pwnage tool with bundle for iphone 4 4.3 beta1

[k0mpresd]

here is pwnage tool bundle for 4.3 beta1 iphone 4.
this bundle will also patch systemversion.plist and remove the beta flag. itunes will activate the iphone without the need for the udid to be registered.

http://www.multiupload.com/D6SRVGAF45

second link includes tetherboot binary and extracted patched ibss/kernel to boot phone to a jailbroken state. so the command would be: "./tetheredboot iBss.n90ap.RELEASE.dfu kernelcache.release.n90"

http://www.multiupload.com/IVFI8B8TTA

[nik1004]

how can i do tethered boot?

[ih8sn0w]

pwnage tool with 4.3 iphone 4 bundle. created by me.

note: tool only has bundle for iphone 4 4.3 beta1. no other bundles are included.

note 2: if someone could help me with editing the files inside the dmg that would be awesome. i dont know how. i get a read-only error. i need to edit out the "beta" flag inside the systemversion.plist.

http://mycarbl0ws.com/PwnageTool.zip

edit: i think this may work for my dmg editing, dx4.org : Modifying read-only OS X .dmg files

The bundle you provided only has the Info.plist modified. The Patch files are not modified. Therefore it will not work. This isn't actually a jailbreak and I don't even think it will restore. On a side note, when you actually make PROPER patches for the firmware for PwnageTool, how are you going to boot it? It is going to be tethered.

P.S The SystemVersion.Plist can be easily patched by extracting it, modding it. Doing a bsdiff, and adding it to your PwnageTool Bundle. However, this does promote piracy. I highly recommend not doing it.

~iH8sn0w

[k0mpresd]

i figured a way to copy the systemversion.plist from the bundle directory in to the ipsw.

youre right though, the file wont restore. at first i used patches from 4.1 and 4.2.1. seems to be ibss problem. phone gets stuck on preparing iphone for restore in itunes. and gives error 1600/1601. so i then followed msftguy's how to bundle creator on git. none of the patches in the steps seem to be found and applied. also, do you have a compiled ibss_patchproc.bin? he only included source in his tool downloads.

[ih8sn0w]

i figured a way to copy the systemversion.plist from the bundle directory in to the ipsw.

youre right though, the file wont restore. at first i used patches from 4.1 and 4.2.1. seems to be ibss problem. phone gets stuck on preparing iphone for restore in itunes. and gives error 1600/1601. so i then followed msftguy's how to bundle creator on git. none of the patches in the steps seem to be found and applied. also, do you have a compiled ibss_patchproc.bin? he only included source in his tool downloads.

Well, a lot of msftguy's tools that worked for 4.2.x (and back) are now broken in 4.3. The iBSS patcher and kernel patcher has issues. Apparently his bootcamp partition is messed up.

[k0mpresd]

so really not much one can do then huh?

[ih8sn0w]

so really not much one can do then huh?

I can probably push out an i4 bundle.

[k0mpresd]

pm it to me? id really like to get this beta on my phone but no udid registration. only way i know to do it is with edited plist and the only way to do that is with custom fw bundle.

top 5 matches? #1462366 - Pastie

made new bundle.

[dsjr2006]

I get error 1 when trying to update via iTunes in DFU mode. This is after adding the new bundle, that k0mpresd posted, to Pwnage Tool. Before updating the bundle I was getting error 1601......

Any help would be appreciated

[k0mpresd]

im thinking the below link is the problem. im making the ipsw with pwnage tool right now. see what happens...

https://github.com/msftguy/ios-jb-to...mdisk-manually

well i got the phone to get stuck on "restoring iphone software". fml.

yep. ramdisk was the problem. up and running on 4.3.

added tetheredboot binary.

[Giopand]

im thinking the below link is the problem. im making the ipsw with pwnage tool right now. see what happens...

https://github.com/msftguy/ios-jb-to...mdisk-manually

well i got the phone to get stuck on "restoring iphone software". fml.

yep. ramdisk was the problem. up and running on 4.3.

added tetheredboot binary.

What I need to do to add tetheredboot? I just navigate inside Pwnagetool to Contents/Resources/FirmwareBundles/ and paste the custom bundle you post. Now what I should do with the tetheredboot folder? Where should I put it?

[Simon]

Is this just for bypassing activation or does it install cydia as well?

[k0mpresd]

Is this just for bypassing activation or does it install cydia as well?

installs cydia as well. its a fully jailbroken 4.3 firmware.

[Simon]

Is it as easy as putting the bundle in pwnage tool and making the custom firmware or are there other steps?

[k0mpresd]

there are a few more steps.
take stock ipsw, rename to zip, extract to a folder. you will need the ramdisk dmg out of it.
run the ramdisk script i posted. read the readme! and update the paths in the script. follow the directions on the screen.

edit: oops, ramdisk script link: http://www.iphone-privacy.com/ramdisk_maker.zip

then you can either:
rename your custom ipsw to zip, extract, replace ramdisk with the ramdisk created by the script. then compress and rename to .ipsw. this never works for me btw. itunes says bad firmware.
i do it this way:
run pwnage tool.
while pwnage tool is creating your ipsw navigate to /tmp/ipsw.
you will see the ramdisk dmg in the folder. it is around 34mb after pwnage tool patches it. this is incorrect.
copy your custom ramdisk to /tmp/ipsw and replace the file.

pwnage tool will now create a working jailbroken 4.3 ipsw.

[grypho]

i'm getting "Bad CPU type in executable" ----> Pic <------ while truing to use xpwntool... i'm on a mac mini intel core duo 10.6.6...

[k0mpresd]

you are also getting lots of other errors. your directories are not correct.

[[email protected]]

i have an iphone 4 and ime getting a 1611 unknown error when restoring to custom firmware