Jailbreak iOS 4.3 with PwnageTool Bundles | Custom Firmware

Discussion in 'Jailbreaks and iOS Hacks' started by maria1, Mar 21, 2011.

  1. maria1 macrumors newbie


    Mar 21, 2011
    Finally a tethered for Jailbreak 4.3 iOS is now possible. Apple iOS 4.3 is publicly available for iPhone4, iPhone3Gs , iPod touch 3G/4G, iPad and Apple TV 2G. Jailbreak (tethered) for iOS 4.3 is done by PwnageTool Bundles using Custom Firmware. This procedure involves creating custom firmware and loading it on the device. We have a guide on how to jailbreak iOS 4.3 with PwnageTool, read after the break.
    [Update 1: Please use the updated guide: Jailbreak 4.3 iOS using Sn0wbreeze on Windows]


    So you still want to continue? Lets see the requirements.

    Apple iOS 4.3

    Direct Download iOS 4.3 Links
    iPhone 3GS
    iPad 2 WiFi
    iPad 2 GSM
    iPad 2 CDMA
    iPod touch 3G
    iPod touch 4G
    Apple TV 4.2 (8F191m)

    PwnageTool 4.2 for Mac

    PwnageTool Bundles
    Direct Download Links
    Bundle for iPhone 4 iOS 4.3
    Bundle for OLD Bootrom iPhone 3GS iOS 4.3 - Untethered
    Bundle for NEW Bootrom iPhone 3GS iOS 4.3
    Bundle for iPad iOS 4.3
    Bundle for iPod Touch 4G iOS 4.3

    Ramdisk Fixer 1.6

    iTunes 10.2

    How to Jailbreak iOS 4.3 with PwnageTool Bundles

    Please note again that this guide is only for advanced users, if you end up bricking up your device, we will not be responsible.
    Step 1:
    Create a folder “iOS 4.3” on your Desktop and Download PwnageTool 4.2, PwnageTool Bundles and IPSW (iOS 4.3) firmware file.


    Step 2:
    Double click on PwnageTool 4.2 and then drag and drop PwnageTool in your Applications. ( see the screen-shot below)


    Step 3:
    Go to Applications and then right click on PwnageTool, select Show Package Contents.


    Step 4:
    Now navigate to Contents/Resources/FirmwareBundles/ and Copy Paste the PwnageTool Bundles file (we have used iPhone 4: iPhone3,1_4.3_8F190.bundle).


    Create Custom Ramdisk for Custom iOS 4.3 Firmware

    Step 5:
    Download Ramdisk fixer and run it.


    Follow the onscreen setup and Continue.


    It will show a license agreement, click Accept and Continue.


    Ramdisk fixer will be successfully installed.


    Build iOS 4.3 Custom Firmware with PwnageTool 4.2

    Step 6:
    Run PwnageTool, select “Expert mode” and choose your device and click on Next Arrow button.


    Step 7:
    Browse and select iOS 4.3 IPSW file as shown in the screenshot



    Step 8:
    Select “Build” and click on Next Arrow.


    Step 9:
    PwnageTool will ask for the location to save the Custom Firmware File. Select the location and click on “Save”


    Step 10:
    PwnageTool will now create the custom .IPSW file. Wait for the process to finish.


    Step 11: Connect your device with Mac and follow the onscreen instructions to put your Device in DFU mode





    Step 12:
    After you have successfully entered in DFU Mode, start iTunes. It will detect your device in recovery mode.


    We need to restore it manually by holding left “Alt” (option) button on Mac and click on “Restore” in iTunes.


    This will open file browser to select the iOS file. Select the Custom IPSW file created by PwnageTool and click on “Open”
    Sit back and wait, iTunes will install the firmware. Do not plug out or shutdown your Mac. Your iOS device screen at this point will be showing a progress bar indicating installation progress. After the installation is done, your iOS device will be jailbroken on iOS 4.3.
    Tethered Boot iOS 4.3

    Currently there is no untethered Jailbreak available for iOS 4.3. You need to boot your device in tethered using “tetheredboot” utility.
    Step 13:
    First you need to create a Folder on Desktop/iOS 4.3/tetheredboot and make a copy of Custom IPSW file there.


    Step 14:
    Now change the extension of Custom IPSW file from .ipsw to .zip.


    Step 15:
    Double click .zip file to extract the firmware file in iPhone3,1_4.3_8F190_Custom_Restore folder.




    Step 16
    We need to copy two files in tetheredboot folder from just extracted Custom Firmware Folder. Navigate to iPhone3,1_4.3_8F190_Custom_Restore, Copy kernelcache.release.n90 and Paste it in tetheredboot folder.
    Step 17:
    Navigate to iPhone3,1_4.3_8F190_Custom_Restore/Firmware/dfu/ and Copy iBSS.n90ap.RELEASE.dfu and Paste it in tetheredboot folder.
    Also download tetheredboot.zip and extract it in the tetheredboot folder.
    The tetheredboot folder will look something like this now (screenshot below)


    Step 18
    Power off your device, but keep it connected with the Mac. Start Terminal on your Mac and run the following commands


    * Hold Power and Home buttons for 10 seconds
    * Now release the Power button but continue holding the Home button for 10 more seconds
    * You device should now be in DFU mode

    Wait for your device to boot, Terminal will show “Exiting libpois0n“.
    After a short while, your iPhone, iPad or iPod touch will be booted in a jailbroken tethered mode !
    Remember if you power off or restart your device again, you will have to do the whole jailbreak process from Step 1. So becareful and do not restart your device without any reason.
    Enjoy iOS 4.3 Jailbreak!
  2. braddick macrumors 68040


    Jun 28, 2009
    Encinitas, CA
    I had a tough enough time finding the 'shake to shuffle' off toggle but thanks for the above...
  3. ThReMiX macrumors member

    Mar 17, 2011
  4. gravytrain84 macrumors 6502a


    Jun 24, 2010
    I wouldnt touch it with a 10 ft pole
  5. Tensakun macrumors 6502


    Jan 21, 2008
    Akashi, Japan
    Er, ah...think I'll wait a bit for an (almost certainly simpler) untethered JB. Using 4.1 ain't so bad as going thru all the above...:eek:

Share This Page