Jailbreak for iPhone 5s though iPhone X, iOS 12.3 and up.
Checkra1n is a community project to provide a high-quality semi-tethered jailbreak to all, based on the ‘checkm8’ bootrom exploit.
Q: How does it work?
A: Magic hax.
Q: Why was the beta release delayed?
A: We didn't want the release quality to end up like iOS 13.2, you deserve better.
Q: wen eta?
A: bruh we're past that.
Q: How do I use it?
A: Open the checkra1n app, and follow the instructions to put your device into DFU mode. Hax happens auto-magically from that point and the device will boot into jailbroken mode. If you reboot the device without checkra1n, it will revert to stock iOS, and you will not be able to use any 3rd party software installed until you enter DFU and checkra1n the device again.
Q: ugh, I don't like GUI?
A: ok, you can use "./checkra1n.app/Contents/MacOS/checkra1n" from the console, or download a Linux CLI build.
Q: Is it safe to jailbreak? Can it harm my device / wipe my data?
A: We believe jailbreaking is safe and take precautions to avoid data loss. However, as with any software, bugs can happen and *no warranty is provided*. We do recommend you backup your device before running checkra1n.
Q: I have a problem or issue to report after jailbreaking.
A: Many problems and bootloops can be caused by buggy or incompatible tweaks. Remember many tweaks never saw iOS 13 in the pre-checkra1n era. If you suspect a recently installed tweak, you may attempt to enter no-substrate mode by holding vol-up during boot (starting with Apple logo until boot completes). If the issue goes away, a bad tweak is very likely the culprit, and you should contact the tweak developers.
Q: I have a problem or issue to report and I don't think it's related to a bad tweak.
A: Please check here and follow the bug report template.
Q: I lost my passcode. Can checkra1n decrypt my data or get access to a locked device?
Q: Can I ssh into my device?
A: Yes! An SSH server is deployed on port 44 on localhost only. You can expose it on your local machine using iproxy via USB.
Q: I love the project! Can I donate?
A: Thanks, we love it too! The project does not currently take any donations. If anyone asks for donations, it's a scam.
Q: Where are the sources? I want to write a dark-mode theme and publish the jailbreak as my own.
A: checkra1n is released in binary form only at this stage. We plan to open-source later in 2020.
Q: When is Windows support coming?
A: We need to write a kernel driver to support Windows (which is a very complex piece of code!) which will take time. Rest assured however, we are working hard on it.
Q: The checkra1n app doesn't open inside the DMG!
A: Follow the instructions in the DMG file and drag the app to the Applications folder.
Made by argp axi0mX Dany Lisiansky Jaywalker Adam Demasi h0m3us3r littlelailo Longhorn nitoTV Jamie Bishop pimskeks qwertyoruiopz Sam Bingner Rick Mark s1guza Thanks to Dylan Laws jndok Jonathan Seals xerub Steve PsychoTea Simone Ferrini ihackbanme iH8sn0w Ori Kadosh Rony Kelner Website by Ayden Panhuyzen
This is an app for OS X that can (re)sign apps and bundle them into ipa files that are ready to be installed on an iOS device.
Supported input types are: ipa, deb, app, xcarchive.
This app requires Xcode to be installed, it has only been successfully tested on OS X 10.11 at this time.
You need a provisioning profile and signing certificate, you can get these from Xcode by creating a new project.
You can then open up iOS App Signer and select your input file, signing certificate, provisioning file, and optionally specify a new application ID and/or application display name.
A home for apps that push the boundaries of iOS. No jailbreak required.
AltStore is an iOS application that allows you to sideload other apps (.ipa files) onto your iOS device with just your Apple ID. AltStore resigns apps with your personal development certificate and sends them to a desktop app, AltServer, which installs the resigned apps back to your device using iTunes WiFi sync. To prevent apps from expiring, AltStore will also periodically refresh your apps in the background when on the same WiFi as AltServer.
