cybermog

Posts Tagged ‘baseband’

How to jailbreak and hacktivate iOS 4.2.1 using Redsn0w 0.9.6b6&SAM

In Apple device on 07/12/2010 at 10:23 AM

As promised from the Dev-Team, Redsn0w 0.9.6b4 for both Mac and Windows had been released quickly for our “zombreaker” 🙂 According to Dev-Team blog, they successfully handled “7700 comments over just the first 12 hours (10 per minute for half a day)” Damn ! Wish my blog was like that 🙂 Another good news is from developer @sbingner, “His tool, “Subscriber Artificial Module (SAM)” tricks your iPhone and iTunes into creating legitimate activation tickets even though you’re unlocked with ultrasn0w.  This means you get the full benefit of push applications, and your battery life increases substantially” Self-explanation, eh ? In short SAM will help your iOS look like this:

And now some WARNING signs before moving on:

  • Unlocker should restrain from upgrading to 4.2.1
  • Again, new iDevices will be jailbreak as semi-tethered (required redsn0w every time your devices reboot)

I recommend you should visit Dev-Team blog, SAM website to fully understand the procedure !

What i need ?

  • Your (fully charged) iDevices with computer and iTunes 10.1
  • RedSn0w 0.9.6b6 for Windows or Mac. Or you can visit Dev-Team blog to find the links 😉
  • Your iOS 4.2.1 respective firmware from Felixbruns or you can update/restore straight from iTunes 10.1

Guide: (Source from Redmond Pie and SAM)

  • Jailbreak using RedSn0w 0.9.6b6 basically the same as 0.6.6b4. Please visit my old post:”Jailbreak iPad, iPod and iPhone 4.2.1 with Redsn0w 0.9.6b4″ to successfully jailbreak your iDevices.
  • I need to remind you that every time your iDevice reboot or stuck at Apple logo (4.2.1 jailbreak), please repeat step 8 to 10 from my guide to be able to run your iPhone/iPad/iPod touch.
  • Once your iPhone boot up, run Cydia and add new repohttp://repo.bingner.com”
  • Wait for the reloading and install “SAM” and “SAMPrefs”
  • Run RedSn0w again, select “Deactivate”, next…
  • Navigate to Settings > SAM and click “De-Activate iPhone”
  • Start iTunes, connect your iPhone, wait for  the activation.

Note: If iTunes says invalid SIM, you will need to manually select the appropriate carrier under one of the methods besides “Automatic” and click on a SIMID.

You are done ! Want to unlock your iPhone 3G and old 3GS module ? Follow this post

Advertisements

Unlock iPhone 3G/3GS (iOS 4.2.1/4.1 and 06.15.00 baseband) with Ultrasn0w 1.2

In Apple device on 29/11/2010 at 3:41 AM

What you need ?

  • Your jailbreak iDevice with 06.15.00 baseband and iOS 4.2.1/4.1. Follow this post to jailbreak yours
  • Internet connection and Cydia

Guide: (Copy from Redmond Pie)

  • Start “Cydia” on your iPhone.

    (If you have already added Ultrasn0w repo, just “refresh” the source, search for “Ultrasn0w 1.2” in Cydia, install and restart the device)

  • Touch on “Manage” tab on the bottom.
  • Now touch on “Sources” as seen in the screenshot below:

 

  • Touch on “Edit” and then on “Add”. You will be prompted to enter a url source as seen in the screenshot below. Type http://repo666.ultrasn0w.comand touch on“Add Source” to add this repo if you haven’t already.

 

Cydia will now automatically update your sources by following a series of automated steps.

  • After installation is completed. Search for “Ultrasn0w 1.2” in Cydia and install this application. This app will automatically unlock your iPhone so that you can use it with any carrier.

 

Step 3: Now simply restart your iPhone and voila! you should now have a fully unlocked iPhone 3GS or 3G, running iOS 4.2.1 !


Jailbreak iPhone 3G/3GS with PwnageTool 4.1.3 for iOS 4.2.1/4.1 with 06.15.00 baseband

In Apple device on 29/11/2010 at 3:22 AM

Warning: make sure to read my earlier post for fully understanding the risks 🙂

Update: Some users reported GPS problem when upgrading their iPhone to iPad baseband 06.15.00. So be caution if you value your GPS function. Please wait for the next update from Dev-Team !

What you need ?

Guide (copy from Redmond Pie)

Step 4: Start PwnageTool 4.1.3 and point it to iOS 4.2.1 / 4.1 firmware file.

Step 5: You will now be prompted to update your baseband to 06.15.00 so that it can be unlocked using Ultrasn0w 1.2.

