How To Jailbreak iPod touch 4G on iOS 4.3.1 Using PwnageTool [Guide]
PwnageTool bundle to jailbreak iOS 4.3.1 on iPod touch 4G has been released. You can use this bundle with PwnageTool 4.2 to create custom jailbroken 4.3 firmware file for your fourth-generation iPod touch.
Just like the jailbreak for iPhone 4 and iPad 1G on iOS 4.3.1, this is a tethered jailbreak, which means you will need to restart your iPod touch in a tethered-jailbroken mode on every reboot using tetheredboot utility.
We have already covered extensive tutorials on how-to jailbreak iPhone and iPad on iOS 4.3.1. The instructions for both iPod touch 4G and 3G are exactly same as the ones for iPad or iPhone 4. You can follow the instructions posted here, with some changes as explained below to jailbreak your iPod touch on iOS 4.3.1.
/Users/name/Downloads/tetheredboot/iBSS.n81ap.RELEASE.dfu
/Users/name/Downloads/tetheredboot/kernelcache.release.n81
Download iOS 4.3.1 for iPod touch 4G
Download iTunes 10.2.1
Download PwnageTool 4.2
Download iOS 4.3.1 PwnageTool Bundle (with Universal Ramdisk Fixer) for iPod touch 4G
Looking to jailbreak iPhone 4 on iOS 4.3.1? Follow the complete step by step instructions posted here to jailbreak iPhone 4 on iOS 4.3.1 using PwnageTool.
Looking to jailbreak iPad 1G on iOS 4.3.1? Follow the complete step by step instructions posted here to jailbreak iPad 1G on iOS 4.3.1 using PwnageTool.
Just like the jailbreak for iPhone 4 and iPad 1G on iOS 4.3.1, this is a tethered jailbreak, which means you will need to restart your iPod touch in a tethered-jailbroken mode on every reboot using tetheredboot utility.
We have already covered extensive tutorials on how-to jailbreak iPhone and iPad on iOS 4.3.1. The instructions for both iPod touch 4G and 3G are exactly same as the ones for iPad or iPhone 4. You can follow the instructions posted here, with some changes as explained below to jailbreak your iPod touch on iOS 4.3.1.
- On Step 1, download iPod4,1_4.3.1_8G4.bundle file and move it to the location as mentioned in the instructions.
- On Step 6, select “iPod touch 3G, 4G” option when PwnageTool prompts to select your device.
- On Step 7, browse for iOS 4.3.1 for iPod touch 4G.. duh
- On Step 14, use kernelcache.release.n81 and iBSS.n81ap.RELEASE.dfu instead ofkernelcache.release.n90 and iBSS.n90ap.RELEASE.dfu
- On Step 15, use the following commands in Terminal:
/Users/name/Downloads/tetheredboot/iBSS.n81ap.RELEASE.dfu
/Users/name/Downloads/tetheredboot/kernelcache.release.n81
Download iOS 4.3.1 for iPod touch 4G
Download iTunes 10.2.1
Download PwnageTool 4.2
Download iOS 4.3.1 PwnageTool Bundle (with Universal Ramdisk Fixer) for iPod touch 4G
Looking to jailbreak iPhone 4 on iOS 4.3.1? Follow the complete step by step instructions posted here to jailbreak iPhone 4 on iOS 4.3.1 using PwnageTool.
Looking to jailbreak iPad 1G on iOS 4.3.1? Follow the complete step by step instructions posted here to jailbreak iPad 1G on iOS 4.3.1 using PwnageTool.
Jailbreak iPod touch 4G / 3G on iOS 4.3 GM Using PwnageTool
[How To Guide]
Download iOS 4.3 GM for iPod touch 4G / 3G
Download iTunes 10.2
Download PwnageTool 4.2
Download iOS 4.3 PwnageTool Bundle for iPod touch 4G
Download iOS 4.3 PwnageTool Bundle for iPod touch 3G
Step 1: Download PwnageTool bundle for your version of iOS device. Extract the .zip folder, in there you will find a .bundle file, for this guide, we are using iPhone 4 bundleiPhone3,1_4.3_8F190.bundle. Move this file to your desktop.
