Posted by George Hotz on under software hack, bootrom, gunlock, comex, dmg, bbupdater, tokens, hacks, crap, patches, checks, open source | 
Ok, here is where we stand right now.
ZiPhone seems to be the tool a lot of people are using. What it does is boot an unsigned ramdisk with a script to jailbreak, activate, and unlock. If you would like to view the ramdisk yourself, cut the first 0xCC2000 from the dat file and mount it as a dmg. The script is in /etc/profile. Also, Zibri, patch out the bootloader check from gunlock, it'll work with 3.9
ZiPhone is a wrapper for gunlock, which means with 4.6, it currently only unlocks 4.02.13 In order to unlock 4.03.13, right now you need bootloader 3.9
gbootloader will erase and downgrade your bootloader from software. I have checks in the program to prevent a bootloader without the bootrom locations blank from being uploaded, but if used properly, it will downgrade to 3.9, allowing 4.03.13 to be used.
4.6_GEOMOD is a modified bootloader I have with all secpack stuff patched out, hard coded IPSF style unlock(tokens always validate), full anywhere write access, no startup sig checks, and the bootrom locations blank. But the only 4.6 phone I have got bricked while I was trying to restore the seczone, and my bootloader software hack doesn't seem to work in 3.9 I guess I'll have to hw upgrade. Laziness...
Another problem comes with the release of the modified bootloader. It is copyrighted, and the patches are decently complex. What I'd really like to see is an open source, very well coded(the current compiler is crap), bootloader. Say written in assembly. I believe a full bootloader with all the functionality(minus the security) can fit in under 0x1000 bytes. It should continue to work with bbupdater, but have the crypto state machine fixed to validate everything possible. Maybe I'll get around to writing it. This is the ultimate in baseband hacks, and will put every other hack to rest, once you get the new bootloader on there. I'm sick of patching and trying to understand other peoples(badly written) code, when I can just write my own.
Tagi: software hack, bootrom, gunlock, comex, dmg, bbupdater, tokens, hacks, crap, patches, checks, open source
Posted by George Hotz on under iphe, google, hacks |
I know I said I wouldn't do it, but it helps me and it helps my employer. I see most of them are advertising for a "certain" product, you all know you can unlock your iPhone for free, and this blog doesn't endorse or discourage the use of that software.
Also I'll take this post to note that this is my personal blog done on personal time, and is in no way connected with my employer, Google.
That aside, get ready for some cool hacks...
Tagi: iphe, google, hacks
Posted by on under kathy griffin, pwnage, engadget, jailbreak, hacks, stranger, web page |
Hereâ??s one happy Pwnage advocate. Anyone know who he is? :)
Update: By the way, Woz is no stranger to iPhone Dev Team hacks. Some of you may remember his visiting the Dev Teamâ??s ridiculously easy 1.1.1 jailbreak that required absolutely no PC or Mac at allâ??just a web page visit to http://jailbreakme.com
That was done on Kathy Griffinâ??s actual show: http://www.viddler.com/explore/engadget/videos/23/
Tagi: kathy griffin, pwnage, engadget, jailbreak, hacks, stranger, web page
Posted by on under cat and mouse game, new ipod touch, mac os x, versis, botnet, popular press, cat and mouse, mid way, fud, dev team, oddities, itunes, rk, nasa, sparkle, firmware, hacks, os x, sums, priorities |
Â
Some of the popular press and blogs have been backing the opposition. :-)
While criticism and competition is fine it should be reported correctly, with all the facts and certainly minus the FUD. Do you guys think we are â??less and less relevant with each passing dayâ?? ? We donâ??t think so, and we certainly prefer our hacks to theirs.
Though even if the world deems us irrelevant, the iPhone family of devices is still fun to hack!
By the way we figured out a way to combat iTunes 8 without patchesâ??and weâ??re waiting to see what Apple tries next. But we think they might want to rethink their priorities. They probably wonâ??t though, and so we get back to the â??cat and mouseâ?? game between Apple and the Dev Team and other third-party communities.
Here are the new versions of PwnageTool and QuickPwn that support the 2.1 firmware. And as we just mentioned, iTunes was not harmed in the process ;-) no patching was required.
This does not address the new iPod Touch 2G device released this week. Partly because none of us even have one yet :)
SHA1 Sums:-
- PwnageTool_2.1.dmg = 0b2dcb51e224b12590793e8a758dd80c450e5b64
- QuickPwn_1.1.dmg = 92487230c66296ec1e414260b5f107e5d351923f
PLEASE NOTE: COPY THE APPLICATION TO YOUR APPLICATIONS FOLDER OR DESKTOP BEFORE RUNNING. RUNNING DIRECTLY FROM THE DISK IMAGE WILL CAUSE ERRONEOUSÂ BEHAVIORÂ (such as missing bootloader files and other oddities).
Weâ??ve released using BitTorrent to lighten the load of the initial downloads, then weâ??ll add a direct link and Sparkle update when we can. If you donâ??t know how to use BitTorrent, then hold off for a while.Â
Mirrors
The following links are unofficial download mirrors, you download these at your own risk, we accept no responsibility if your computer explodes or if it becomes part of a NASA attacking botnet, or even worse if your hands fall off mid-way during the use of these archives. Always check the published SHA1 sums. We would prefer that you downloaded the official bittorrent release above, but you are welcome to try these if you really must.
Direct Downloads - QuickPwn
Direct Downloads - PwnageTool
Important update Hmm well Thomas Ricker has put our fate in your hands. Please vote in his poll!Â
Should we press on? Or just throw in the towel? Do â??rogueâ?? applications like Cycorder, NES.app (and the other console emulators) â?? and all the other applications that Apple wonâ??t approve â?? matter? That includes unlocking :)
Tagi: cat and mouse game, new ipod touch, mac os x, versis, botnet, popular press, cat and mouse, mid way, fud, dev team, oddities, itunes, rk, nasa, sparkle, firmware, hacks, os x, sums, priorities
Posted by Elementus on under google maps, envirment, iphe, youtube, beta 3, google, iphone, xcode, new mac, sad news, imatrix, mac mini, sdk, great news, collegues, frameworks, import export, hacks, address book, safari |
Great news is here - iMatrix is ported into SDK version beta 3!!!
New
iMatrix will be a little bit different from current toolchain based version because SDK has different set of frameworks and classes.
Simulator based application
cannot handle camera attached to my Mac Mini, but it does all the rest quite well and, that is very important, according to stricts rules Apple set. No more private frameworks, no more Address book hacks; just clean and legal stuff! Next days I will publish photos of new
iMatrix application... return here frequently please.
There are sad news as well. It looks like import/export of notes and Safari's bookmarks should come out... The same with Calendar...
BUT you will be
surprized as well! Will say just this:
iTunes,
YouTube and
Google Maps!
Now the story :) At first, I had to purchase new Mac Mini because OS X Leopard is vital for SDK. After some time and with the help of my collegues, I found what I looked for! After updating the system and installing SDK/Xcode I became "happy" owner of development environment for creating cool and amazing native iPhone applications! Well... then I had several weeks of hard coding and getting familiar with Xcode... It is in past now! After all, I can say that Apple did realy cool product. It is not ready and quite fresh but it works and has HUGE potential. I personally will use it for sure.
(To be continued)
Tagi: google maps, envirment, iphe, youtube, beta 3, google, iphone, xcode, new mac, sad news, imatrix, mac mini, sdk, great news, collegues, frameworks, import export, hacks, address book, safari