Resigns and installs any app with your Apple ID Installs apps over WiFi using AltServer Refreshes apps periodically in the background to prevent them from expiring (when on same WiFi as AltServer) Handles app updates directly through AltStore
Xcode 11 iOS 12.2+ (AltStore) macOS 10.14.4+ (AltServer) Swift 5+ Why iOS 12.2+ and macOS 10.14.4+? Doing so allows me to distribute all AltStore apps without embedding Swift libraries inside them. This helps me afford bandwidth costs by reducing download sizes by roughly 30%, but also noticeably improves how long it takes to install/refresh apps with AltStore. If you're compiling AltStore and/or AltServer yourself, however, you should be able to lower their deployment targets to iOS 12.0 and macOS 10.14.0, respectively, without any issues.
AltStore is just a regular, sandboxed iOS application. The AltStore app target contains the vast majority of AltStore's functionality, including all the logic for downloading and updating apps through AltStore. AltStore makes heavy use of standard iOS frameworks and technologies most iOS developers are familiar with, such as:
Core Data Storyboards/Nibs Auto Layout Background App Refresh Network.framework (new in iOS 12) AltServer
AltServer is also just a regular, sandboxed macOS application. AltServer is significantly less complex than AltStore though, and for that reason consists of only a handful of files.
AltKit is a shared framework that includes common code between AltStore and AltServer.
AltSign is my internal framework used by both AltStore and AltServer to communicate with Apple's servers and resign apps. For more info, check the AltSign repo.
Roxas is my internal framework used across all my iOS projects, developed to simplify a variety of common tasks used in iOS development. For more info, check the Roxas repo.
Manage your torrents from your Android device with Transdroid. All popular clients are supported: µTorrent, Transmission, rTorrent, Vuze, Deluge, BitTorrent 6, qBittorrent and many more. You can view and manage the running torrents and individual files.
Adding is easy via the integrated search or RSS feeds (full version required). Monitor progress using the home screen widget or background alarm service.
Open-source jailbreaking tool for older iOS devices.
Jailbreak and downgrade iPhone 3GS (new bootrom) with alloc8 untethered bootrom exploit. :-) Pwned DFU Mode with steaks4uce exploit for S5L8720 devices. Pwned DFU Mode with limera1n exploit for S5L8920/S5L8922 devices. Pwned DFU Mode with SHAtter exploit for S5L8930 devices. Dump SecureROM on S5L8920/S5L8922/S5L8930 devices. Dump NOR on S5L8920 devices. Flash NOR on S5L8920 devices. Encrypt or decrypt hex data on a connected device in pwned DFU Mode using its GID or UID key. Dependencies
This tool should be compatible with Mac and Linux. It won't work in a virtual machine.
libusb, If you are using Linux: install libusb using your package manager. iPhone 3GS iOS 4.3.5 iBSS iBSS
Download iPhone 3GS iOS 4.3.5 IPSW from Apple:
In Terminal, extract iBSS using the following command, then move the file to ipwndfu folder:
unzip -p iPhone2,1_4.3.5_8L1_Restore.ipsw Firmware/dfu/iBSS.n88ap.RELEASE.dfu > n88ap-iBSS-4.3.5.img3 Coming soon!
Reorganize and refactor code. Easier setup: download iBSS automatically using partial zip. Dump SecureROM on S5L8720 devices. Install custom boot logos on devices jailbroken with 24Kpwn and alloc8. Enable verbose boot on devices jailbroken with 24Kpwn and alloc8. Disclaimer
This is BETA software.
Backup your data.
This tool is currently in beta and could potentially brick your device. It will attempt to save a copy of data in NOR to nor-backups folder before flashing new data to NOR, and it will attempt to not overwrite critical data in NOR which your device requires to function. If something goes wrong, hopefully you will be able to restore to latest IPSW in iTunes and bring your device back to life, or use nor-backups to restore NOR to the original state, but I cannot provide any guarantees.
There is NO warranty provided.
THERE IS NO WARRANTY FOR THE PROGRAM, TO THE EXTENT PERMITTED BY APPLICABLE LAW. THE ENTIRE RISK AS TO THE QUALITY AND PERFORMANCE OF THE PROGRAM IS WITH YOU. SHOULD THE PROGRAM PROVE DEFECTIVE, YOU ASSUME THE COST OF ALL NECESSARY SERVICING, REPAIR OR CORRECTION.