Step 2: Download PwnageTool 4.2 and copy it to /Applications directory. Right click, and then click on “Show Package Contents” as shown in the screenshot below.Step 3: Navigate to Contents/Resources/FirmwareBundles/ and pasteiPhone3,1_4.3_8F190.bundle file in this location.Creating Custom Ramdisk for iOS 4.3 Custom Firmware
Step 3: Download iPod4,1_4.3_8F190.bundle file and move it to the location as mentioned in the instructions
Step 4: Download Universal Ramdisk Maker and simply install it as shown in the screenshots below. This is important because Ramdisk in the current version of PwnageTool is broken. This Universal Ramdisk Maker basically patches it correctly for iOS 4.3 firmware.Building iOS 4.3 Custom Firmware
Step 5:Select “iPod touch 3G, 4G” option when PwnageTool prompts to select your device.
Step 6: Browse for iOS 4.3 GM for iPod touch 4G or 3G.. duh.
Step 7: Browse for iOS 4.3 GM firmware for your device as shown in the screenshot below:
Step 8: Now select “Build” to start creating custom 4.3 firmware file:
Step 9: PwnageTool will now create the custom .ipsw file for your iPhone which will be jailbroken.
Step 10: Now follow the following steps to enter DFU mode using PwnageTool:
Step 11: Start iTunes, click on your iOS device icon from the sidebar in iTunes. Now press and hold left “alt” (option) button on Mac, or Left “Shift” button if you are on Windows on the keyboard and then click on “Restore” (Not “Update” or “Check for Update”) button in the iTunes and then release this button.Step 12: Now sit back and enjoy as iTunes does the rest for you. This will involve a series of automated steps. Be patient at this stage and don’t do anything silly. Just wait while iTunes installs the new firmware 4.3 on your iOS device. Your iOS device screen at this point will be showing a progress bar indicating installation progress. After the installation is done, your iOS device will be jailbroken on iOS 4.3.
Booting in Tethered Mode
Last but not the least, since there is no untethered jailbreak for iOS 4.3 yet, we will have to boot it into a tethered jailbroken state. To do this, we will make use of a utility named “tetheredboot” as shown in the steps below. Step 13: Use kernelcache.release.n81 and iBSS.n81ap.RELEASE.dfu instead ofkernelcache.release.k48 and iBSS.k48ap.RELEASE.dfuStep 14: First, we will need two files from the custom iOS 4.3 GM firmware namely:kernelcache.release.n90 and iBSS.n90ap.RELEASE.dfu. To do this, make a copy of your custom iOS 4.3 GM file that you created above, change the extension of this file from .ipsw to .zip, and then extract this .zip file.
Now copy kernelcache.release.n90 file, and then copy iBSS.n90ap.RELEASE.dfu files which are found under /Firmware/dfu/.
Move all these files, and tetheredboot utility to a new folder named “tetheredboot” on the desktop.Step 15: Turn off your iOS device, and start Terminal on OS X and run the following commands:
sudo -s
enter your administrator passwordYou should now see some code running in the Terminal window, at some point, it will ask you to enter DFU mode. Now follow the following steps to enter DFU mode:
SIMPLIFIED VERSION:
Since 06.15 is a higher version than 05.14 or 05.15 (where AT+XAPP is gone), anyone stuck at those versions can simply upgrade to 06.15 to unlock again! Luckily for us, Apple *still* provides the iPad FW 3.2.2 with this vulnerable baseband right from their own servers. (Grab it now, before they take it down!)
We’ve been busy updating both PwnageTool and redsn0w to make the baseband update as seamless as possible.
