PwnageTool 5.1.1 allows to create custom firmware and preserve modem version for unlock with ultrasn0w or Gevey. PwnageTool 5.1.1 supports all A4 devices:
iPhone 3GS
iPhone 4
iPad 1
iPod Touch 3G
iPod Touch 4G
Apple TV 2G
You can download RedSn0w 0.9.12b1 here and PwnageTool 5.1.1 here.
iOS 5.1.1 untethered jailbreak tutorial using Redsn0w is available here.
Official DevTeam comments:
RedSn0w
redsn0w allows owners of A4+earlier devices to install rocky-racoon two different ways:
backup/restore method similar to Absinthe and cinject
its traditional limera1n-based ramdisk install. If you have a lot of media on your A4 device (music, movies, TV shows, etc), then the ramdisk method is preferrred because it avoids any possibility of later problems related to syncing to iCloud (including Photo Stream and Music Match). The ramdisk method is not available for A5 devices or later because limera1n can’t be used. If you’d like to use redsn0w’s ramdisk method, just be sure to put the A4 device in DFU or Recovery mode before starting redsn0w (otherwise it will immediately start to use the backup/restore method).
We’ve also added a new redsn0w feature specifically for those who got in on the SAM unlock: you can now include your SAM tickets as part of your initial ramdisk jailbreak of iPhone4 or earlier, or alternatively you can upload your SAM tickets to any device after its been jailbroken. redsn0w accepts either the individual SAM activation ticket plist file, or the entire zip file created by redsn0w’s “Backup” button. As usual, redsn0w continues to cover all of its previous jailbreaks and untethers (so redsn0w-0.9.12b1 covers everything from 5.1.1 all the way back to 4.1).
PwnageTool
PwnageTool also avoids any possible sync issues, but again it applies only to A4+earlier devices. If you unlock your iPhone with ultrasn0w or a commercial method, you must use PwnageTool to avoid updating your baseband otherwise you’ll lose the unlock. PwnageTool will also jailbreak+untether the AppleTV2,1 5.0_2B206f (unless you customize the IPSW further, you’ll have just basic SSH access to the device).
With internet tethering enabled you can use iPhone internet connection on you desktop or notebook. Here is a quick tutorial for experienced users. For everybody else – just wait for the new version of PwnageTool or some other utility.
Here it is:
A bsdiff patch to apply to CommCenter in 3.1.2 to re-enable tethering is available and . It’s just a 2-byte patch as shown below (and an appropriate readjusting of the mach-o’s codesign hash):
USE THIS AT YOUR OWN RISK! Your carrier may end up charging you for unauthorized tethering access.
Update #1 It looks like a lot of people have been looking at CommCenter lately because IRC user CleanAir had a similar tethering patch. Meanwhile over in the 2G CommCenter, WhiteRat and geniusan for that platform. Kudos to CleanAir, WhiteRat, and geniusan for digging into CommCenter and coming up with patches!
Update #2 A few have started to pop up. Eventually this will be made a part of the normal PwnageTool flow but for now this is best left for the adventurous users out there!
sub_17538+74 4B F0 58 F8 BL validate_signature
sub_17538+74
sub_17538+78 30 B1 CBZ R0, FAIL ; <— PATCH THIS TO 00 20 (MOV R0,#0)
sub_17538+78
sub_17538+7A 05 20 MOVS R0, #5 ; int
sub_17538+7C 1C 49 LDR R1, =aValidatedWirel ; “Validated wireless modem connection wit”…
sub_17538+7E 02 9A LDR R2,
sub_17538+80 7E F0 00 ED BLX _syslog
sub_17538+80
sub_17538+84
sub_17538+84 loc_175BC ; CODE XREF: sub_17538+70j
sub_17538+84 02 9C LDR R4,
sub_17538+86 05 E0 B loc_175CC
sub_17538+86
sub_17538+88 ; —————————————————————————
sub_17538+88
sub_17538+88 FAIL ; CODE XREF: sub_17538+78j
sub_17538+88 05 20 MOVS R0, #5 ; int
sub_17538+8A 1A 49 LDR R1, =aCouldNotValida ; “Could not validate wireless modem conne”…
sub_17538+8C 7E F0 FA EC BLX _syslog
sub_17538+8C
bsdiff patches are the normal way that PwnageTool modifies Apple software. To apply one manually, you must first get the “bspatch” program. Then do:
bspatch CommCenter CommCenter-hacked CommCenter.patch
If you don’t have bsdiff but know how to use a hex editor, the differences are available in text format.
