Subscribe to RSS Feed


Posts Tagged ‘ Tutorial ’




iPhone iOS 4.1 Jailbreak Released from GeoHot, called LimeRa1n

Famous hacker Geohot is back and today he released the latest iOS 4.1 jailbreak. It is called LimeRa1n and supports iPhone 3GS, iPod Touch 3G, iPad, iPhone 4, iPod Touch 4G with iOS firmwares 4.0-4.1 and beyond. It can also hacktivate your device, so there is no need in phone SIM-cards and other tricks.

This software is still in beta and was updated 3 times in last several hours. So use with caution.

There is Windows version only for now. Geohot plans to release LimeRa1n for Mac and Linux soon. You can Download it here.

Some users report that they have jailbroken their iOS 3.2.2 iPads successfully with limera1n, while others report that they tried, but failed.

Do not forget to backup.

For many users of iPhone 3GS and iPhone 4 with iOS 4.0.2 now there is a hope to perform jailbreak using LimeRa1n and unlock using ultrasn0w. We recommend NOT to do it if you have not saved your SHSH keys. You can try, but if something goes wrong without SHSH keys you’ll have to restore to iOS 4.1, and there is no unlock for iOS 4.1 (possibly forever). Just wait for PwnageTool utility.

DevTeam reported that Limera1n uses a different exploit than SHAtter, so they will not release SHAtter utility, they don’t want let Apple fix both security holes. However they plan to release PwnageTool using the same exploit.

You can find our LimeRa1n tutorials tutorials:

Known bugs:

  • some people must reboot to see Cydia
  • beta iOS versions aren’t supported
  • iPod Touch 2G support coming soon
  • for iPhone 3G use redsn0w 0.9.6 b1

Here’s a quick changelog of recent beta releases:

  • BETA1 – first release
  • BETA2 – fixed kernel patching magic, rerun BETA2+ over BETA1
  • BETA3 – fixed new bootrom 3GS
  • BETA4 – uninstall fixed, respring fixedish

Read the rest of this entry »


Tags: , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , ,

No Comments



Jailbreak an iOS 4.0.2 iPhone 3GS with PwnageTool

Have you already updated your device to the version iOS4 and want to unlock your 3GS? Firstly there was Redsn0w, now PwnageTool is available, which can easily help you. Here is a simple and easy tutorial for jailbreaking iPhone 3GS (old bootrom). Warning: this is not an official release and therefore may be some bugs that can destroy your device or delete some important information. So be careful while using it!


Read the rest of this entry »


Tags: , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , ,

No Comments



With internet tethering enabled you can use iPhone internet connection on you desktop or notebook. Here is a quick tutorial for experienced users. For everybody else – just wait for the new version of PwnageTool or some other utility.

Here it is:

A bsdiff patch to apply to CommCenter in 3.1.2 to re-enable tethering is available here for the 3GS and here for the 3G. It’s just a 2-byte patch as shown below (and an appropriate readjusting of the mach-o’s codesign hash):

USE THIS AT YOUR OWN RISK! Your carrier may end up charging you for unauthorized tethering access.

Update #1 It looks like a lot of people have been looking at CommCenter lately because IRC user CleanAir had a similar tethering patch. Meanwhile over in the 2G CommCenter, WhiteRat and geniusan have patched in native MMS support for that platform. Kudos to CleanAir, WhiteRat, and geniusan for digging into CommCenter and coming up with patches!

Update #2 A few tutorials have started to pop up. Eventually this will be made a part of the normal PwnageTool flow but for now this is best left for the adventurous users out there!

sub_17538+74 4B F0 58 F8 BL validate_signature
sub_17538+74
sub_17538+78 30 B1 CBZ R0, FAIL ; <— PATCH THIS TO 00 20 (MOV R0,#0)
sub_17538+78
sub_17538+7A 05 20 MOVS R0, #5 ; int
sub_17538+7C 1C 49 LDR R1, =aValidatedWirel ; “Validated wireless modem connection wit”…
sub_17538+7E 02 9A LDR R2,
sub_17538+80 7E F0 00 ED BLX _syslog
sub_17538+80
sub_17538+84
sub_17538+84 loc_175BC ; CODE XREF: sub_17538+70j
sub_17538+84 02 9C LDR R4,
sub_17538+86 05 E0 B loc_175CC
sub_17538+86
sub_17538+88 ; —————————————————————————
sub_17538+88
sub_17538+88 FAIL ; CODE XREF: sub_17538+78j
sub_17538+88 05 20 MOVS R0, #5 ; int
sub_17538+8A 1A 49 LDR R1, =aCouldNotValida ; “Could not validate wireless modem conne”…
sub_17538+8C 7E F0 FA EC BLX _syslog
sub_17538+8C
bsdiff patches are the normal way that PwnageTool modifies Apple software. To apply one manually, you must first get the “bspatch” program. Then do:
bspatch CommCenter CommCenter-hacked CommCenter.patch
If you don’t have bsdiff but know how to use a hex editor, the differences are available here in text format.

The correct SHA1 of the hacked file will be:
1b19712035f33654cf72838ebe1a2033931b56b2 # 3GS
063165c3fa3e21d30eb4b486fab924ba3ef0ea5e # 3G
You would then remove the original program and replace it. Don’t forget to ensure it has execute permission!
chmod +x /System/Library/PrivateFrameworks/CoreTelephony.framework/Support/CommCenter
After you’ve started using the hacked CommCenter, visit http://www.benm.at/help/help.php from your iPhone and install a new mobileconfig.

via wikee.iphwn.org


Read the rest of this entry »


Tags: , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , ,

No Comments



iPhone OS 3.0 is jailbreakable

News from DevTeam:

iPhone 3.0 OS is jailbreakable on all devices. It’s just those using 3G yellowsn0w that have to show some restraint and wait for PwnageTool to create a custom IPSW that avoids the baseband update. If you are using yellowsn0w, do not update or restore to iPhone 3.0 firmware.  You will lose yellowsn0w and find yourself unable to revert the baseband to get it back.


Read the rest of this entry »


Tags: , , , , , , , , , , , , , , , , , , , , , , , , , , ,

No Comments

iPod Touch 2G: jailbreak

March 11, 2009 by admin



iPod Touch 2G: jailbreak

DevTeam has announced that iPod Touch 2G is finally jailbreaked.

The raw patch to the firmware that transforms the “tethered” jailbreak into an untethered one was released here but it’s not yet packaged up into the PwnageTool or QuickPwn flows. But other threads there are pulling together tutorials and other tips for those of you anxious to try this out now.  For the curious, the hole itself is explained here.


Read the rest of this entry »


Tags: , , , , , , , , , , , , , , , , , , ,

No Comments