You will not need to use make or compile anything to use ipwndfu. However, if you wish to make changes to assembly code in src/*, you will need to use an ARM toolchain and assemble the source files by running make.
If you are using macOS with Homebrew, you can use binutils and gcc-arm-embedded. You can install them with these commands:
brew install binutils brew cask install https://raw.githubusercontent.com/Homebrew/homebrew-cask/b88346667547cc85f8f2cacb3dfe7b754c8afc8a/Casks/gcc-arm-embedded.rb Credit
geohot for limera1n exploit posixninja and pod2g for SHAtter exploit iPhone Dev Team for 24Kpwn exploit pod2g for steaks4uce exploit walac for pyusb by axi0mX.
PwnageTool is a jailbreaking tool created by the iPhone Dev Team.
THIS TOOL IS TO BE USED AT YOUR OWN RISK, IF YOU DO NOT KNOW WHAT THIS IS, PLEASE STOP USING THE APPLICATION AND DELETE IT.
redsn0w is a lightweight, multi-platform jailbreaking, unlocking and customizing tool for the iPhone 2G, iPhone 3G, iPhone 3GS, iPhone4, iPhone4S, iPod touch 1G, iPod touch 2G, iPod touch 3G, iPod touch 4G, iPad1, and iPad2.
Copyright 2007-2012 iPhone Dev-Team.
All rights reserved.
Not for commercial use.
The Most Efficient iOS Files & Data Management Tool.
3uTools makes it so easy to manage apps, photos, music, ringtones, videos and other multimedia files.
Fully view iOS device' s different statuses, including activation, jailbreak, battery and iCloud lock statuses, as well as detailed iOS & iDevice information.
Flash and Jailbreak Are Way Intelligent
3uTools can automatch available firmwares for iOS devices. iOS flashing in normal mode, DFU mode and recovery mode is supported.
One-click jailbreak makes the jailbreak process so simple and reliable.
More advanced features, including SHSH backup, baseband upgrade/downgrade etc.
All-in-One iOS Helper Brings Useful, Delightful Features
Backup / Restore Clean Garbage Make Ringtone Convert Video Convert Audio Modify Audio Migrate Data Compress Photo Icon Management Realtime Screen Realtime Log Delete Invalid Icon Open SSH Stop iOS Update
Media Player for Android by Deank.
If you are using the official version of Movian (and not a previous version of my MOD) you have to uninstall your current Movian version and install this version clean. You may have to enable the option "Install from untrusted sources" on your Android device and use a File Manager application like "X-Plore" (available on Google PlayStore). Remember to enter your Access Key for the F1 plugin if you do a clean installation.
APK of the DeepNude app for Android smartphones.
Perfil para descargar directamente en el iPhone y así poder instalar en el Apple Watch la beta de watchOS 6.
watchOS 6 es compatible con los modelos Series 1, Series 2, Series 3 y Series 4 (se queda fuera el modelo original).
Nota: Para instalar la beta de watchOS 6 es necesario que el iPhone esté en la beta de iOS 13.
MobileDevice is a utility for interacting with Apple's Private Mobile Device Framework. It can be used for automating some tasks like installing and uninstalling apps on your iPhone/iPad without having to manually do it via Xcode or iTunes. You don't need a jailbroken device!
ibimobiledevice is a cross-platform software library that talks the protocols to support iPhone, iPod Touch, iPad and Apple TV devices. Unlike other projects, it does not depend on using any existing proprietary libraries and does not require jailbreaking.
It allows other software to easily access the device's filesystem, retrieve information about the device and it's internals, backup/restore the device, manage SpringBoard icons, manage installed applications, retrieve addressbook/calendars/notes and bookmarks and (using libgpod) synchronize music and video to the device.
Never miss a moment with Google Camera, and take fantastic pictures using features such as Portrait and Night Sight.
