Monday, March 7, 2011

With PwnageTool Jailbreak iOS 4.3 GM on iPad, iPhone 4, 3GS, iPod touch!

iOS hacker and sn0wbreeze developer Steven (aka iH8sn0w), has released PwnageTool Bundles for jailbreaking iOS 4.3 GM running on iPhone 4, iPhone 3GS, iPad, iPod touch 4G and 3G. If you’ve got your hand up and aren’t afraid of heights, dive into follow extensive guide that provides step-by-step instructions on how to achieve jailbreak on iOS 4.3 GM (Gold Master) running on your iOS devices. The method does not require Universal Ramdisk fixer tool.

Steps to Jailbreak iOS 4.3 GM iPhone 4 / 3GS, iPad, iPod touch 4G / 3G with PwnageTool

  • Download PwnageTool 4.2 for Mac
  • iOS 4.3 GM original firmware of your device saved on your computer 
  • iTunes 10.2 installed on your Mac 

Modifying PwnageTool

Step 1: Select and download PwnageTool bundles specific to for your iOS device. Extract the .zip folder, and copy the budle files to your desktop
  • iPhone3,1_4.3_8F190.bundle (for iPhone 4)
  • iPhone2,1_4.3_8F190_NEWbootrom.bundle (for iPhone 3GS New Bootrom)
  • iPhone2,1_4.3_8F190_oldbootrom.bundle (for iPhone 3GS Old Bootrom)
  • iPod4,1_4.3_8F190.bundle (for iPod touch 4G)
  • iPod3,1_4.3_8F190.bundle (for iPod touch 3G)
  • iPad1,1_4.3_8F190.bundle (for iPad)
Credits: iH8sn0w and jcf_dev for PwnageTool bundles
Step 2: Download PwnageTool 4.2 and copy it to your desktop. Right click, and then click on “Show Package Contents”
Step 3: Copy the .bundle files to
Step 4: Copy info.plist inside   (IMPORTANT IF YOU WANT CYDIA IN YOUR IPSW)

Building a Custom Firmware

Step 1: Launch latest version of iTunes 10.2 and sync your iOS device4 with your Mac for backup.
Step 2: Double click to start PwnageTool. Click Ok, if prompted with a warning. Click to select Expert Mode from the top menu bar and then select your device. Here we have selected iPhone 4. Click Blue arrow button at the bottom right to continue.
Step 3: Click the Browse for IPSW… button and then select your firmware from the Pwnage folder (refer Step 2).
Step 4: You will be prompted to select one of the option from following window. Select General then click the blue arrow button to continue.
Step 5: You are now ready to begin the pwnage process! Click the Build button to select it then click the Blue arrow button to begin.
Step 6: PwnageTool will now create the custom .ipsw file for your iPhone. You will be prompted to save custom .ipsw firmware file. Save it to the desktop. It might take 10-15 minutes for building custom firmware.
Step 7: Now its time to restore your iPhone 4 or any of your iOS device you selected above to this custom firmware iOS 4.3 GM.
  • Click on your phone icon from the sidebar in iTunes.
  • Press and hold left “alt” button (“Shift” button on Windows) on the keyboard and then click on “Restore” (Not “Update” or “Check for Update”) button in the iTunes
  • Now, release the “Shift” button.
Step 8: iTunes will now prompt you to select the location for your custom firmware 4.3 GM, once your iPhone 4 is successfully in DFU mode.
Step 9: Once In iTunes, hold the Alt/Option key and click Restore.
Step 10: Now select the custom IPSW that was created and click the Choose button. Wait for a while till iTunes installs the new firmware 4.3 GM on your iPhone. After the installation is done, iPhone 4 or any of your iOS device you selected above will restart automatically. You have now successfully jailbroken iOS 4.3 GM.

Booting your iOS device in Tethered Mode

As there is no untethered jailbreak for iOS 4.3, we will have to boot it into a tethered mode. Just follow the steps below.
Step 1: Download utility for Mac and extract the .zip file.
Step 2: Create folder tetheredboot on your desktop
Step 3: Create a copy of iOS 4.3 GM, change its file extension from .ipsw to .zip, and then extract this .zip file.
Step 4: Navigate to /Firmware/dfu/ and then copy files kernelcache.release.n90 andiBSS.n90ap.RELEASE.dfu and move them to folder “tetheredboot” (refer step 1).
Step 5: Copy Tetherboot utility to tetheredboot folder
Step 6: Turn off your iOS device, and start Terminal on and execute the following commands:

Sudo -s
enter your administrator password, then:

Make sure you replace “JeffM” with the name of the directory on your Mac. You will then be prompted to enter DFU mode. Now follow the following steps to enter DFU mode:
  • Hold Power and Home buttons for 10 seconds
  • Release the Power button but continue holding the Home button for 10 more seconds
  • You device should now be in DFU mode
Wait for your iOS device to boot. Your jailbroken iPhone, iPad or iPod touch will then be booted in a tethered mode.