The iPhone Wiki is no longer updated. Visit this article on The Apple Wiki for current information. |
Difference between revisions of "PwnageTool"
m (→Problems: Please don't just copy/paste stuff without sprucing it up. :)) |
m |
||
(50 intermediate revisions by 17 users not shown) | |||
Line 1: | Line 1: | ||
− | '''PwnageTool''' is |
+ | '''PwnageTool''' is an [[iOS]] [[jailbreak]] tool for Mac OS X that jailbreaks by creating a custom [[IPSW File Format|IPSW]]. You are allowed to change boot logos and add pre-installed packages to the IPSW. After an IPSW is created you can use it for restore using [[iTunes]]. |
+ | |||
+ | == Credit == |
||
+ | [[iPhone Dev Team]] |
||
==Exploits Used== |
==Exploits Used== |
||
− | ===Version |
+ | ===Version 1.0=== |
+ | * [[Pwnage]] |
||
− | * Bootrom exploit (used by [[limera1n]] and [[greenpois0n]]) |
||
+ | * [[Ramdisk Hack]] |
||
===Version 2.0=== |
===Version 2.0=== |
||
Line 9: | Line 13: | ||
* [[Pwnage]] |
* [[Pwnage]] |
||
− | ===Version |
+ | ===Version 4.0=== |
+ | * Bootrom exploit (used by [[limera1n]] and [[Greenpois0n (jailbreak)|greenpois0n]]) |
||
− | * [[Pwnage]] |
||
− | * [[Ramdisk Hack]] |
||
== Models Supported == |
== Models Supported == |
||
Line 19: | Line 22: | ||
! Since |
! Since |
||
|- |
|- |
||
− | | [[ |
+ | | [[N82AP|iPhone 3G]] |
− | | |
+ | | {{date|2008|07|19}} |
|- |
|- |
||
− | | [[ |
+ | | [[N72AP|iPod touch (2nd generation)]] |
+ | | {{date|2009|10|02}} |
||
− | | April 3, 2008 |
||
|- |
|- |
||
− | | [[ |
+ | | [[N90AP|iPhone 4 (iPhone3,1)]] |
+ | | {{date|2010|10|20}} |
||
− | | Jul 19, 2008 |
||
|- |
|- |
||
− | | [[ |
+ | | [[N18AP|iPod touch (3rd generation)]] |
+ | | {{date|2010|10|20}} |
||
− | | Oct 2, 2009 |
||
|- |
|- |
||
+ | | [[N81AP|iPod touch (4th generation)]] |
||
− | | [[N88ap|iPhone 3GS]] |
||
+ | | {{date|2010|10|20}} |
||
− | | Oct 2, 2009 |
||
+ | |- |
||
+ | | [[K48AP|iPad]] |
||
+ | | {{date|2010|10|20}} |
||
+ | |- |
||
+ | | [[K66AP|Apple TV (2nd generation)]] |
||
+ | | {{date|2010|10|20}} |
||
|} |
|} |
||
− | + | Please note that the [[iPad 2]] and the [[iPhone 4S]] are not supported, as there is no publicly available bootrom exploit (like [[Pwnage]], [[Pwnage 2.0]], [[limera1n]]) for the A5-Processor. |
|
==Versions== |
==Versions== |
||
− | PwnageTool was released |
+ | PwnageTool was released {{date|2008|04|03}} but largely unused until version 2.0 was released {{date|2008|07|19}}. |
The following versions that are shown here are not beta, alpha, or in development. |
The following versions that are shown here are not beta, alpha, or in development. |
||
===1.x: First release of PwnageTool=== |
===1.x: First release of PwnageTool=== |
||
− | {| class="wikitable |
+ | {| class="wikitable" |
+ | ! Version |
||
− | ! style="background-color:#E9E9E9;" align="center" |Version |
||
+ | ! Release Date |
||
− | ! style="background-color:#E9E9E9;" align="center" |Release date |
||
+ | ! Features |
||
− | ! style="background-color:#E9E9E9;" align="center" |Features |
||
|- |
|- |
||
+ | !1.0 |
||
