Jailbreak iPhone, iPod Touch, iPad

Pod2g has revealed that the new iPhone 4S and iPad 2 jailbreak tool developed by the Chronic Dev Team is called Absinthe.

A tool named Absinthe and developed by the Chronic Dev Team will install the untether on your device. Also the iPhone Dev Team will release a CLI (command line) tool to help diagnose issues and repair things if it goes wrong.

This is a little scary I know, but the chance you break something is really small, since we made lots of tests to verify the process on different devices. But it is the first time we use the backup / restore functions of iTunes to install software, and there are maybe things we are not aware of.

For more detailed information ahead of the jailbreak please read the information from iPhone Dev-Team.

The iPhone 4S and iPad 2 jailbreak utilities are undergoing testing and polishing before the public release. According to ‘Dream Team’ member planetbeing:

We’re testing & fixing problems with the jb app (that @pimskeks finished the majority of at incredible speed). Still needs to be polished.

P0sixninja also tweeted it should not be much longer before the jailbreak gets released.

not much longer now

We hope to see the utilities soon, because more than a week ago there were tweetes that jailbreak should have been ready in few days.

iPhone Dev Team has posted a blog entry about upcoming public release. If you have iPad 2 or iPhone 4S go ahead and read it:

But we’re now near the final stages of testing the public version of the jailbreak.  Please allow time to clean up any remaining bugs in the jailbreak clients.Jailbreak programs:

To be as flexible as possible, the A5 version of the corona jailbreak will take multiple forms:

• Chronic Dev have incorporated the overall flow into a GUI that runs on your Mac or PC.  The goal is for the GUI to be enough for most cases.
• iPhone Dev have also incorporated the exact same flow into an alternative command-line interface (CLI). This will allow us to help users through individual steps of the jailbreak manually, to both help the user and help improve the overall flow.  Although the CLI will also allow the user to perform the entire jailbreak from beginning to end, we anticipate it will be more useful in debugging the occasional errors.  The CLI currently has over 20 individual options (in addition to the single “jailbreak” option) that should be useful during debug after the GUI release.
• Once all the bugs in the flow are worked out, we’ll also incorporate it into the redsn0w GUI (but still leave the CLI freely available too).  In order to maximize the chances of the jailbreak working for everyone, the redsn0w GUI will use native Apple iTunes libraries — this technique is slightly different than how the Chronic Dev GUI handles communications, and should provide nice combined coverage for all the odd computer configurations out there.

Firmware:

The supported firmware versions will be:

• iPhone4S: 5.0 (9A334), 5.0.1 (9A405) and the “other” 5.0.1 (9A406)
• iPad2: 5.0.1 (9A405)

iPhone4S owners looking to maximize their chances of achieving an eventual software-based carrier unlock should be staying at 5.0. Everyone else should be at 5.0.1.  If you’re an iPhone4S owner who already updated to 5.0.1, it’s too late to go back down to 5.0, but if you’re on 9A406 it is possible to downgrade the BB by going to the 9A405 version of 5.0.1 while the window is still open.

Support:

The overall flow used by the GUI and CLI to inject the A5 corona jailbreak has never been done before, and there may be unforeseen problems once it’s released to the public.  It’s very important for you to sync your data, photos, and music before attempting any version of this jailbreak.  We’ll be watching the comments section below for signs of any widespread problems, but please be aware that you jailbreak at your own risk!

When:

As mentioned at the start of this post: when testing has shown most of the bugs have been fixed!

Pod2g has recently announced that Planetbeing, MuscleNerd, and P0sixninja have joined his effort to release an iOS 5.0.1 untethered jailbreak for the iPhone 4S and iPad 2.

@planetbeing, the legendary hacker behind iPhone Linux and lot of jailbreaks has joined the A5 research! The famous @MuscleNerd, the leader of the iPhone Dev Team, who did a lot of tests for Corona and whom integrated it and made it simple in redsn0w is willing to help also. And last, but not least @p0sixninja, the leader of the Chronic Dev Team, and my partner for years on iPhone security research has started to code and fuzz the Apple sandbox.

That means that we now have a dream team to create a public release of the A5 jailbreak.

