- 2 November 2007
- 889
Should you use this if I already used ZiPhone/iPlus/iLiberty+?
If your phone is working at this time then there is NO need to use pwnage.
Pwnage is a safer method for jailbreaking/unlocking/activating but unless you like
messing with new firmware then there is no reason to use it.
However, none of the above apps will unlock/activate/JB 2.0 or any of its betas.
So for the next firmware you will have to use Pwnage.
If you wish to revert to your original bootloader you can using pwnage now!
iPhone or iPod Touch?
Both work with Pwnage - for iPod instructions just use iPod restore files instead of iPhone files I mention below!
PWNAGE does not add 1.1.4 apps or wiggly icons - you can get those through installer.
Is it for Windows and Mac?
Right now it is only available for Mac. Windows version is expected in the next 24 hours.
Is it safer than ZiPhone/iLiberty+
Yes as it changes your file system BEFORE you restore and therefore avoids all the possible problems you can have with other methods.
How do I pwn my phone?
Video of process courtesy of Engadget.com : http://www.viddler.com/explore/engad...eos/4/708.649/
Download the pwnage tool from the pirate bay! Do a search for "PwnageTool.app"
You can download from the iPhone DevTeam site but it does not have the bootloader files you need and so it is easier to download
a complete copy from torrents.
The download without the bootloader files (which you WILL NEED to use pwnage) can be found here:
http://www.iphone-dev.org/
and
http://theiphoneproject.org/
Bootloaders can be found at: http://**********.com/files/104494661/bootloaders.rar
ONLY use iPwner on 1.1.4
If you do not have 1.1.4 then update to 1.1.4 using iTunes as normal then run the pwnage tool.
1. Click the "Browse .ipsw" button.
2. Select the 1.1.4 restore - on mac it is in the library-itunes-iphone software updates. If you do not have it then connect your iPhone and click on restore
and it will start downloading in iTunes. UNPLUG your iPhone as soon as it starts downloading as we DO NOT WANT to restore yet!
3. Once the 1.1.4 file has been seen by the pwnage tool then click on "iPwner"... You have to put your phone in restore mode to do this.
Whilst connected to your computer turn off your phone. Hold down the home button and turn the phone back on - it will go into restore mode. You can tell this from the "connect to iTunes" logo that comes up. If you have problems getting into restore mode - then I suggest downloading Independence and putting it into restore mode using that.
Once in restore mode Pwnage tool will do its magic!
Your phone will restart with a pineapple instead of the apple logo and then boot back into normal mode.
4. Click on "IPSW builder" button. Make sure that Pwnage tool will rebuild the 1.1.4 file for you. Make sure that Enable baseband update, Neuter bootloader, unlock baseband and activate phone are selected. If you wish to keep the pineapple logo then click on use custom images if not the apple logo will come back!
Pwnage will then make a custom firmware file and save it to your iTunes directory.
5. Connect iPhone to Mac. Click on alt+ restore and it should open up the file select box. If it doesn't then try the buttons next to it and restore as I always get confused on Mac what the equivalent of shift is! lol
6. Select the firmware that says "custom restore" in the filename.
7. Your iPhone will now restore and restart.
8. When it restarts it will load BootNeuter automatically. DO NOT TOUCH THE PHONE until it has booted into normal mode!
Your Done - unlocked and activated!
Can I go back to 4.6 from 3.9 that ZiPhone downgraded/ or 3.9FB that iLiberty/iPlus downgraded?
Yes! Just click on bootneuter on your home screen. It will "unload commcenter" DO NOT TOUCH while it is doing that!
The current settings will then be highlighted. Select what you want and click on Flash and WAIT UNTIL IT FINISHES.
ALWAYS LEAVE Baseband unlocked and bootloader "neutered". I changed my 3.9FB back to 4.6 original but STILL neutered without any issues.
DO NOT FLASH UNECCESSARILY! it is still possible to damage your phone if you go back and forth over and over. If you need to go back to your original bootloader for warranty reasons then do so otherwise leave it alone!
