Wednesday, October 20, 2010

iPhone Dev-Team Releases PwnageTool 4.1 Jailbreak Utility

The iPhone Dev-Team has released PwnageTool 4.1 which adds supports for the Apple TV 2G and jailbreaks iOS 4.1

Through a combination of the recently released geohot limera1n exploit comex’s recently released pf exploit, and our original pwnage2 exploit, PwnageTool 4.1 works on these devices at firmware 4.1:

* AppleTV 2G
* iPad (firmware 3.2.2)
* iPod touch 4G
* iPod touch 3G
* iPhone4
* iPhone 3GS
* iPhone 3G

PwnageTool allows you to restore to a custom IPSW file. For instance, you can restore to a pre-jailbroken firmware while simultaneously maintaining your current baseband (and thus your ultrasn0w carrier unlock). You can also add whatever packages you want in the “Expert” mode of PwnageTool, if you wish to pre-install Cydia packages. iPhone 3G users get the additional benefit of selecting their own boot and recovery logos, and features like multitasking and battery charge percentage.

PwnageTool’s main advantage to ramdisk-based methods (limera1n, greenpois0n, redsn0w) is for unlockers — those that need to keep their current baseband and preserve their ultrasn0w unlock. But in this new age of both bootrom- and userland-based exploits, its an excellent platform for continuing the jailbreak through all future firmwares. More on this later! In the meantime, please enjoy this free software and please provide any usage feedback in our comment section below.

AppleTV 2G users: Welcome to the JB family! Right now, about all you can do is command-line stuff via ssh. You also have afc2 available, so you can use tools like ifunbox to move files around. These are the *very* early days of AppleTV 2G jailbreaking, so it’ll take some time for JB app developers to come up with methods to use your AppleTV 2G from the remote, versus the command line. PS: Your ssh password is “alpine”…please change it when you can :)

DFU button: That “DFU” button in PwnageTool is more than it looks like. It guides you through the DFU process, but then also runs the appropriate exploit to convince your device and iTunes that all is legit. The DFU button in PwnageTool is not just your average DFU.

You can download PwnageTool 4.1 from here.

Read More

Tuesday, October 12, 2010

New iPhone Baseband Crash May Bring Unlock for iOS 4.1, iOS 4.2

Sherif Hashim has discovered another exploitable iPhone baseband crash which could bring an unlock for iOS 4.1 and iOS 4.2.

@sherif_hashim: since nearly all my received tweets ask about both BB, I can report very early "initial" 1st step success on both sides, calmed down? :)

@mrpauldurden: @sherif_hashim very early first steps means.. you've found a crash that can potentially prove to be an expoitable vulnerability?

@sherif_hashim: @mrpauldurden a bit more sure than this, yeah

Hashim previously found a baseband crash in iOS 4.0 that was instrumental in bringing the unlock for devices on that firmware.

Veeence suggests that the unlock won't be released till iOS 4.2; however, it will still support iOS 4.1.

@veeence: A new exploitable baseband crash has been found. An unlock will very likely be released after iOS 4.2 and will unlock both BB's of 4.1 & 4.2

We'll bring you more information as it becomes available.

Chronic Dev-Team Releases Greenpois0n Jailbreak for iOS 4.1

The Chronic Dev-Team has released Greenpois0n, their utility for jailbreaking the iPhone, iPad, and iPod touch on iOS 4.1.

After much controversy, the tool has been updated to use the bootrom exploit found by Geohot.

Unfortunately, only a Windows version is currently available; however, a mac version and ipt2g support are coming soon.

You can download Greenpois0n from here.

Our tutorials will be posted shortly. Stay tuned!

From the many comments and our own experience, Greenpois0n does not seem to be installing Cydia at the moment. You may want to hold off until this is fixed.

Monday, October 11, 2010

Limera1n Can Jailbreak the Apple TV

Eric Sadun has confirmed that she was able to jailbreak her Apple TV with Limera1n; however, it does not install OpenSSH at this time, so not much can be done with it.

The Limera1n page has updated to indicate that Apple TV jb is 'technically supported'. I can confirm that I put my ATV2 into DFU mode and was able to 'jailbreak' it. But since no AFC services or OpenSSH were installed (let alone APT), there's nothing that really can be done with it at this time.

We'll let you know when the jailbreak is updated to install OpenSSH.

Read More

Sunday, October 10, 2010

greenpois0n Delayed because of a limera1n release

Thanks to the irresponsible antics of geohot, we will have to delay the release of greenpois0n (new ETA = as soon as possible), so that we have time to clean up his little mess and integrate the exploit he uses in limera1n into greenpois0n. This way, we can save SHAtter for future devices that may still be vulnerable to it.

We know that this is not what some people want to hear, but due to geohot needing to feed his ego (as usual) and revealing his limera1n exploit, we do not have any other responsible options.