The correct SHA1 of the hacked file will be:
1b19712035f33654cf72838ebe1a2033931b56b2 # 3GS
063165c3fa3e21d30eb4b486fab924ba3ef0ea5e # 3G
You would then remove the original program and replace it. Don’t forget to ensure it has execute permission!
chmod +x /System/Library/PrivateFrameworks/CoreTelephony.framework/Support/CommCenter
After you’ve started using the hacked CommCenter, visit from your iPhone and install a new mobileconfig.
Thanks to and the porting work of as well as the authors of , it is now possible to “tether” your iPhone 3G and use its Internet connection on your laptop.
Warning – Tethering your iPhone is against the iPhone data plan terms. AT&T could slap you with huge fees if you overuse this. I recommend only using it during emergencies.
Here is a basic plan (by the way, this should work for old IPhone also):
Jailbreak your iPhone 3G
Install 3Proxy and Terminal
Create an ad-hoc Wi-fi network using your laptop
Join the network with your iPhone
Find the iPhone’s IP address
Open Terminal and run the proxy program
Open Safari on your iPhone and open a web page
Configure your browser to use the proxy
Later we’ll discuss it with more details.
Step 1: Jailbreak your iPhone
Just download PWNageTool 2.0. Run it and follow the instructions. Make sure to add Cydia, when asked.
Step 2: Install 3Proxy and Terminal
During the jailbreak, Cydia should have appeared on one of your app pages: use it and let Cydia load and self-update.
Then head to Install, All Packages, then find MobileTerminal and 3Proxy (3Proxy is at the bottom). Install both and hit your Home button. Your phone will restart and you’ll see Terminal installed on your home screen. 3Proxy isn’t a GUI app and as such won’t have an icon.
Step 3: Create an ad-hoc Wifi network using your laptop
Using whatever wireless software suite you have, create an ad-hoc network. On a Mac it’s in the Airport menu, under “Create network…”. Name it something inconspicuous. I called mine “baladoux”. On your iPhone, join the ad-hoc network.
Step 4: Find your iPhone’s IP address
Then, hit the blue arrow next to it, and wait for your IP address to show up:
Memorize (or write down) this IP address. You will need it later.
Step 5: Open Terminal and run the proxy program
Simple enough. Open Terminal, type “socks” and hit return.
Nothing will appear to happen, but the SOCKS server will be running. You can hit the home button to push Terminal to the background (remember to terminate it later, by switching back to Terminal and holding the Home button until it closes).
Step 6: Open Safari on the iPhone and open a web page
Any page will do. I recommend http://pwnagetool.ru
This step is important. The page will take a while to load. When Safari realizes it can’t get to the Internet using the ad-hoc Wifi, it will do some internal magic to switch back to 3G for Internet while still on your ad-hoc network. That lets the proxy do its thing.
Step 7: Configure your browser
In Firefox, head to Preferences, and under Advanced, Network, hit Settings:
Then, fill in the iPhone’s IP address (which you memorized earlier) into the SOCKS Host field, and put 1080 as the port number. Make sure all other proxy fields are blank and/or 0 as shown:
Then, since the proxy doesn’t forward DNS, you will also have to change an advanced option in Firefox. In the Firefox URL bar, enter “about:config” and hit Enter
In Filter, type “socks” and then double-click “network.proxy.socks_remote_dns” to make its value “true”.
That should be all you need! Firefox should be able to browse the Internet through your iPhone’s 3G connection.
Tethering costs a lot of battery life on the iPhone so make sure you have it plugged in. When you’re done, make sure to quit Terminal by opening it back up and pressing and holding the Home button until it quits.