IF you load bootneuter and when you exit bootneuter it will take 15-20 seconds for your signal to return. just be patient!
Can I return it to Apple and they won't know?
If you DO NOT SELECT custom images and you return your bootloader to its original then they will have no way of knowing. If you then restore to a normal Apple firmware file (not a custom file) then the jailbreak and unlock will also be gone!
it is possible that if the phone is sent back to Apple direct they may be able to detect the pwning... but the geniuses will see its locked and not jailbreaked and there are no funny logos AND the bootloader is correct and be none the wiser.
It is possible that the DevTeam will make an app. to totally remove the pwning of the security settings but I can't say at this time!
Can I update to 2.0 Beta?
Yes you can using pwnage. First use iPwner WITH 1.1.4. Then once your phone is pwned close pwnage tool and reopen it and select the 2.0 beta.
You only need to pwn your phone once! do not do it again!
Once the 2.0 beta custom firmware is built then you can select it and restore in iTunes.
THERE IS NO iTUNES/AppSTORE in the leaked 2.0 beta. Installer WILL NOT be added to 2.0 beta as it does not work yet.
2.0 is very buggy and it is not worth updating at this time.
Can I restore back to 1.1.4 from the beta?
Yes you can - just restore using your custom unlocked/activated/jailbreaked firmware in iTunes. You will have to use restore mode. You may get an error at the end in which case use Independence to boot your phone normally.
I got the 1603/1604 - 160 something error!
This error is down to itunes not liking your USB ports on your computer. Use a different USB slot or a different computer if possible. That is the easiest fix!
---------------------------------------------------------------------------------------------
Can I customise my firmware to add certain applications etc?
Yes you can but not with the devteam release.
Another team of hackers have made an application that uses a interface which lets you select what apps etc you want in your custom firmware and then rebuilds it.
It works with the pwnage tool but is not out yet - the website is http://chronic-dev.org/pwnage:ipswtool:comingsoon
It should hopefully be out later today!
If your phone is working at this time then there is NO need to use pwnage.
Pwnage is a safer method for jailbreaking/unlocking/activating but unless you like
messing with new firmware then there is no reason to use it.
However, none of the above apps will unlock/activate/JB 2.0 or any of its betas.
So for the next firmware you will have to use Pwnage.
If you wish to revert to your original bootloader you can using pwnage now!
iPhone or iPod Touch?
Both work with Pwnage - for iPod instructions just use iPod restore files instead of iPhone files I mention below!
PWNAGE does not add 1.1.4 apps or wiggly icons - you can get those through installer.
Is it for Windows and Mac?
Right now it is only available for Mac. Windows version is expected in the next 24 hours.
Is it safer than ZiPhone/iLiberty+
Yes as it changes your file system BEFORE you restore and therefore avoids all the possible problems you can have with other methods.
How do I pwn my phone?
Video of process courtesy of Engadget.com : http://www.viddler.com/explore/engad...eos/4/708.649/
Download the pwnage tool from the pirate bay! Do a search for "PwnageTool.app"
You can download from the iPhone DevTeam site but it does not have the bootloader files you need and so it is easier to download
a complete copy from torrents.
The download without the bootloader files (which you WILL NEED to use pwnage) can be found here:
http://www.iphone-dev.org/
and
http://theiphoneproject.org/
Bootloaders can be found at: http://**********.com/files/104494661/bootloaders.rar
ONLY use iPwner on 1.1.4
If you do not have 1.1.4 then update to 1.1.4 using iTunes as normal then run the pwnage tool.
1. Click the "Browse .ipsw" button.
2. Select the 1.1.4 restore - on mac it is in the library-itunes-iphone software updates. If you do not have it then connect your iPhone and click on restore
and it will start downloading in iTunes. UNPLUG your iPhone as soon as it starts downloading as we DO NOT WANT to restore yet!