Step 6: Now point PwnageTool 4.1.3 to iOS 3.2.2 for iPad. PwnageTool will now fetch the exploitable 06.15.00 baseband from 3.2.2 firmware and will replace it the baseband in iOS 4.2.1 / 4.1.

Step 7: Click the next arrow now to allow PwnageTool to create this custom ipsw file for you.

Step 8: Now follow the following steps to enter DFU mode:

  • Hold Power and Home buttons for 10 seconds
  • Now release the Power button but continue holding the Home button for 10 more seconds
  • You device should now be in DFU mode

Step 9: You will now have to restore your iPhone to this custom firmware 4.2.1 / 4.1 file. Start iTunes, click on your device icon from the sidebar in iTunes. Now press and hold left “alt” button (“Shift” button on Windows) on the keyboard and then click on “Restore” (Not “Update” or “Check for Update”) button in the iTunes and then release the “Shift” button.

This will make iTunes prompt you to select the location for your custom firmware 4.2.1 / 4.1 file. Select the required custom .ipsw file and click on “Open”.

Step 10: Now sit back and enjoy as iTunes does the rest for you. This will involve a series of automated steps. Be patient at this stage and don’t do anything silly. Just wait while iTunes installs the new firmware 4.2.1 / 4.1 on your iPhone 3GS or 3G. Your iOS device screen at this point will be showing a progress bar indicating installation progress. After the installation is done, your iPhone will restart automatically and you should now have a fully jailbroken iPhone 3GS or 3G with 06.15.00 baseband.

Step 11: Please go to next post to unlock your iPhone using Ultrsn0w


Unlock for iPhone 3G/3Gs in iOS 4.2.1 (Mac version) have arrived !

In Apple device on 29/11/2010 at 2:48 AM

Thanks to Dev-Team, iPhone 3G and 3Gs can now safely upgrade to 4.2.1 along with unlock 🙂 Here are the whole article i copied from Dev-Team blog. You can find my summary and how to below and in separate new posts followed up.

Today we’re pleased to announce our free carrier unlock for iPhone3G/3GS owners with a baseband later than 05.13.04.  The unlock for that baseband exploited the AT+XAPP command, thanks to a crash initially discovered by @sherif_hashim (@Oranav also found this crash).  So what hole are we exploiting today, since Apple closed that AT+XAPP hole?  Well, we’re exploiting the exact same hole!

It turns out that the very first iPad firmware 3.2.2 has baseband version 06.15.00 still vulnerable to AT+XAPP. The iPad baseband is built for the exact same baseband chip as the iPhone3G/3GS — they’re fully compatible! Some of us have been running 06.15 for weeks now on our iPhones in preparation for this release.

SIMPLIFIED VERSION:

  1. Read and fully understand the warning below.
  2. If you have an old-bootrom 3GS and are already unlockable but want to get to 4.2.1, please wait til we release an “unofficial” bundle for you.  Read no further.
  3. Read update #1 for an updated 3GS bundle.
  4. Download this IPSW
  5. Run PwnageTool to create a custom 4.1 IPSW.  Tell it you want to use the iPad baseband you just downloaded.  Restore to this custom IPSW.
  6. Install ultrasn0w through Cydia
  7. Enjoy!
  8. If you don’t have a Mac, redsn0w will be released within a few hours to handle this.

FULL VERSION:

Since 06.15 is a higher version than 05.14 or 05.15 (where AT+XAPP is gone), anyone stuck at those versions can simply upgrade to 06.15 to unlock again!  Luckily for us, Apple *still* provides the iPad FW 3.2.2 with this vulnerable baseband right from their own servers. (Grab it now, before they take it down!)

We’ve been busy updating both PwnageTool and redsn0w to make the baseband update as seamless as possible.

  1. First up is “PwnageTool 4.1.3 Unlock Edition”.  It has a special dialog box which will ask you if you want to update to the iPad baseband.  You must already have the iPad 3.2.2 IPSW on your computer (see the above link)….so just point PwnageTool at it (or let it find it on its own if you’re in “simple” mode).
  2. Directly after PwnageTool 4.1.3 is available, the official ultrasn0w repo http://repo666.ultrasn0w.com will be updated with ultrasn0w 1.2, which covers iPhone 4 baseband 01.59.00 and iPhone 3G/3GS basebands 04.26.08, 05.11.07, 05.12.01, 05.13.04 and now 06.15.00.
  3. Finally, we’ll release an update to redsn0w today for those without Macs and can’t run PwnageTool.  The new redsn0w will give you the option to update your baseband to 06.15 too.

WARNING — YOU DO THIS AT YOUR OWN RISK!  PLEASE UNDERSTAND THE CONSEQUENCES OF UPDATING TO 06.15.