− | ! rowspan=1 style="white-space: nowrap;nowrap;" | |
||
+ | | {{date|2008|04|03}} |
||
− | ==== 1.1.4 ==== |
||
− | | style="white-space: nowrap;" | April 3, 2008 |
||
− | | | |
||
− | * Initial release |
||
− | * Jailbreaks 1.1.4 firmware |
||
− | * Supports iPod touch 1G and iPhone 2G. |
||
− | * Add [[BootNeuter]] in the IPSW to unlock iPhone 2G. |
||
| |
| |
||
+ | *Initial release |
||
+ | * Supports iPod touch and iPhone. |
||
+ | * Includes 2 modes: iPwner and custom .ipsw |
||
+ | * Uses [[Ramdisk Hack]]+[[Pwnage]] in iPwner then creates the firmware. |
||
+ | |- |
||
+ | ! 1.1 |
||
+ | | {{date|2008|04|17}} |
||
+ | | |
||
+ | * Jailbreaks 1.1.4 firmware |
||
+ | * Supports iPod touch and iPhone. |
||
+ | * Custom boot logos can now be added |
||
+ | * Added Bootneuter integration |
||
+ | * Still uses iPwner and custom .ipsw |
||
|- |
|- |
||
− | ! rowspan=1 style="white-space: nowrap;nowrap;" | |
||
|} |
|} |
||
− | === |
+ | ===2.x: Second major release of Pwnagetool=== |
− | {| class="wikitable |
+ | {| class="wikitable" |
+ | ! Version |
||
− | ! style="background-color:#E9E9E9;" align="center" |Version |
||
+ | ! Features |
||
− | ! style="background-color:#E9E9E9;" align="center" |Features |
||
− | ! |
+ | ! Release date |
|- |
|- |
||
+ | ! 2.0 |
||
− | ! rowspan=1 style="white-space: nowrap;nowrap;" | |
||
+ | | {{date|2008|07|19}} |
||
− | ==== 2.0 ==== |
||
+ | | |
||
− | | style="white-space: nowrap;" | Jul 19, 2008 |
||
− | | | |
||
* Added iPhone 3G support [http://www.engadget.com/2008/07/19/iphone-dev-team-unleashes-pwnage-tool-2-0/] |
* Added iPhone 3G support [http://www.engadget.com/2008/07/19/iphone-dev-team-unleashes-pwnage-tool-2-0/] |
||
* Jailbreaks 2.0 Firmware |
* Jailbreaks 2.0 Firmware |
||
Line 75: | Line 89: | ||
* Adds Cydia by default |
* Adds Cydia by default |
||
|- |
|- |
||
+ | ! 2.0.1 |
||
− | ! rowspan=1 style="white-space: nowrap;nowrap;" | |
||
+ | | {{date|2008|08|04}} |
||
− | ==== 2.0.1 ==== |
||
+ | | |
||
− | | style="white-space: nowrap;" | Aug 4, 2008 |
||
− | | | |
||
* Jailbreaks 2.0.1 firmware |
* Jailbreaks 2.0.1 firmware |
||
* Works for 2.0 and 2.0.1. |
* Works for 2.0 and 2.0.1. |
||
|- |
|- |
||
+ | ! 2.0.2 |
||
− | ! rowspan=1 style="white-space: nowrap;nowrap;" | |
||
+ | | {{date|2008|08|21}} |
||
− | ==== 2.0.2 ==== |
||
+ | | |
||
− | | style="white-space: nowrap;" | Aug 21, 2008 |
||
− | | | |
||
* Jailbreaks 2.0.2 firmware [http://www.iphonehacks.com/2008/08/pwnage-tool-202.html] |
* Jailbreaks 2.0.2 firmware [http://www.iphonehacks.com/2008/08/pwnage-tool-202.html] |
||
* Works for 2.0, 2.0.1, and 2.0.2. |
* Works for 2.0, 2.0.1, and 2.0.2. |
||
* Bug fixes - for when it doesn't go to the next page when you click on something. |
* Bug fixes - for when it doesn't go to the next page when you click on something. |
||
|- |
|- |
||
+ | ! 2.0.3 |
||
− | ! rowspan=1 style="white-space: nowrap;nowrap;" | |
||
+ | | {{date|2008|08|25}} |
||
− | ==== 2.0.3 ==== |
||
+ | | |
||
− | | style="white-space: nowrap;" | Aug 25, 2008 |
||
− | | | |
||
* Jailbreaks 2.0.2 firmware |
