Jailbreaking & unlocking the iPhone 3G, iPhone 3G S & iPhone 4 with PwnageTool

Page 2 of 3





Here you can decide whether or not to install Cydia. After you've made your choice, click the blue arrow in the lower right corner.

iPhone




If you are building iPhone 3G firmware then you'll see this screen next. You can choose to use the suggested images by leaving their boxes checked, or uncheck them and use the stock images. If you check the boxes you can click on Browse... to add your own images in their place. Click the blue arrow in the lower right corner when done.

iPhone



Finally, click the Build button and the blue arrow in the lower right corner.

Name your custom firmware file, and select where to save it. By default the word custom will be added to your file name to help you distinguish it from a stock firmware file.

iPhone

iPhone

iPhone



You will now see this screen while your custom .ipsw is assembled. This stage is five to ten minutes long depending on which firmware you are building.

iPhone



If you should receive a failure message, then start over. Close and restart the PwnageTool program.

iPhone



You will be prompted to enter your system password. There is nothing nefarious in this request, the reason it is asking is because it is creating your firmware and running commands as the root account (or superuser) on your computer. There are various processes where unmounting and mounting of a file systems is necessary. This is performed while using a system UID of 0 which causes the prompt for a system password. The root access is only for the creation of the ipsw file. So it's completely harmless.

iPhone



As soon as it finishes creating your firmware you will be walked through placing your iPhone into DFU mode (at least for my 3G S and 4 this happened). You will not be prompted to do this, so if you miss this, just select yes when it asks if you want to try again. You will have 5 seconds to press and hold both the Power (sleep/wake) and Home buttons. If your sleep/wake or home button is broken you can try a solution posted at this site. MuscleNerd from the iPhone Dev Team seemed to approve of the solution, I can not attest to its effectiveness.

iPhone



When I created custom firmware for my iPhone 3G PwnageTool didn't automatically go into the steps for placing the iPhone into DFU mode. It asked me this question first. If you select no, you will then go through the DFU mode setup steps. If you select yes you will be told to place the iPhone into recovery mode first, then restore. Recovery mode is entered by unplugging the iPhone, shutting it off, holding down the home button and then plugging it back into your Mac.

iPhone



You will then press and continue to hold both the Power (sleep/wake) and Home buttons for 10 seconds.

iPhone



You will be prompted to release the Power (sleep/wake) button.

iPhone



Continue holding the Home button for 10 seconds. The program may appear to freeze before the 10 seconds is up. That's okay.

iPhone



You are now in DFU mode. Click OK. The iPhone's screen will appear black, but it is actually on.

iPhone




Step 4.

Launch iTunes. A pop up from iTunes will appear. Click OK.

iPhone



You should see this in iTunes.

iPhone




Press the Option key on your keyboard, and click the Restore button in iTunes. In the pop up window that opens, navigate to the custom .ipsw file that was saved to your desktop by PwnageTool during Step 3.

iPhone

iPhone

iPhone



Click Restore.

iPhone



iTunes will display various status messages while the restore process proceeds.

iPhone



The iPhone's screen will turn white, and if you chose a custom boot logo, you will see it display on the iPhone at this point. Otherwise you will see the Apple logo. You will also see this status bar graphic on the iPhone as the installation process continues. When it has finished restoring you may see an activation message on the iPhone. I used an active AT&T SIM, that's why I have full bars and 3G displaying.

iPhone       iPhone




Step 5.

iTunes should prompt you to set up the iPhone. You should not restore from a backup. Click Continue.

iPhone



iTunes will confirm you are on 4.1 firmware. Note: I erased by my serial number and phone number for privacy reasons.

iPhone



Cydia (if you selected it) has been placed on the SpringBoard.

iPhone       iPhone



On my 3G S you can see I'm now on 4.1 firmware and I still have 5.13.04 modem firmware. I've erased many numbers from this screen for privacy reasons. Page 3 will cover how to unlock.

iPhone       iPhone







Click here to go to page 3