>Jailbreak iOS 4.3.1 on iPhone 4, iPod touch, iPad Using PwnageTool

>

As we know Apple has released iOS 4.3.1 for iPhone 4, iPhone 3GS, iPod touch 3G, iPod touch 4G, iPad 2, and iPad. Now you can jailbreak your iPhone 4, iPod touch, iPad on iOS 4.3.1 using PwnageTool. Simple follow the step by step instructions posted below to jailbreak iPhone 4 on iOS 4.3.1 using PwnageTool 4.2. For this jailbreak process you will need to have PwnageTool 4.2, PwnageTool bundle for iOS 4.3.1, iOS 4.3.1 firmware, tetheredboot utility, Mac OS X, Universal Ramdisk Fixer, and iTunes 10.2.1. You should note that If your iPhone relies on a carrier unlock then you don’t update to iOS 4.3.1 because there is no unlock available for the new baseband on iOS 4.3.1. Now follow the steps carefully.


How to Jailbreak iOS 4.3.1 on iPhone 4, iPod touch, iPad Using PwnageTool

Modifying PwnageTool


STEP 1. First you have to download PwnageTool bundle for your iOS device. Then extract the .zip folder. Now you will be able to find a .bundle file. For this jailbreak process you have to use iPhone 4 bundle iPhone3,1_4.3.1_8G4.bundle. Now you have to move this file to your desktop.

STEP 2. Now you have to download PwnageTool 4.2 and then right click and simply click on “Show Package Contents” as you can see in the below image.

STEP 3. Now simply go to Contents/Resources/FirmwareBundles/ and paste iPhone3,1_4.3.1_8G4.bundle file in this location.

Creating Custom Ramdisk for iOS 4.3.1 Custom Firmware

STEP 4. Now you have to download Universal Ramdisk Fixer (part of the PwnageTool bundle package) and install it. As the Ramdisk in the current version of PwnageTool is broken so this is important.

Building iOS 4.3.1 Custom Firmware

STEP 5. Now you have to download iOS 4.3.1 then move it to your desktop.

STEP 6. Now you have to start PwnageTool in “Expert mode” and then simply choose your iOS device.

 STEP 7. Now you have to browse for iOS 4.3.1 firmware for your iOS device as you can see in the below image.

 STEP 8. Now you have to select “Build” to start creating custom 4.3.1 firmware file.

 STEP 9. Now the custom .ipsw file will be created by PwnageTool for your iPhone which will be jailbroken.

STEP 10. Now you have to put your iOS device into DFU mode by following the steps posted below.

  • Hold down both the Home and Power button simultaneously for 10 seconds.
  • Now release Power button but keep holding the Home button for 10 more seconds.
  • Now your iOS device should be in DFU mode.

Restore iOS 4.3.1 Custom Firmware Using iTunes

STEP 11. Now you have to start iTunes then from the sidebar in iTunes you have to click on the icon of your iPhone, iPod touch or iPad. Now you have to press and hold Left “Shift” button of your Windows or simply press and hold the left “alt” button on Mac then you have to click on “Restore” button in the iTunes then simply release the button.

Now iTunes will ask you to choose the location for your custom firmware 4.3 file. Now you have to choose the required custom .ipsw file that you created above then simply click on “Open”.

STEP 12. Now you have to wait until iTunes installs the new firmware 4.3.1 on your iOS device. At this time you will be able to see a installation progress bar on your iPhone, iPod touch or iPad screen. Once the installation is completed, your iOS device will be jailbroken on iOS 4.3.1.

Booting in Tethered Mode

As we know currently there is no untethered jailbreak for iOS 4.3.1 so you have to boot it into a tethered jailbroken state. For this you will have to use “tetheredboot” by following the steps posted below.

STEP 13. First you have to download tetheredboot.zip utility for Mac OS X then you have to extract the .zip file.

STEP 14. From the original iOS 4.3.1 firmware you will need 2 files such as kernelcache.release.n90, iBSS.n90ap.RELEASE.dfu.

Now you have to change the extension of the original iOS 4.3.1 file from .ipsw to .zip. and then you have to extract this .zip file.

Now you have to copy kernelcache.release.n90 file, and then you have to copy iBSS.n90ap.RELEASE.dfu files files, these are found under /Firmware/dfu/.

Now you have to create a new folder named “tetheredboot” on the desktop and then move all the 2 files and tetheredboot utility to this folder as you can see in the below image.

STEP 15. Simply turn off your iOS device, then start Terminal on OS X and run the following commands:

sudo -s

Now simply enter your administrator password, then:

/Users/Max/Downloads/tetheredboot/tetheredboot
/Users/Max/Downloads/tetheredboot/iBSS.n90ap.RELEASE.dfu
/Users/Max/Downloads/tetheredboot/kernelcache.release.n90

You should note that you will have to of course replace “Max” with the name of the directory on your computer.

Now you will be asked to enter DFU mode. Now simply follow the steps posted below to enter DFU mode:

  • Hold down both the Home and Power button simultaneously for 10 seconds.
  • Now release Power button but keep holding the Home button for 10 more seconds.
  • Now your iOS device should be in DFU mode.

Now you have to wait until your iOS device boot. At this time you will see “Exiting libpois0n” message at Terminal. After some time your iOS device will be booted in a jailbroken tethered mode. In this way you can jailbreak iPhone 4 on iOS 4.3.1. [via]

Advertisements

About nonerox

Btech Student
This entry was posted in Jailbreak, pwnage tool. Bookmark the permalink.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s