* Jailbreaks 2.0.2 firmware |
||
* Works for 2.0, 2.0.1, and 2.0.2. |
* Works for 2.0, 2.0.1, and 2.0.2. |
||
|- |
|- |
||
+ | ! 2.1 |
||
− | ! rowspan=1 style="white-space: nowrap;nowrap;" | |
||
+ | | {{date|2008|09|13}} |
||
− | ==== 2.1 ==== |
||
+ | | |
||
− | | style="white-space: nowrap;" | Sep 13, 2008 |
||
− | | | |
||
* Jailbreaks 2.1 firmware |
* Jailbreaks 2.1 firmware |
||
* Removed backwards compatibility |
* Removed backwards compatibility |
||
* Download packages from a valid Cydia source, and add them onto your custom IPSW. |
* Download packages from a valid Cydia source, and add them onto your custom IPSW. |
||
|- |
|- |
||
+ | ! 2.2 |
||
− | ! rowspan=1 style="white-space: nowrap;nowrap;" | |
||
+ | | {{date|2008|11|21}} |
||
− | ==== 2.2 ==== |
||
+ | | |
||
− | | style="white-space: nowrap;" | Nov 21, 2008 |
||
− | | | |
||
* Jailbreaks 2.2 firmware |
* Jailbreaks 2.2 firmware |
||
|- |
|- |
||
+ | ! 2.2.5 |
||
− | ! rowspan=1 style="white-space: nowrap;nowrap;" | |
||
+ | | {{date|2009|01|30}} |
||
− | ==== 2.2.5 ==== |
||
+ | | |
||
− | | style="white-space: nowrap;" | Jan 30, 2009 |
||
− | | | |
||
* Jailbreaks 2.2.1 |
* Jailbreaks 2.2.1 |
||
* Not updated by [[iPhone Dev Team]] but made official. |
* Not updated by [[iPhone Dev Team]] but made official. |
||
|- |
|- |
||
− | ! rowspan=1 style="white-space: nowrap;nowrap;" | |
||
|} |
|} |
||
− | === |
+ | ===3.x: Third Major Release of PwnageTool=== |
− | {| class="wikitable |
+ | {| class="wikitable" |
+ | ! Version |
||
− | ! style="background-color:#E9E9E9;" align="center" |Version |
||
+ | ! Features |
||
− | ! style="background-color:#E9E9E9;" align="center" |Features |
||
− | ! |
+ | ! Release date |
|- |
|- |
||
+ | ! 3.0 |
||
− | ! rowspan=1 style="white-space: nowrap;nowrap;" | |
||
+ | | {{date|2009|06|19}} |
||
− | ==== 3.0 ==== |
||
+ | | |
||
− | | style="white-space: nowrap;" | Jun 19, 2009 |
||
− | | | |
||
* Jailbreaks 3.0 firmware |
* Jailbreaks 3.0 firmware |
||
* DFU mode instructions included |
* DFU mode instructions included |
||
− | | |
||
|- |
|- |
||
+ | ! 3.1 |
||
− | ! rowspan=1 style="white-space: nowrap;nowrap;" | |
||
+ | | {{date|2009|09|15}} |
||
− | ==== 3.1 ==== |
||
− | | style="white-space: nowrap;" | Sep 15, 2009 |
||
| | |
| | |
||
− | * Jailbreaks 3.1 firmware for iPhone |
+ | * Jailbreaks 3.1 firmware for iPhone and iPhone 3G |
− | * Jailbreaks 3.1.1 firmware for iPod touch |
+ | * Jailbreaks 3.1.1 firmware for iPod touch |
+ | |- |
||
+ | ! 3.1.3 |
||
+ | | {{date|2009|10|02}} |
||
| |
| |
||
+ | * Support for iPhone 3GS with [[Bootrom 359.3]] bootrom and iPod touch (2nd generation) with [[Bootrom 240.4]] bootrom (these devices need to be pwned from 3.0/3.0.1) |
||
|- |
|- |
||
+ | ! 3.1.4 |
||
− | ! rowspan=1 style="white-space: nowrap;nowrap;" | |
||
+ | | {{date|2009|10|13}} |
||
− | ==== 3.1.3 ==== |
||
− | | style="white-space: nowrap;" | Oct 2, 2009 |
||
| | |
| | |
||
− | * |
+ | * Jailbreaks 3.1.2 firmware for iPhone, iPhone 3G, 3GS with [[Bootrom 359.3]] bootrom, iPod touch, iPod touch (2nd generation) with [[Bootrom 240.4]] bootrom |