HDR+ - Take pictures using HDR+ to capture fantastic photos, especially in low-light or backlit scenes. Night Sight - You’ll never want to use your flash again. Night Sight brings out all the best details and colors that get lost in the dark. Super Res Zoom - Super Res Zoom keeps your pictures sharp when you zoom in—without the blur. Top Shot - Pick the perfect moment with Top Shot. Automatically recommends the best pics, where no one is blinking and everything looks just right. Portrait - Add elegant background blur (bokeh) to pictures. Google Photos can also make the subject of your photo pop by leaving them in color, while changing the background to black and white. Google Lens Suggestions - Just point your camera at contact info, URLs, and barcodes, and it’ll automatically suggest things to do like calling the number, or sending an email. Playground - Have fun mixing the real world with the virtual through AR stickers and effects!
iOS 9.x Re-Restore bug discovered by alitek12
Requires saved erase or update iOS 9.x blobs (local or Cydia)
32 bit/iOS 9.x only
Prerequisite OS doesn't matter, use DFU if you aren't already on 9.x
Fork additions by alitek12, Trevor, and Jon
Testing by ee_csw, Mirko, and Xernium
The idevicerestore tool allows to restore firmware files to iOS devices.
It is a full reimplementation of all granular steps which are performed during restore of a firmware to a device.
In general, upgrades and downgrades are possible, however subject to availability of SHSH blobs from Apple for signing the firmare files.
To restore a device to some firmware, simply run the following:
$ sudo idevicerestore -l This will download and restore a device to the latest firmware available.
Development Packages of:
libimobiledevice libirecovery libusbmuxd libplist libzip openssl Software:
usbmuxd make autoheader automake autoconf libtool pkg-config gcc Installation
To compile run:
./configure make sudo make install
iBoot32Patcher is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version.
iBoot32Patcher is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.
clang iBoot32Patcher.c finders.c functions.c patchers.c -Wno-multichar -I. -o iBoot32Patcher Sample Usage
iBoot32Patcher iBoot.n49.RELEASE.dfu.decrypted iBoot.n49.RELEASE.dfu.patched -b "cs_enforcement_disable=1" -c "ticket" 0x80000000 by iH8sn0w.
iFaith is a Windows program that can get SHSHs on your device, rather than from Apple's servers. This lets you keep the device on whatever firmware it's currently on (e.g.- iOS 4.2.6).
iFaith can also build an IPSW that's already configured with your SHSHs, and will also upload your saved SHSH to a remote server for backup purposes.
Jailbreak for 32-bit 10.x devices. All 32-bit devices supported.
Get the IPA. Take a shower. Prepare offerings. Provide your Apple ID, Mother's Maiden Name, and SSN. Do some stuff with Cydia Impactor. Presse the only button in the app. Wait until it's done. Profit. Jailbreak by tihmstar and siguza
Graphics by @FoxletFox
Logo concept by Jacky C
Jailbreak for 64-bit 10.x devices. Only 64-bit devices with headphone jack supported. (A7-A9).
Get the IPA. Take a shower. Prepare offerings. Provide your Apple ID, Mother's Maiden Name, and SSN. Do some stuff with Cydia Impactor. Press the only button in the app. Wait until it's done. Profit. Jailbreak by tihmstar and siguza.
Using this tool will restore the RootFS to its stock state and reset the user data. So creating a backup using iTunes before using it is recommended.
The Cydia version supports all devices running iOS 11.0 to 11.4 Beta 3. The Jailed version supports all devices running iOS 11.3 to 11.4 Beta 3. The 11.2 to 11.2.6 support has been added to the Cydia version. The 11.0 to 11.1.2 support will also be added in the near future. Although there's an option to not perform a full restore and keep the user data, I would really not recommend it, since it will leave a lot of left-overs from your jailbreak.
unc0ver jailbreak for iOS 11.0 - 13.5.5 b1.