Several day ago pod2g posted information why the A5 jailbreak had not been released yet. The key reason being that the exploit used for A4 devices (called limera1n) doesn’t work on A5 devices. The untethered iPhone 4S and iPad 2 jailbreak that we have seen on videos and photos was created relying on having a developer account.

We are sure that planetbeing, MuscleNerd, p0sixninja and pod2g is just a great team. Hopefully they will find necessary exploit and implement it fast, because Apple might release 5.0.2 or 5.1 and fix untathered.

Seas0nPass has been updated to perform an untethered jailbreak of the Apple TV running iOS 4.4.4.

Happy New Year! Today we are happy to release an updated version of Seas0nPass that supports an untethered jailbreak of the latest 4.4.4 (iOS 5.0.1) AppleTV software. Big thanks goes to the world famous @pod2g for doing the lion’s share of the work to make this new version possible.

Most of the apps are working just fine:

Which plugins are supported on 4.4.4?
● Couch Surfer (works)
● Last.fm (works)
● Media Player (works)
● NitoTV (works)
● Overflow (works)
● Remote HD (works)
● Rowmote (works)
● RSS Feeds (works)
● Weather (works)
● XBMC (works)
● Plex (0.9.0 beta only)

You can take a look at our step-by-step tutorial for Apple TV untethered jailbreak here.

You can download the latest version of Seas0nPass from here: Windows, Mac.

Untethered jailbreak for iOS 5.0.1 has already been released. While there is no reason not to update to iOS 5.0.1, there might be some users who would like to stay on iOS 5 and have untethered jailbreak there too.

Famous hacker Joshua Hill (nickname p0sixninja) has recently posted via twitter that an untethered jailbreak for iOS 5 will be released soon after testing.

@p0sixninja: 5.0 untether will be coming soon, we still have some testing and bugs to work out

Untethered jailbreak is available for iOS 5.0.1 firmware on iPhone3GS, iPhone4, iPhone4-CDMA, iPad1, iPod touch 3G, iPod touch 4G.

1. If you’re already on iOS 5.0.1 with a tethered jailbreak, you have two even choices:

1. Run redsn0w 0.9.10 over your current jailbreak (deselect “Install Cydia”)
2. Install the Cydia package prepared by the chronic devteam. It is called Corona 5.0.1 Untether. (tutorial)

2. If you are not on 5.0.1 yet, update now! If you unlock via ultrasn0w or gevey, make sure you update to 5.0.1 via a custom IPSW! See our guides for sn0wbreeze here. Once you’re at 5.0.1, use the latest redsn0w 0.9.10 to both jailbreak and untether.

You can download RedSn0w 0.9.10b1 here.

Our step-by-step tutorials for untethered jailbreak using redsn0w 0.9.10:

• iPhone 4
• iPhone 3GS
• iPod Touch 4G
• iPod Touch 3G
• iPad 1

Hacker pod2g is currently busy working on iOS 5.0.1 untethered jailbreak. He has recently posted an interesting update:

The jailbreak is near ready for prime time (excluding 4S and iPad 2).

For now the jailbreak is tested on all devices, including iPhone 4, iPhone 3GS, iPad 1, iPod Touch 3G and iPod Touch 4G. iPad 2 and iPhone 4S status is “work in progress”.

pod2g has also published a new video demo of iOS 5.0.1 untethered jailbreak for iPhone 4:

http://www.youtube.com/watch?v=qdF58anFtiQ

iPhone Dev-Team released RedSn0w 0.9.9b9 with full iOS 5.0.1 support (no need to point to iOS 5.0 any more). New version also features support for SHSH and APTickets:

• native support for 5.0.1 (no need to point redsn0w at 5.0 IPSW or use command-line args).  Support automatically extends to all of redsn0w’s various functions: “Jailbreak”, “Just boot”, “Fetch blobs”, “Stitch blobs”, “Recovery Fix”
• iBooks fixed in 5.0 and 5.0.1.  This is a targeted fix that doesn’t remove entire sandbox mechanism.  5.x users already using redsn0w “Just Boot” can just use the new version without redoing entire jailbreak again
• 3GS old-bootrom owners can now create custom IPSWs without blobs
• ultrasn0w compatability update (i.e. same baseband requirements) for 5.0.1 will be available on Cydia Monday
• support for newer 8GB iPhone4 (which until now had problems with “Fetch blobs”).  Thanks to @JKjeepnJeff for loaning us one of these newer i4 units for testing!
• allows Windows users (not just OS X users) to use the “Custom” button to create IPSWs without baseband updates.  (Update: please wait for 0.9.9b9b for this!)
• accommodates APTickets in 5.x (until next Apple countermove).  APTickets are crypto-verified before submitting to Cydia, just like the main blobs.  Cydia server support for sending back the APTickets is upcoming.  For now, use stitched IPSWs for 5.x.  Due to APTickets, stitched 5.x IPSWs now require user to start in “Pwned DFU” mode
• Support added for stitching 4.x blobs to iPad2-GSM IPSWs.  Similar to @notcom’s TinyCFW but doesn’t require lots of RAM or a TSS-assisted restore. Won’t work for iPad2 5.x blobs (or iPhone4S at all) until a bootrom-level exploit is out
• top line now shows whether (and where) a redsn0w update is available, or if the version being run is the latest.  Uses DNS TXT record to alleviate any concerns about snooping
• no 5.1 beta support at this time (major apps like Cydia are not yet compatible)
• @pod2g has been doing a great job porting his 5.x untether…check his blog for updates!
• Owners of newer 3GS iPhones must not flash the iPad baseband.  The iPad baseband will not work on 3GS iPhones built later than 2011 week 35.  You have a week 35 or later device if your serial # starts with xx135.

Update #17b: Version 0.9.9b9b enables the “Custom” button for Windows users, and make the 3GS week 35 warning a more explicit part of the process.

You can download RedSn0w 0.9.9b9b here.

UPDATE: redsn0w updated to redsn0w 0.9.9b9d.

UPDATE: official ultrasn0w with iOS 5.0.1 released!

This tutorial is for those users of locked iPhone 3GS and iPhone 4, who updated to iOS 5.0.1 and realized that ultrasn0w unlock doesn’t work there.

Indeed DevTeam have not updated software unlock utility ultrasn0w to work with the latest iOS 5.0.1. There are two workarounds, that will make ultrasn0w work on 5.0.1.

Read the rest of this entry »

The iPhone Dev-Team released jailbreak utility RedSn0w 0.9.9b6 for both Windows and Mac users. The new version offers full iOS 5 jailbreak support for Windows and fixes Location Services issue for iPhone 3GS devices running the 06.15 baseband. This is still a tethered jailbreak for iPhone 4, iPhone 3GS, iPad 1, iPod Touch 3G and iPod Touch 4G:

We’ve released version 0.9.9b6 of redsn0w, with both a functional fix and cosmetic fix for iOS5 jailbreakers. For iPhone3GS owners with the 06.15 baseband, this redsn0w eliminates the network crash you saw when using Location Services in iOS5 (in fact, you don’t even need to disable Location Services anymore during the initial setup). The cosmetic fix is to the visual countdown you see when going into DFU mode.

It’s okay to re-run this redsn0w over an existing device jailbroken at iOS5. Just choose “Jailbreak” again and de-select Cydia (in other words, all the checkboxes will be unchecked). If you are lucky enough to have an old-bootrom iPhone3GS, please pre-select the IPSW first (redsn0w can’t yet auto-detect the FW version of your old-bootrom 3GS if it’s already been jailbroken).

Just as redsnow 0.9.9b5 the new version supports creating custom firmwares with preserving baseband (modem) version for unlock. Unfortunately right now custom firmware functionality works only with Mac version.

You can download the latest RedSn0w version here.

UPDATE:
Here are links to our RedSn0w 0.9.9 iOS 5 jailbreak tutorials:

• Windows: iPhone 4, iPhone 3GS, iPad 1, iPod Touch 3G, iPod Touch 4G
• Mac OS: iPhone 4, iPhone 3GS, iPad 1, iPod Touch 3G, iPod Touch 4G