+ | * iPod touch (3rd generation) not supported. |
||
− | | |
||
|- |
|- |
||
+ | ! 3.1.5 |
||
− | ! rowspan=1 style="white-space: nowrap;nowrap;" | |
||
+ | | {{date|2010|02|07}} |
||
− | ==== 3.1.4 ==== |
||
− | | style="white-space: nowrap;" | Oct 13, 2009 |
||
− | | | |
||
− | * Jailbreaks 3.1.2 firmware for iPhone 2G, 3G, 3GS with [[iBoot-359.3]] bootrom, iPod touch 1G, iPod touch 2G with [[iBoot-240.4]] bootrom |
||
− | * iPod touch 3G not supported. |
||
| |
| |
||
− | |- |
||
− | ! rowspan=1 style="white-space: nowrap;nowrap;" | |
||
− | |||
− | ==== 3.1.5 ==== |
||
− | | style="white-space: nowrap;" | Feb 7, 2010 |
||
− | | | |
||
* Jailbreaks 3.1.3 firmware for devices supported in 3.1.4. |
* Jailbreaks 3.1.3 firmware for devices supported in 3.1.4. |
||
− | | |
||
|- |
|- |
||
− | ! rowspan=1 style="white-space: nowrap;nowrap;" | |
||
|} |
|} |
||
+ | |||
=== 4.x: Fourth Major Release of PwnageTool === |
=== 4.x: Fourth Major Release of PwnageTool === |
||
− | {| class="wikitable |
+ | {| class="wikitable" |
+ | ! Version |
||
− | ! style="background-color:#E9E9E9;" align="center" |Version |
||
+ | ! Features |
||
− | ! style="background-color:#E9E9E9;" align="center" |Features |
||
− | ! |
+ | ! Release date |
|- |
|- |
||
+ | ! 4.0 |
||
− | ! rowspan="1" style="white-space: nowrap;nowrap;" | |
||
+ | | {{date|2010|06|22}} |
||
− | ==== 4.0 ==== |
||
− | | style="white-space: nowrap;" | Jun 22, 2010 |
||
− | | | |
||
− | * Jailbreaks 4.0 firmware for devices supported in 3.1.4. |
||
| |
| |
||
+ | * Jailbreaks iOS 4.0 for devices supported in 3.1.4. |
||
|- |
|- |
||
+ | ! 4.01 |
||
− | ! rowspan="1" style="white-space: nowrap;nowrap;" | |
||
+ | | {{date|2010|06|23}} |
||
− | ==== 4.01 ==== |
||
− | | style="white-space: nowrap;" | Jun 23, 2010 |
||
− | | | |
||
− | * Fixes iBooks issue in 4.0 |
||
| |
| |
||
+ | * Fixes iBooks issue. |
||
|- |
|- |
||
+ | ! 4.1 |
||
− | ! rowspan="1" style="white-space: nowrap;nowrap;" | |
||
+ | | {{date|2010|10|20}} |
||
− | ==== 4.1 ==== |
||
− | | style="white-space: nowrap;" | Oct 20, 2010 |
||
− | | | |
||
− | * Jailbreaks 4.1 firmware for [[K66ap|Apple TV 2G]], [[K48ap|iPad 1G]], [[N82ap|iPhone 3G]], [[N88ap|iPhone 3GS]] (both bootroms), [[N90ap|iPhone 4]], [[N18ap|iPod touch 3G]], and [[N81ap|iPod touch 4G]]. |
||
| |
| |
||
+ | * Jailbreaks iOS 4.1 for [[K66AP|Apple TV (2nd generation)]], [[K48AP|iPad]], [[N82AP|iPhone 3G]], [[N88AP|iPhone 3GS]] (both bootroms), [[N90AP|iPhone 4]], [[N18AP|iPod touch (3rd generation)]], and [[N81AP|iPod touch (4th generation)]]. |
||
|- |
|- |
||
+ | ! 4.1.1 |
||
− | ! rowspan="1" style="white-space: nowrap;nowrap;" | |
||
+ | | {{date|2010|10|22}} |
||
− | ==== 4.1.1 ==== |
||
+ | | |
||
− | | style="white-space: nowrap;" | Oct 22, 2010 |
||
− | | | |
||
* Fixes issues with Leopard. |
* Fixes issues with Leopard. |
||
− | | |
||
|- |
|- |
||
+ | ! 4.1.2 |
||
− | ! rowspan="1" style="white-space: nowrap;nowrap;" | |
||
+ | | {{date|2010|10|22}} |
||
− | ==== 4.1.2 ==== |