This PwnageTool also contains a 4.2.1 bundle for iPhone3G owners…for all else, it’s still only 4.1. If you have an iPhone3GS with an old bootrom, the new redsn0w will handle 4.2.1 for you (in fact it covers 4.2.1 for all devices, even though some of them are still tethered at 4.2.1 until @comex can work some untethering magic). iPhone3GS users with old bootroms who want to go to 4.2.1 should not use this PwnageTool! Update to stock 4.2.1 first, then use the upcoming redsn0w to update your baseband.
Please feel free to use our comments section for questions. We have some very knowledgeable and helpful moderators: angiepangie, Confucious, dhlizard, and Frank55!
Official Bittorrent Releases
PwnageTool 4.1.3 –PwnageTool_4.1.3_Unlock_Edition.dmg.5994102.TPB.torrent
SHA1 Sum = adda6d882dce1b5117d01586037de289407e038a.
Download iTunes 10.2
Download PwnageTool 4.2
Download iOS 4.3 PwnageTool Bundle for iPod touch 4G
Download iOS 4.3 PwnageTool Bundle for iPod touch 3G
Step 1: Download PwnageTool bundle for your version of iOS device. Extract the .zip folder, in there you will find a .bundle file, for this guide, we are using iPhone 4 bundleiPhone3,1_4.3_8F190.bundle. Move this file to your desktop.
Step 2: Download PwnageTool 4.2 and copy it to /Applications directory. Right click, and then click on “Show Package Contents” as shown in the screenshot below.Step 3: Navigate to Contents/Resources/FirmwareBundles/ and pasteiPhone3,1_4.3_8F190.bundle file in this location.Creating Custom Ramdisk for iOS 4.3 Custom Firmware
Step 3: Download iPod4,1_4.3_8F190.bundle file and move it to the location as mentioned in the instructions
Step 4: Download Universal Ramdisk Maker and simply install it as shown in the screenshots below. This is important because Ramdisk in the current version of PwnageTool is broken. This Universal Ramdisk Maker basically patches it correctly for iOS 4.3 firmware.Building iOS 4.3 Custom Firmware
Step 5:Select “iPod touch 3G, 4G” option when PwnageTool prompts to select your device.
Step 6: Browse for iOS 4.3 GM for iPod touch 4G or 3G.. duh.
Step 7: Browse for iOS 4.3 GM firmware for your device as shown in the screenshot below:
Step 8: Now select “Build” to start creating custom 4.3 firmware file:
Step 9: PwnageTool will now create the custom .ipsw file for your iPhone which will be jailbroken.
Step 10: Now follow the following steps to enter DFU mode using PwnageTool:
- Hold Power and Home buttons for 10 seconds.
- Now release the Power button but continue holding the Home button for 10 more seconds
- You device should now be in DFU mode.
Step 11: Start iTunes, click on your iOS device icon from the sidebar in iTunes. Now press and hold left “alt” (option) button on Mac, or Left “Shift” button if you are on Windows on the keyboard and then click on “Restore” (Not “Update” or “Check for Update”) button in the iTunes and then release this button.Step 12: Now sit back and enjoy as iTunes does the rest for you. This will involve a series of automated steps. Be patient at this stage and don’t do anything silly. Just wait while iTunes installs the new firmware 4.3 on your iOS device. Your iOS device screen at this point will be showing a progress bar indicating installation progress. After the installation is done, your iOS device will be jailbroken on iOS 4.3.
Booting in Tethered Mode
Last but not the least, since there is no untethered jailbreak for iOS 4.3 yet, we will have to boot it into a tethered jailbroken state. To do this, we will make use of a utility named “tetheredboot” as shown in the steps below. Step 13: Use kernelcache.release.n81 and iBSS.n81ap.RELEASE.dfu instead ofkernelcache.release.k48 and iBSS.k48ap.RELEASE.dfuStep 14: First, we will need two files from the custom iOS 4.3 GM firmware namely:kernelcache.release.n90 and iBSS.n90ap.RELEASE.dfu. To do this, make a copy of your custom iOS 4.3 GM file that you created above, change the extension of this file from .ipsw to .zip, and then extract this .zip file.