The most outstanding changes over the other jailbreaks:
One app to jailbreak all firmwares Full-fledged Cydia and Substrate support for ARM64 devices Full-fledged Telesphoreo port for ARM64 (Elucubratus) No private data shared for diagnostics purposes SSH-Only (Dropbear) support Options for the user Utilities for the user No inefficient local jailbreak server (jailbreakd daemon) Native Cydia support with support for the iPhone X screen size Ability to rejailbreak from the jailbroken state Stable kernelspace patches to avoid random crashes caused by kernel data aborts Stable userspace patches to avoid random freezes and crashes caused by watchdog timer timeouts Local APT repo system integrated in the jailbreak to verify the integrity of the core packages and repair them if they are corrupted Extended and improved assertion to prevent unexpected results such as bootloops caused by filesystem corruption Better system security, battery life and performance Significantly faster Cydia Modifications to Cydia were approved by the creator of Cydia (Saurik) Fully working debugserver No DRM No installation restrictions Open source Best practices
Perform a full restore with Rollectra before switching from the other jailbreaks Turn on the AirPlane Mode before starting the jailbreak Turn off Siri before starting the jailbreak Installation Guide: iOS
Jailbreak your device with any other listed method. Add https://repo.incendo.ws to your source list in Cydia. Install ReProvision. Download the latest version of Unc0ver. Open the downloaded IPA and tap the "Share" Icon. Open the file in ReProvision from the share sheet menu. Tap the "Install" button in ReProvision. Wait for the install to complete. Continue enjoying unc0ver! Installation Guide: macOS
Download AltStore. Use the link for your operating system. Unzip and move AltStore to your Applications folder. Launch the AltStore application. Click on the AltStore icon in the Menu Bar, and then click on the Install Mail Plug-in option. Open the Mail app, and click on Mail → Preferences in the menu bar. Open the General tab in mail preferences, click Manage Plug-ins, check AltPlugin, and apply and restart Mail. Connect your iOS device via USB. Click AltStore in the menu bar, then go to Install AltStore → (Your iOS Device) Login with your Apple ID when prompted and click install. On your iOS device, open Settings → General → Device Management and tap on your Apple ID. Trust AltStore. Tap the "Open in AltStore" button located above. AltStore will now install the app. Wait until it finishes. Open unc0ver and jailbreak! Xcode + iOS App Signer
Install Xcode, open it, and agree to the license agreement. Plug in your iOS device and select it as the build target. Open Xcode and create a new iOS Application. Type a name and identifier. Xcode will complain about the lack of a provisioning profile. Click fix issue. Sign into an Apple ID when prompted. Download iOS App Signer Download the latest version of unc0ver. Open iOS App Signer. Select the ipa you just downloaded as an input file. Click start. Return to Xcode. Go to the menu bar. Click Window → Devices. Find your device, click the plus, and select the file created by iOS App Signer. Open unc0ver on your device and jailbreak! Cydia Impactor
Note: This method requires an Apple developer account. Download Cydia Impactor for the applicable OS. Extract the application file, and open it. Connect your iOS device. Download the latest version of unc0ver. Drag the IPA file into the Impactor window. Enter your Apple ID and password (requires developer account). (Note: If you are using two factor authentication, generate an app specific password, and use that here.) On your iOS device, open Settings → General → Device Management and tap on your Apple ID. Trust unc0ver. Open unc0ver and jailbreak! Installation Guide: Windows
Install iTunes (Win32 Not UWP) 64 Bit Download 32 Bit Download Download AltStore Use the link for your operating system. Right click the zip you just downloaded and click "Extract All" Wait until this finishes. Double click "Setup.exe" and follow the on screen instructions provided by AltStore. Press the Windows key, type "AltServer" and open the application. Click the arrow icon near the network icon in the taskbar. This will bring up an menu with multiple icons. Look for a diamond shaped logo that says AltServer when mousing over it. Click on it. From the option brought up, hover over Install AltStore, and select your iOS device. Enter your Apple ID and password when prompted. On your iOS device, open Settings → General → Device Management and tap on your Apple ID. Trust AltStore. Tap the "Open in AltStore" button located above. If promoted, sign into the same Apple ID you used before. AltStore will now install the app. Wait until it finishes. Open unc0ver and jailbreak! Cydia Impactor
Note: This method requires an Apple developer account. Install iTunes (Win32 Not UWP) 64 Bit Download 32 Bit Download Download Cydia Impactor for the applicable OS. Extract the application file, and open it. Connect your iOS device. Download the latest version of unc0ver from above. Drag the ipa file into the Impactor window. Enter your Apple ID and password (requires developer account). (Note: If you are using two factor authentication, generate an app specific password, and use that here.) On your iOS device, open Settings → General → Device Management and tap on your Apple ID. Trust unc0ver. Open unc0ver and jailbreak! Credits
by @pwn20wnd & @sbingner
UI by @DennisBednarz & Samg_is_a_Ninja
Jailbreak for iOS 11.0 – 11.4.1, compatible with all iPhones, iPods touch, iPads and Apple TVs.