||
+ | | |
||
− | | style="white-space: nowrap;" | Oct 22, 2010 |
||
− | | | |
||
* Fixes more issues with Leopard. |
* Fixes more issues with Leopard. |
||
+ | |- |
||
+ | ! 4.1.3 |
||
+ | | {{date|2010|11|28}} |
||
| |
| |
||
+ | * Enables installing the [[06.15.00]] baseband on the [[N82AP|iPhone 3G]] and [[N88AP|iPhone 3GS]] |
||
− | ! rowspan="1" style="white-space: nowrap;nowrap;" | |
||
+ | |- |
||
+ | ! 4.2 |
||
+ | | {{date|2011|02|15}} |
||
+ | | |
||
+ | * Support for iOS 4.2.1 on every device that is compatible, except for the [[N72AP|iPod touch (2nd generation)]]. |
||
+ | |- |
||
+ | ! 4.3 |
||
+ | | {{date|2011|04|03}} |
||
+ | | |
||
+ | * Support for iOS 4.3.1 on every device that is compatible, except for the [[iPad 2]]. |
||
+ | |- |
||
+ | ! 4.3.2 |
||
+ | | {{date|2011|12|27}} |
||
+ | | |
||
+ | * Support for iOS 4.3.2 on every device that is compatible, except for the [[iPad 2]]. |
||
+ | |- |
||
+ | ! 4.3.3 |
||
+ | | {{date|2011|06|08}} |
||
+ | | |
||
+ | * Support for iOS 4.3.3 on every device that is compatible, except for the [[iPad 2]]. |
||
+ | |- |
||
+ | ! 4.3.3.1 |
||
+ | | {{date|2011|05|08}} |
||
+ | | |
||
+ | * includes a fix for the iPhone 3GS / iPhone 4 side switch vibration issue (only for 4.3.3) |
||
+ | |} |
||
+ | |||
+ | === 5.x: Fifth Major Release of PwnageTool === |
||
+ | {| class="wikitable" width="100%" style="font-size:smaller;border-collapse:collapse;" border="1" |
||
+ | ! Version |
||
+ | ! Release date |
||
+ | ! Features |
||
+ | |- |
||
+ | ! 5.0.1 |
||
+ | | {{date|2011|12|27}} |
||
+ | | |
||
+ | * Jailbreaks iOS 5.0.1 for non-[[S5L8940|A5]] devices. |
||
+ | |- |
||
+ | ! 5.1.1 |
||
+ | | {{date|2012|06|04}} |
||
+ | | |
||
+ | * Jailbreaks iOS 5.1.1 for non-A5(X) devices. |
||
|} |
|} |
||
==Creating the Firmware== |
==Creating the Firmware== |
||
− | PwnageTool takes the IPSW file and patches it, creating a custom version. This enables a lot more features such as pre-installed packages, [[BootNeuter]] ([[ |
+ | PwnageTool takes the IPSW file and patches it, creating a custom version. This enables a lot more features such as pre-installed packages, [[BootNeuter]] ([[M68AP|iPhone]] software unlock), custom packages and boot logos. This method is usually less secure than the quick exploits such ([[redsn0w]], [[QuickPwn]], [[purplera1n]], [[blackra1n]], etc.). |
==How to create Custom Firmware Bundles== |
==How to create Custom Firmware Bundles== |
||
+ | {{main|Making PwnageTool Bundles}} |
||
− | Following steps are needed: |
||
− | #Copy an existing bundle as a template |
||
− | #Decrypt [[IMG3 File Format|IMG3]] [[KBAG]]s and put the keys into Info.plist - usually using an [http://forums.openpwn.org/viewtopic.php?f=8&t=19&p=101#p101 AES payload] |
||
− | #Use [[GenPass]] with decrypted [[Restore/Update Ramdisks|ramdisk]] to get the rootfs vfdecrypt key, put the key and rootfs volume name into Info.plist |
||
− | #Unpack [[NOR]] files, [[Restore/Update Ramdisks|ramdisk]] and [[kernelcache]] using [[AES Keys]], apply patches (for minor upgrades, you can apply byte pattern-based patches from previous version, so you don't have to use [[IDA]] for every file) |