3. Once the 1.1.4 file has been seen by the pwnage tool then click on "iPwner"... You have to put your phone in restore mode to do this.
Whilst connected to your computer turn off your phone. Hold down the home button and turn the phone back on - it will go into restore mode. You can tell this from the "connect to iTunes" logo that comes up. If you have problems getting into restore mode - then I suggest downloading Independence and putting it into restore mode using that.
Once in restore mode Pwnage tool will do its magic!
Your phone will restart with a pineapple instead of the apple logo and then boot back into normal mode.
4. Click on "IPSW builder" button. Make sure that Pwnage tool will rebuild the 1.1.4 file for you. Make sure that Enable baseband update, Neuter bootloader, unlock baseband and activate phone are selected. If you wish to keep the pineapple logo then click on use custom images if not the apple logo will come back!
Pwnage will then make a custom firmware file and save it to your iTunes directory.
5. Connect iPhone to Mac. Click on alt+ restore and it should open up the file select box. If it doesn't then try the buttons next to it and restore as I always get confused on Mac what the equivalent of shift is! lol
6. Select the firmware that says "custom restore" in the filename.
7. Your iPhone will now restore and restart.
8. When it restarts it will load BootNeuter automatically. DO NOT TOUCH THE PHONE until it has booted into normal mode!
Your Done - unlocked and activated!
Can I go back to 4.6 from 3.9 that ZiPhone downgraded/ or 3.9FB that iLiberty/iPlus downgraded?
Yes! Just click on bootneuter on your home screen. It will "unload commcenter" DO NOT TOUCH while it is doing that!
The current settings will then be highlighted. Select what you want and click on Flash and WAIT UNTIL IT FINISHES.
ALWAYS LEAVE Baseband unlocked and bootloader "neutered". I changed my 3.9FB back to 4.6 original but STILL neutered without any issues.
DO NOT FLASH UNECCESSARILY! it is still possible to damage your phone if you go back and forth over and over. If you need to go back to your original bootloader for warranty reasons then do so otherwise leave it alone!
IF you load bootneuter and when you exit bootneuter it will take 15-20 seconds for your signal to return. just be patient!
Can I return it to Apple and they won't know?
If you DO NOT SELECT custom images and you return your bootloader to its original then they will have no way of knowing. If you then restore to a normal Apple firmware file (not a custom file) then the jailbreak and unlock will also be gone!
it is possible that if the phone is sent back to Apple direct they may be able to detect the pwning... but the geniuses will see its locked and not jailbreaked and there are no funny logos AND the bootloader is correct and be none the wiser.
It is possible that the DevTeam will make an app. to totally remove the pwning of the security settings but I can't say at this time!
Can I update to 2.0 Beta?
Yes you can using pwnage. First use iPwner WITH 1.1.4. Then once your phone is pwned close pwnage tool and reopen it and select the 2.0 beta.
You only need to pwn your phone once! do not do it again!
Once the 2.0 beta custom firmware is built then you can select it and restore in iTunes.
THERE IS NO iTUNES/AppSTORE in the leaked 2.0 beta. Installer WILL NOT be added to 2.0 beta as it does not work yet.
2.0 is very buggy and it is not worth updating at this time.
Can I restore back to 1.1.4 from the beta?
Yes you can - just restore using your custom unlocked/activated/jailbreaked firmware in iTunes. You will have to use restore mode. You may get an error at the end in which case use Independence to boot your phone normally.
I got the 1603/1604 - 160 something error!
This error is down to itunes not liking your USB ports on your computer. Use a different USB slot or a different computer if possible. That is the easiest fix!
---------------------------------------------------------------------------------------------
Can I customise my firmware to add certain applications etc?
Yes you can but not with the devteam release.
Another team of hackers have made an application that uses a interface which lets you select what apps etc you want in your custom firmware and then rebuilds it.
It works with the pwnage tool but is not out yet - the website is http://chronic-dev.org/pwnage:ipswtool:comingsoon
It should hopefully be out later today!