iSmashPhone

FYI, this guide works for all know iPhone firmwares, 2.0, 2.1, 2.2 and others

The new Pwnage Tool was released yesterday. [iPhone Dev Blog]

We tried it out, and figured out the process. That being said, here's a step by step manual to using the 2.0 Pwnage Tool.

Disclaimer: We are not responsible for any damages to your iPhone during the use of our article/video/instructions.

    Keep in mind the following before you begin (as of time of this post):
    1. The PwnageTool is available only for MAC
    2. You can only Jailbreak your 3g iPhone using this tool, you cannot unlock it at this time
    3. You can Jailbreak and Unlock your iPhone 1.0
    4. You must restore your iPhone to the latest firmware 2.0

1. You will need the following files/programs before your start:

• Pwnage Tools
• Latest Firmware Files for your iPhone or iPodTouch: iPhone 1.0 (iPhone1,1_2.0_5A347_Restore.ipsw) iPhone 2.0 (iPhone1,2_2.0_5A347_Restore.ipsw).  Search google to find download locations
• Boot loader Files

2. We recommend to put all the files and "Pwnage Tools" programs in one directory

3. Back-up your iPhone

4. Make sure that you have a directory named 'Device Support' on your MAC under user name ~/Library/iTunes/.  If you don't have it, create it in ~/Library/iTunes/Device Support/

5. Disconnect the USB cable from your iPhone

6. Turn off your iPhone (Hold Home and Power button until power off slider is shown)
7. You can have iTunes running (doesn't matter)
4. Start PwnageTool

5. Follow the steps in Pwnage tool

Accept Copyright and Disclaimer

Select Simple or Expert Mode, our instructions are based on Expert Mode

   

Select Device Type to Jailbreak/Unlock

Locate your corresponding IPSW file, if you put your boot loader files and IPSW in the same directory where your Pwnage Tools are, you won't have to look for them.  Pwnage will find them automatically.

Configure your custom IPSW file.

        Select First Configuration - General and click Next (blue button)

       You'll get to the General Setting Screen.  You can uncheck "Activate the phone" setting if your phone was officialy activated and you are on a contract with an official service provider.

If you are using an official service provider you do not need to "Unlock baseband", therefore you can uncheck that setting.  Keep in mind "Unlock Baseband" will not work on the 3G iPhone as of the time of this post.

Settings for Cydia Installer, you can download packages into your custom IPSW file from different sources.

FYI, as of right now "Installer Packages" are not supported by the Pwnage Tool.

On this setting screen you can pick your custom logo settings.  If you uncheck them both originals will remain.

When you press Next you will get back to the Settings List screen.  Click on "Build" and then "Next"

You will be asked for the name and location of your custom IPSW file

When you select file name and location the custom build process will start.

During the build process you will be asked for a user name and password of your computer, enter that in so  you can continue the build process.

At the end of your custom build you will be presented with the message:

If you are not sure enter no.  This is needed for you to enter the DFU Mode.

You will have to follow the instructions in the Pwnage Tool in order for you to enter DFU Mode.  If you did everything right you will get the following message:

The video at the end will show all the steps described here.

6. Attach USB Cable to your iPhone

7. Start iTunes (if you closed it)

8. You will be presented with the message below: iTunes has detected an iPhone in recovery mode.  You must restore this iPhone before it can be used with iTunes.

9. Press OK

10. Now you need to select the custom IPSW file you created.  Hold Option/Alt Key and click Restore.

11. If you are in DFU mode and you created a proper IPSW file, iTunes will restore that IPSW in to your iPhone.

From the iPhone Dev Team Blog: If you get Error 1600 from iTunes (or if you see in your log a failure to prepare x12220000_4_Recovery.ipsw), try: mkdir ~/Library/iTunes/”Device Support” ;  if that directory already exists, remove any files in it.  Then re-run PwnageTool. 

Note: if you get an error during custom restore. Follow the following steps.  Get your iPhone in restore mode: turn it off (Home, Power, Slide), Get it into Restore Mode (Home+Power, when Apple Logo is shown, release Power, When Restore icon shown release Home).  Go to iTunes, it will prompt you to restore your iPhone, Press Option/Alt button and click restore, select your original firmware file.  After this process your iPhone will be restored.

____________________________________________________________________________

Update - a new version has been released which fixes the following bugs:

• It auto-finds the bl39 and bl46 files better, if they're on your computer.
• It creates the ~/Library/iTunes/Device Support/ folder if not present, which should fix the 1600 errors people have been having.
• The Pwnage Tool now always starts (for some people the icon would never stop bouncing and wouldn't open).
• The Sparkle AppCast URL is fixed (updates should work for future releases).

Note: If you already followed the above steps and succeeded, there's no need to download this version.

Also see:

Learn How to Use QuickPwn a New Jailbreaking Tool from Devteam [Guide]

Learn How to Use QuickPwn for Mac [Video]