode they would like to use.

Starting with version 0.9.12b2, redsn0w will now explicitly ask users with limera1n-able devices whether they want to inject rocky-racoon using the DFU ramdisk method or the backup/restore method (the ramdisk method is better for those with lots of media on their device that would create very large backups, and it’s required for those with unactivated iPhones). If you’ll always want to use limera1n, you can select that in the Preferences pane. It also fixes an iBooks issue on old-bootrom 3GS iPhones, and provides more useful error messages when things go wrong.

RedSn0w 0.9.12b2 supports untethered iOS 5.1.1 jailbreak for all devices:

• iPhone 3GS
• iPhone 4
• iPhone 4S
• iPad 1
• iPad 2
• new iPad 3
• iPod Touch 3G
• iPod Touch 4G

You can download RedSn0w 0.9.12b2 here.

iOS 5.1.1 untethered jailbreak tutorial using Redsn0w is available here.

The iPhone Dev-Team has released updates to RedSn0w and PwnageTool that bring support for the iOS 5.1.1 untethered jailbreak.

RedSn0w 0.9.12b1 supports untethered iOS 5.1.1 jailbreak for all devices:

• iPhone 3GS
• iPhone 4
• iPhone 4S
• iPad 1
• iPad 2
• new iPad 3
• iPod Touch 3G
• iPod Touch 4G

PwnageTool 5.1.1 allows to create custom firmware and preserve modem version for unlock with ultrasn0w or Gevey. PwnageTool 5.1.1 supports all A4 devices:

• iPhone 3GS
• iPhone 4
• iPad 1
• iPod Touch 3G
• iPod Touch 4G
• Apple TV 2G

You can download RedSn0w 0.9.12b1 here and PwnageTool 5.1.1 here.

iOS 5.1.1 untethered jailbreak tutorial using Redsn0w is available here.

Official DevTeam comments:

RedSn0w
redsn0w allows owners of A4+earlier devices to install rocky-racoon two different ways:

• backup/restore method similar to Absinthe and cinject
• its traditional limera1n-based ramdisk install. If you have a lot of media on your A4 device (music, movies, TV shows, etc), then the ramdisk method is preferrred because it avoids any possibility of later problems related to syncing to iCloud (including Photo Stream and Music Match). The ramdisk method is not available for A5 devices or later because limera1n can’t be used. If you’d like to use redsn0w’s ramdisk method, just be sure to put the A4 device in DFU or Recovery mode before starting redsn0w (otherwise it will immediately start to use the backup/restore method).

We’ve also added a new redsn0w feature specifically for those who got in on the SAM unlock: you can now include your SAM tickets as part of your initial ramdisk jailbreak of iPhone4 or earlier, or alternatively you can upload your SAM tickets to any device after its been jailbroken. redsn0w accepts either the individual SAM activation ticket plist file, or the entire zip file created by redsn0w’s “Backup” button. As usual, redsn0w continues to cover all of its previous jailbreaks and untethers (so redsn0w-0.9.12b1 covers everything from 5.1.1 all the way back to 4.1).

PwnageTool
PwnageTool also avoids any possible sync issues, but again it applies only to A4+earlier devices. If you unlock your iPhone with ultrasn0w or a commercial method, you must use PwnageTool to avoid updating your baseband otherwise you’ll lose the unlock. PwnageTool will also jailbreak+untether the AppleTV2,1 5.0_2B206f (unless you customize the IPSW further, you’ll have just basic SSH access to the device).

InteVyDis has released an untethered jailbreak for A4 devices on iOS 5.1.1 as part of Vulndisco Mobile 1.7. The module is vd_ios_untether_5_1_1. It works by creating a custom bundle you have to install via RedSn0w. Evgeny Legerov posted in twitter:

vulndisco mobile 1.7 is out with untethered 5.1.1

This jailbreak is not free and costs big money. It works only on A4 devices -- iPhone 3GS, iPhone 4, iPad 1, iPod Touch 3G and iPod Touch 4G. It is not yet tested by other hackers. So this might be fake. However famous hacker I01nc notes that the company is a legit source of exploits:

@legerov runs a company: Intevydis that sell exploit packs for many years. If that JB were fake he would hurt his own business.

The unfortunate thing is that now two sets of exploits may be revealed to Apple and some people may pay for the expensive exploit pack despite it being available free in a few days from pod2g.

MuscleNerd tweets:

the most troublesome part is that (potentially) close to 2x as many exploits will be burned now with 2 A4 JBs.

We recommend that you wait the extra day or two for a free jailbreak from pod2g that should work on all devices.

Here is a video demo of this jailbreak.

MuscleNerd from the iPhone Dev-Team has posted some details on the upcoming untethered jailbreak from pod2g.

All info below is tentative and subject to last minute refinements

@pod2g’s 5.1.1 jailbreak+untether is working out great. All devices are covered except for AppleTV3,1, which currently has no path for jailbreaking.
- the initial 5.1.1 plan used a kernel exploit from @westbaer which unfortunately precluded use in iPod3,1 and iPhone2,1
- @planetbeing stepped up and provided a kernel exploit that covers both of those. Those two JBers are the bomb!

The 5.1.1 A5 JB is very similar to the A5 5.0.1 JB. @pimskeks has done a tremendous job supporting both 5.0.1 and 5.1.1 in absinthe

Similar to 5.0.1, there will also be a 5.1.1 CLI “cinject” binary and redsn0w version of the 5.1.1 JB+untether. Absinthe, cinject, and redsn0w will all provide the same JB in different fashions.
- timing is indeterminate. Plans are for this week, but a number of factors can influence that.

For those wishing to donate, we’ve set up a new 5.1.1 paypal URL: https://www.paypal.com/cgi-bin/webscr?cmd=_s-xclick&hosted_button_id=4U6DQGJ2NRVUN

Please don’t pirate AppStore apps (seriously, please do not).

Here are our step-by-step tutorials that will guide you through all the process of jailbreaking iOS 5.1.1 with redsn0w:

iPhone 4

Tethered jailbreak iOS 5.1.1:

• RedSn0w (Windows)

iPhone 3GS

(Un)Tethered jailbreak iOS 5.1.1:

• RedSn0w (Windows)

Read the rest of this entry »

The iPhone Dev-Team released RedSn0w 0.9.11b4 with support for the tethered jailbreak of A4 devices on iOS 5.1.1 – iPhone 4, iPhone 3GS, iPad 1, iPod Touch 3G and iPod Touch 4G.

Version 0.9.11b4 completes the tethered JB support for 5.1.1 on A4 devices and earlier, including proper “Stitching” and “Custom” creation of NO_BB IPSWs.

You can download RedSn0w 0.9.11b4 here.

We will update our tutorials soon.

The iPhone Dev-Team has updated RedSn0w with the ability to save iPhone unlock tickets (SAM unlock).

redsn0w 0.9.10b8 adds the ability to backup arbitrary directories or files from your device into a zip file on your Mac or PC. The new button is Extras->Even More->Backup and it requires your device to be jailbroken with the afc2 service enabled (most jailbreaks include that). By default it will backup your activation records from /var/root/Library/Lockdown, which is useful for everyone taking advantage of today’s SAM unlock using Loktar_Sun’s trick

You can download the new version of RedSn0w 0.9.10b8 here.

You can save unlock tickets through Extras -> Even More -> Backup.