  1. There is no way to come back down from 06.15, and there’s no hiding the baseband version from Apple.  You’ll be voiding your warranty in a very obvious way.
  2. If some future baseband comes out with a critical fix, you won’t be able to update to it if it remains down in the 05.xx sequence (then again, you wouldn’t update to it if you wanted to keep your unlock anyway).
  3. Starting with FW 4.2.1 if you have 06.15 on your iPhone you won’t ever be able to restore to stock firmware (it will fail).  You’ll need to only restore to custom IPSWs (then again, if you’re unlocker you should already be doing that).

Certainly don’t update to 06.15 if you don’t need to!  Only do this if you need the unlock and you’re stuck on 05.14 or 05.15, and you’re willing to assume the above risks.

This PwnageTool also contains a 4.2.1 bundle for iPhone3G owners…for all else, it’s still only 4.1.  If you have an iPhone3GS with an old bootrom, the new redsn0w will handle 4.2.1 for you (in fact it covers 4.2.1 for all devices, even though some of them are still tethered at 4.2.1 until @comex can work some untethering magic).  iPhone3GS users with old bootroms who want to go to 4.2.1 should not use this PwnageTool! Update to stock 4.2.1 first, then use the upcoming redsn0w to update your baseband.

Speak in English, please !

  • Instead of finding new exploit in iPhone baseband, Dev-Team will replace it with iPad baseband 06.15.00 which served 2 purposes: give your iPhone new baseband but same old exploit (hack-able). That reminds me of this sentence: “Old wine, new vase”
  • Once update to 06.15.00 baseband, you will not be able to restore to stock firmware until Apple release new firmware with higher baseband than 06.15.00 (Ex:06.35.05 or 07.00.05…), which also means that you will void your warranty 😦
  • If you want a simplify/smooth unlocking experience and own iPhone 3GS, wait a little more for updated PwnageTool, or the OSX version of redsn0w. Patience is the key 🙂
  • You will need to download both iPad firmware 3.2.2 and iPhone 4.2.1 to be able to start the unlocking process. Then jailbreak with PwnageTool 4.1.3 and unlock with Ultrasn0w 1.2

Other ways to unlock/jailbreak iPhone 3G firmware 3.1.3 baseband 05.12.01 Bootloader 5.8

In Apple device on 03/05/2010 at 2:51 AM

Update:

  • Bad news folks, some of the guys pointed out this iPhone has bootloader 5.8. That is why this method worked 😦
  • So to make sure you can UNLOCK the device, you need to download “f0recast” software from ih8sn0w.com.
  • Run this software, it will tell if you are able to downgrade your baseband and unlock !
  • If yes, run Cydia and search for “Fuzzyband Downgrader”  install and run. And Then let it Sn0w !

Intro:

Yes you read it right, folks ! I am able to install blackrain into my friend iPhone 3G firmware 3.1.3 baseband 05.12.01 sucessfully. And after having blackra1n appear in my friend home screen, the rest is just deadly simple: install Cydia and Unlock phone are 2 fingers away 🙂 The phone specs before the unlock is: Firmware 3.1.3 (Update through iTunes) baseband: 05.12.01 and after the unlock: Firmware 3.1.2 (7D11) baseband: 05.12.01

How can i do it ?

I guess it was my lucky day 🙂 You will need:

  1. iPhone 3G firmware 3.1.2
  2. Blackra1n from Geohotz website
  3. Patience and time cuz you will need to restore the device 3 or 4 times

Ok enough typing here they are:

  1. Connect your phone to iTunes and do normally downgrade to firmware 3.1.2 (Shift click restore)
  2. Ok and when you nearly finish, iTunes will display some stupid errors: 16xx or 2…. It is normal !
  3. Now your iPhone should stuck in Recovery mode like this picture:
  4. iPhone recover mode
  5. That is a good sign. Now next is very long process: What i basically do is run Blackra1n again and again until you can see GeoHotz picture appear in your screen. And then your iphone will have his wonderful application ! Remember that if the iPhone appears black screen for 10mins after you press Make It Ra1n, just reboot it by holding the 2 buttons and run blackra1n again !
  6. Based on my friend phone, it normally took me about 2 times to get GeoHotz screen.( I did the downgrade process 5,6 times to make sure and they were all sucess 🙂 It seems to me that Apple fix is not good enough to 100% block GeoHotz exploit

I did it. How about yours?

  1. I need someone to confirm that this method work on every iPhone accidentally upgrade to 3.1.3. So please if you are successful please post your result
  2. Also i want to confirm that the solder joint i did to my friend’s phone has nothing to do with this downgrade. (My skill at solder is terrible so i am not willingly unsolder and solder the joint myself 😦