||
− | #Patch [[wikipedia:Apple Software Restore|ASR]] from the [[Restore Ramdisk]], use [[Apple's Codesign Tool|codesign]] or [[ldid]] to fix up its code page hashes. |
||
− | #Use [http://www.daemonology.net/bsdiff/ bsdiff] to create diffs by diffing unpacked original versus patched files. [[N72ap|iPod touch 2G]] and [[N88ap|iPhone 3GS]] utilize [[0x24000 Segment Overflow|a different bootrom exploit]], so the encrypted [[LLB]] for these devices need patching, using the [[XPwn|xpwntool]] option "-x24k" (for [[N72ap|iPod touch 2G]]) or "-xn8824k" (for [[N88ap|iPhone 3GS]]) to patch the file. |
||
− | |||
− | (from here: [https://twitter.com/veeence/status/24393474627 question] and [http://www.twitlonger.com/show/61crcq answer]) |
||
==Problems== |
==Problems== |
||
− | This method does have negative aspects. The most common errors are the [[ITunes Errors#Errors 16xx|16xx range of errors]], which mean that the either the firmware file is corrupt or you didn't put it in the right mode (Recovery, DFU Mode). Sometimes the problems could just be a computer problem such as the memory is full or the USB port is broken. The most common error is [[ITunes Errors#Error 1604|Error 1604]] which means that the firmware file is |
+ | This method does have negative aspects. The most common errors are the [[ITunes Errors#Errors 16xx|16xx range of errors]], which mean that the either the firmware file is corrupt or you didn't put it in the right mode (Recovery, DFU Mode). Sometimes the problems could just be a computer problem such as the memory is full or the USB port is broken. The most common error is [[ITunes Errors#Error 1604|Error 1604]] which means that the firmware file is corrupted. |
==Windows== |
==Windows== |
||
− | PwnageTool is expected to remain exclusive to Mac OS X. As of |
+ | PwnageTool is expected to remain exclusive to Mac OS X. As of {{date|2009|10}}, [[User:ih8sn0w|iH8sn0w]], et. al. has announced that they made a project that will bring PwnageTool's functionality to Windows, called [[sn0wbreeze]]. [http://ih8sn0w.com/] |
== License == |
== License == |
||
PwnageTool is freeware. |
PwnageTool is freeware. |
||
+ | |||
+ | ==See also== |
||
+ | * [[redsn0w]] |
||
+ | * [[ultrasn0w]] |
||
+ | |||
+ | ==External Links== |
||
+ | * [https://sites.google.com/a/ipad-dev.com/files/pwnagetool/ Official PwnageTool 5.0.1 and 5.1.1 links] |
||
+ | * [http://web.archive.org/web/20120112055850/http://thepiratebay.org/user/iphonedev Official iPhone Dev Team torrents] |
||
[[Category:Hacking Software]] |
[[Category:Hacking Software]] |
||
+ | [[Category:GUI Tools]] |
||
+ | [[Category:Jailbreaks]] |
||
+ | [[Category:Jailbreaking]] |
Latest revision as of 14:07, 17 September 2021
PwnageTool is an iOS jailbreak tool for Mac OS X that jailbreaks by creating a custom IPSW. You are allowed to change boot logos and add pre-installed packages to the IPSW. After an IPSW is created you can use it for restore using iTunes.