Now copy kernelcache.release.n90 file, and then copy iBSS.n90ap.RELEASE.dfu files which are found under /Firmware/dfu/.
Move all these files, and tetheredboot utility to a new folder named “tetheredboot” on the desktop.Step 15: Turn off your iOS device, and start Terminal on OS X and run the following commands:
sudo -s
enter your administrator passwordYou should now see some code running in the Terminal window, at some point, it will ask you to enter DFU mode. Now follow the following steps to enter DFU mode:
- Hold Power and Home buttons for 10 seconds
- Now release the Power button but continue holding the Home button for 10 more seconds
- You device should now be in DFU mode
SIMPLIFIED VERSION:
- Read and fully understand the warning below.
- Download this IPSW
- Run PwnageTool to create a custom 4.1 IPSW. Tell it you want to use the iPad baseband you just downloaded. Restore to this custom IPSW.
- Install ultrasn0w through Cydia
- Enjoy!
- If you don’t have a Mac, redsn0w will be released within a few hours to handle this.
Since 06.15 is a higher version than 05.14 or 05.15 (where AT+XAPP is gone), anyone stuck at those versions can simply upgrade to 06.15 to unlock again! Luckily for us, Apple *still* provides the iPad FW 3.2.2 with this vulnerable baseband right from their own servers. (Grab it now, before they take it down!)
We’ve been busy updating both PwnageTool and redsn0w to make the baseband update as seamless as possible.
- First up is “PwnageTool 4.1.3 Unlock Edition”. It has a special dialog box which will ask you if you want to update to the iPad baseband. You must already have the iPad 3.2.2 IPSW on your computer (see the above link)….so just point PwnageTool at it (or let it find it on its own if you’re in “simple” mode).
- Directly after PwnageTool 4.1.3 is available, the official ultrasn0w repo http://repo666.ultrasn0w.com will be updated with ultrasn0w 1.2, which covers iPhone 4 baseband 01.59.00 and iPhone 3G/3GS basebands 04.26.08, 05.11.07, 05.12.01, 05.13.04 and now 06.15.00.
- Finally, we’ll release an update to redsn0w today for those without Macs and can’t run PwnageTool. The new redsn0w will give you the option to update your baseband to 06.15 too.
- There is no way to come back down from 06.15, and there’s no hiding the baseband version from Apple. You’ll be voiding your warranty in a very obvious way.
- If some future baseband comes out with a critical fix, you won’t be able to update to it if it remains down in the 05.xx sequence (then again, you wouldn’t update to it if you wanted to keep your unlock anyway).
- Starting with FW 4.2.1 if you have 06.15 on your iPhone you won’t ever be able to restore to stock firmware (it will fail). You’ll need to only restore to custom IPSWs (then again, if you’re unlocker you should already be doing that).
This PwnageTool also contains a 4.2.1 bundle for iPhone3G owners…for all else, it’s still only 4.1. If you have an iPhone3GS with an old bootrom, the new redsn0w will handle 4.2.1 for you (in fact it covers 4.2.1 for all devices, even though some of them are still tethered at 4.2.1 until @comex can work some untethering magic). iPhone3GS users with old bootroms who want to go to 4.2.1 should not use this PwnageTool! Update to stock 4.2.1 first, then use the upcoming redsn0w to update your baseband.
Please feel free to use our comments section for questions. We have some very knowledgeable and helpful moderators: angiepangie, Confucious, dhlizard, and Frank55!
Official Bittorrent Releases
PwnageTool 4.1.3 –PwnageTool_4.1.3_Unlock_Edition.dmg.5994102.TPB.torrent
SHA1 Sum = adda6d882dce1b5117d01586037de289407e038a.