On iOS 11.3-11.3.1, the device will reboot twice and Electra will need to be re-run after the first reboot An APFS snapshot is created of / so you may revert it at a later date if needed It is recommended to futurerestore if you have blobs before running Electra to ensure the best possible installation Cydia is included OpenSSH is running on port 22 Electra repo added by default Substitute, Tweak Loader and Substrate Compatibility Layer available from Electra repo Many packages need to be updated for both Electra and iOS 11 (make sure they're updated before installing as they may not work yet) RocketBootstrap 1.0.6 or higher is required for use on iOS 11 Many apps, launch daemons and installation binaries are broken as they require entitlements to be added Credits
Credits Packaged by CoolStar Exploits by Ian Beer (async_wake), Brandon Azad (voucher_swap) and tihmstar (v1ntex) tvOS port by nitoTV and Jaywalker Trust cache injection and rootfs patch by xerub Zone map address fixup by Siguza Rootfs remount exploit discovered by CoolStar jailbreakd, launchd patch, setuid patch, dylib injection and Safe Mode by CoolStar amfid patch and entitlement injection by theninjaprawn unlocknvram, initial dropbear work, substitute compilation fix by stek29 sandbox mitigations by stek29 and coolstar MIG protocol implementation by PsychoTea Designed by aesign
Now liberating pretty much every *OS 11.x.y device, for x < 2.
And yes, Code injection works, but CYDIA WILL NOT BE SUPPORTED. EVER. So please don't ask.
Jailbreak tool for iOS 9.2 - 9.3.3 Preparation: 1. Pangu jailbreak IPA file NvwaStone_1.1.ipa, avaible here.
2. Cydia Impactor.
(Special Note: This tool, developed by Saurik, is used to sign the ipa file so that Pangu jailbreak tool can be executed on iOS devices. Cydia impactors does not collect your apple id and password. All the information is only used for applying a personal free certificate from Apple.)
3. A computer (Cydia impactor runs on all major OSes, including Windows, OS X, and Linux)
4. A valid Apple ID. (In case that you do not want to use your current Apple ID to apply the personal certificate for any reason, we suggest you apply a new Apple ID and use it) Option “Use embedded certificate effective until April 2017" If you chose the option "Use embedded certificate effective until April 2017", Pangu 9 will install an app that is signed by a revoked certificate. Before April 2017, you will not need reinstall Pangu jailbreak app. If you want to sign the app with your own certificate, do not select this option. Limitations: 1. An Apple ID can only apply for a certificate for a limited number of devices.
2. The certificate will expire in 7 days. If your certificate gets expired, you need to follow the guide to install the jailbreak IPA again. To Apple Developers: If you have enrolled the Apple developer membership, signing the IPA file with your own developer certification is a better choice (i.e., Pangu jailbreak app will get expired in 1 year, rather than 7 days). Jailbreak guide: 1. Unzip the Cydia impactor file and run it.
2. Connect your iOS device to your computer and trust the computer on your iOS device.
3. Drag NvwaStone_1.0.ipa into Cydia impactor app.
4. Input you email address( it’s your apple id)
5. Input your apple ID password.
6. Click OK button to continue.
7. Cydia impactor will automatically prepare everything based on your inputs and sign the IPA file. If everything is OK, the IPA file should be installed in your iOS device correctly. If you get error notifications, you probably input incorrect Apple ID or password.
8. On your device, Tap Settings > General > Device Management. You then see a profile for the developer under your “apple ID” heading. Tap the profile to establish trust for this developer. (An Internet connection is required to verify the app developer's certificate when establishing trust.)
9. On your device, find Pangu App and run it.
10. Click the "start" button to jailbreak your device.
Lo más popular últimamente