Activate GameCenter on iPhone3G + GameDetection

You'll Need:

First you need jailbroken iphone 3G with 4.1 firmware (custom firmware if you depend on sim unlock like ultrasn0w)
OpenSSH - installed on your iphone from Cydia
WinSCP or Cyberduck (or every other SSH Browser)
And the Updated GameCenter Pack-v2
Mobile Substrate - installed on your iphone from Cydia (you may already have it if you use Ultrasn0w to unlock your phone)

Settings for Cyberduck & WindSCP

Make sure iTunes is completely closed


* Server: The IP address of your iPhone. Settings –> WiFi –> “Your Network Name”
* Username: root
* Password: alpine
* Protocol: SFTP (SSH File Transfer Protocol)


* Hostname: The IP address of your iPhone. Setting –> WiFi –> “Your Network Name”
* User name: root
* Password: alpine
* Protocol: SCP

Getting Started

1. After connecting to your iPhone, Navigate to /private/var/stash/Applications and copy to this folder the Game folder.
After that, rightclick on the folder and set permissions to 0755 ( 755 ).

2. Navigate to /system/libary/CoreServices/
Now you got the choose between different N82AP.plist 's. The plists are in separate folders which names describe what is activated in the plist.For example:

GC Only - enable only game center
Multitasking + GC - enable multitasking and gamecenter
Wallpaper + GC - enable wallpaper and gamecenter
Wallpaper + GC + Multi - enable wallpaper, gamecenter and multitasking

Choose the one you like from the downloaded folder and replace it with the one on the iPhone.

3. Navigate to System/Libary/LaunchDeamons/ directory then drag & drop into the directory

4. Navigate to usr/libexec/ directory then drag & drop gamed file into the directory and set the permission to 0755 (755)

5. Go to /Library/MobileSubstrate/DynamicLibraries/ and copy PatchGC.plist and PatchGC.dylib files in this folder. Be sure that permissions set to 0644 (644)

6. Reboot your device, and youre done.

limera1n - iOS4-4.1 jailbreak solution is now released

limera1n, 6 months in the making
iPhone 3GS, iPod Touch 3G, iPad, iPhone 4, iPod Touch 4G
4.0-4.1 and beyond+++
limera1n is unpatchable
untethered thanks to jailbreakme star comex
released today to get chronicdev to do the right thing
brought to you by geohot
Mac coming soon
follow the instructions in the box, sadly limera1n isn't one click
that's the price of unpatchability
as usual, donations appreciated but not required
still in beta, pardon my ragged edges
AppleTV is technically supported, but theres no apps yet
zero pictures of my face

known bugs
some people must reboot to see Cydia
some people still don't have windows
beta iOS versions aren't supported
iPod Touch 2G support coming soon
for 3G, use redsn0w
limera1n app is a white box, i know. use it anyway

BETA1 - first release
BETA2 - fixed kernel patching magic, rerun BETA2+ over BETA1
BETA3 - fixed new bootrom 3GS
BETA4 - uninstall fixed, respring fixedish

Download for Windows
md5: d901c4b3a544983f095b0d03eb94e4db

Friday, October 8, 2010

iPhone Dev-Team Releases RedSn0w 0.9.6b1 for Windows

The iPhone Dev-Team has released an update to the Windows version of RedSn0w which can jailbreak the iPhone 3G and iPod touch 2G on iOS 4.1

You can download the Windows version here.

Remember if you need to unlock your device please don't use RedSn0w has it requires an update to your baseband. Wait for the release of PwnageTool for iOS 4.1

Jailbreak for iOS 4.1 Will Be Untethered!

MuscleNerd, a member of the iPhone Dev-Team, has announced that the SHAtter jailbreak itself is tethered but comex has come up with a way to untether it!

Those reading between the lines: Yes SHAtter itself is tethered. @comex came up with a way to untether it on 4.1/3.2.2

SHAtter is yet another breed of exploit. Bootrom-based but requires userland 'assistance' for untethered boots (@comex did this for 4.1)

This is excellent news since a tethered jailbreak would require your iDevice to be connected to the computer for reboot.

The Greenp0ison jailbreak will be released October 10th at 10:10:10 GMT.

GreenPois0n iOS 4.1 jailbreak may launch Sunday at 10:10:10AM

Chronic dev team member, Joshua Hill, has tweeted the goods on GreenPois0n’s launch date. In case you didn’t read the title, the jailbreak for iOS 4.1 is coming this Sunday, Oct. 10, at 10:10:10 AM.

We still don’t really know anything about this jailbreak and hopefully it actually launches on time. Update: For iPad, iPhone 4 and iPod touch 4th gen.

Thursday, October 7, 2010

Mercedes-Benz Demos Prototype iPad Docking Station

Mercedes-Benz demoed a prototype iPad docking station at the Paris Motor Show in an S-Class sedan.

According to BenzInsider, the plan is to launch the integration solution for the iPad onto the market for a variety of Mercedes models after development for series production.

Mounted on the back of the front seats at head restraint height, the holder significantly extends the usability of the iPad: the battery of the tablet PC begins to charge as soon as the device is placed in the holder. Once at the destination, it can be simply removed without having to be switched off, and during the journey all of the entertainment products stored on the iPad can continue to be used. The docking station can be turned and tilted to achieve the best viewing angle, and if the vehicle is fitted with the Mercedes-Benz InCar Hotspot then even an iPad without UMTS functionality can enjoy the benefit of a full connection to the Internet.

Read more

Friday, October 1, 2010

The New Apple TV Has Been Jailbroken!

MuscleNerd has announced that the new Apple TV has been jailbroken using SHAtter.

AppleTV 2G SHAttered and jailbroken (not quite sure how to run apps yet!)