Contents
Credit
Exploits Used
Version 1.0
Version 2.0
Version 4.0
- Bootrom exploit (used by limera1n and greenpois0n)
Models Supported
Model | Since |
---|---|
iPhone 3G | 19 July 2008 |
iPod touch (2nd generation) | 2 October 2009 |
iPhone 4 (iPhone3,1) | 20 October 2010 |
iPod touch (3rd generation) | 20 October 2010 |
iPod touch (4th generation) | 20 October 2010 |
iPad | 20 October 2010 |
Apple TV (2nd generation) | 20 October 2010 |
Please note that the iPad 2 and the iPhone 4S are not supported, as there is no publicly available bootrom exploit (like Pwnage, Pwnage 2.0, limera1n) for the A5-Processor.
Versions
PwnageTool was released 3 April 2008 but largely unused until version 2.0 was released 19 July 2008. The following versions that are shown here are not beta, alpha, or in development.
1.x: First release of PwnageTool
Version | Release Date | Features |
---|---|---|
1.0 | 3 April 2008 |
|
1.1 | 17 April 2008 |
|
2.x: Second major release of Pwnagetool
Version | Release date | Features |
---|---|---|
2.0 | 19 July 2008 |
|
2.0.1 | 4 August 2008 |
|
2.0.2 | 21 August 2008 |
|
2.0.3 | 25 August 2008 |
|
2.1 | 13 September 2008 |
|
2.2 | 21 November 2008 |
|
2.2.5 | 30 January 2009 |
|
3.x: Third Major Release of PwnageTool
Version | Release date | Features |
---|---|---|
3.0 | 19 June 2009 |
|
3.1 | 15 September 2009 |
|
3.1.3 | 2 October 2009 |
|
3.1.4 | 13 October 2009 |
|
3.1.5 | 7 February 2010 |
|
4.x: Fourth Major Release of PwnageTool
Version | Release date | Features |
---|---|---|
4.0 | 22 June 2010 |
|
4.01 | 23 June 2010 |
|
4.1 | 20 October 2010 |
|
4.1.1 | 22 October 2010 |
|
4.1.2 | 22 October 2010 |
|
4.1.3 | 28 November 2010 |
|
4.2 | 15 February 2011 |
|
4.3 | 3 April 2011 |
|
4.3.2 | 27 December 2011 |
|
4.3.3 | 8 June 2011 |
|
4.3.3.1 | 8 May 2011 |
|
5.x: Fifth Major Release of PwnageTool
Version | Release date | Features |
---|---|---|
5.0.1 | 27 December 2011 |
|
5.1.1 | 4 June 2012 |
|
Creating the Firmware
PwnageTool takes the IPSW file and patches it, creating a custom version. This enables a lot more features such as pre-installed packages, BootNeuter (iPhone software unlock), custom packages and boot logos. This method is usually less secure than the quick exploits such (redsn0w, QuickPwn, purplera1n, blackra1n, etc.).
How to create Custom Firmware Bundles
- Main article: Making PwnageTool Bundles
Problems
This method does have negative aspects. The most common errors are the 16xx range of errors, which mean that the either the firmware file is corrupt or you didn't put it in the right mode (Recovery, DFU Mode). Sometimes the problems could just be a computer problem such as the memory is full or the USB port is broken. The most common error is Error 1604 which means that the firmware file is corrupted.
Windows
PwnageTool is expected to remain exclusive to Mac OS X. As of October 2009, iH8sn0w, et. al. has announced that they made a project that will bring PwnageTool's functionality to Windows, called sn0wbreeze. [3]
License
PwnageTool is freeware.