PwnageTool Pwn Apple

The Dev Team just released the latest version of PwnageTool to jailbreak iOS 4. There are many requirements that your iPhone must fulfill in order to be jailbreakable with PwnageTool and you should make sure to read this before going ahead with the jailbreak process.

Let me make this clear, READ THIS before going any further in the jailbreak process. Your iPhone might not be eligible for a jailbreak.

Now that we have the “warning” out of the way, jailbreaking your iPhone iOS 4 with PwnageTool is fairly easy and straightforward. PwnageTool is a Mac only tool that is used to jailbreak while preserving the baseband to make sure you can unlock if necessary at a further date.

This step by step guide and tutorial will show you how to jailbreak your iPhone iOS 4 using PwnageTool.

Step 1: Download the latest version of PwnageTool from our iPhone downloads section. You will need a torrent downloader (ie. uTorrent) to download the file.

Step 2: Make sure iTunes is up to date (currently version 9.2). If not, update iTunes and reboot your computer.

Step 3: Sync and backup your iPhone in iTunes.

Step 4: Download the latest iOS 4 firmware from here for your specific device.

Step 5: Launch PwnageTool and select your iPhone.

Step 6: PwnageTool will automatically detect your firmware. Click on the blue arrow to continue.

Step 7: PwnageTool will now ask if you have an iPhone contract that you would normally activate with iTunes. Choose YES if you have a contract with an official carrier (ie. AT&T in the US) and you don’t care about unlocking your device. Click NO if you don’t have a contract with an official carrier and want to unlock your iPhone.

Step 8: PwnageTool will now create the custom IPSW.

Step 9: When done, you will see the “iHaz success” message.

Step 10: Now that you have your custom cooked firmware, you need to install this firmware on your iPhone. To do so, plug your iPhone in iTunes. Once iTunes has recognized your iPhone, hold the “Alt/Option” key and click “Restore” at the same time. DO NOT click “Restore” without holding the “Alt/Option” key! A dialog box will pop up and you’ll be able to choose the custom IPSW file you created.

Step 11: PwnageTool will now install your cooked iOS 4 firmware on your iPhone. This process might take a few minutes so be patient. When done, your iPhone will reboot.

You’re done!

Additionally, make sure to check out these instructions if you need to unlock your iPhone.

UPDATE: This post is slightly outdated. Check out this page for the latest jailbreak information.

  • Rob

    I’m trying to upgrade my jailbroken iphone 3gs old boot rom 3.1 to iOS 4 with Pwnage Tool. However, whenever I select the 4.0 firmware for iphone 3gs it says ‘wrong firmware bundle selected’. I’m positive I have the correct firmware version downloaded. Any help?

  • max

    hey guys
    i have Iphone 3GS – ios4
    old bootrom

    i downloaded pwnagetool and followed all the instructions from this page.

    yet, when i alt/option clicked on continue (at the restore page) it just restored as normal without a dialog box (step 10 above)

    what gives? and/or what did i do wrong?

  • max

    i found the “restore” button that step 10 was talking about
    i alt/option clicked
    chose my firmware

    pop up message says extracting firmware or something
    then goes to “preparing iphone for restore”
    and then it sits there for like EVER

    an error message pops up saying “The iphone “iphone” could not be restored. An unknown error occurred (1604)”

    what now?

  • sal

    i have iphone 3g
    it was running on 4.0
    and i tried downgrading it to 3.13 and it failed
    itunes gave me the 1015 error
    then i tried restoring it on itunes and it failed in the middle of restoring
    now its stuck on recovery mode and itunes does not give me the option to restore my iphone 3g
    any help is greatly appreciated

  • Jcuz


    I’m right along with ya. I was on 3.1.2 jailbroken with blackra1n, upgraded to 4.0, followed all the steps up top for pwnage, alt/opt clicked restore, picked the custom firmware and its stuck on “preparing iphone for restore”

    anyone know what the deal is????

  • Jeff

    iPhone 3GS successfully updated, but when I try to reinstall my jailbroken apps it keeps giving me error messages.

    What gives?

  • Tom

    Should the firmware used with pwnage tool be the official 4.0 or GMs 4.0?

  • Peter

    does this also work with ipod touch mc?

  • Paolo F

    Please Help me!
    after upgrading my 3G 16GB from 3.1.2 to 4.0, then jailbreak with redsn0w!
    no problems until I use my iphone for PC internet connection in tethering mode.
    After that the switch for tethering has disappeared from the menu and no way to connect to internet with the iphone

  • Matthew C

    I looked over the web and on the Devs website and I was just wondering
    if there is a possibility that they might soon be able to jailbreak and unlock a 3GS new bootrom running iOS4? I know it currently only works with the old bootrom but is there a solution for those with the new bootrom?

  • max

    iphone 3gs
    ios 4
    old bootrom

    how do i jailbreak and unlock?
    i tried the steps as i and jcuz mentioned earlier….

    but i got an error message at the “preparing iphone for restore”

    what gives?
    what do i do?

  • Luvapplehateatt

    Please help me understand and everyone please don’t criticize me too much for not knowing ( I mean, you also had to learn, right?) so someone explain to me what “jail braking” phones is.. the benefit of doing it? Understand a little, like maybe I won’t have to have AT&T as a carrier?? I absolutely hate AT&T and am totally willing to try it if it befits me. But what about the application store, iTunes library and up to date downloads from Apple??? Can I still use these??

  • donex96

    @ Luvapplehateatt : I have 3g 3.1.3 jailbroken with spirit but officially unlock from O2 (you can try unlock software after you have Cydia on the springboard also). After it done, I didn’t even sleep that night, so many application that can be put in the iPhone, and its all free, you named it, every application from Apple store is free (if you have no problem for intelectual property offence though). And guess what in my case I still can use iTunes normaly, my iPhone can sync with it, even up date the application I bought officially from Apple Store. My 3G iPhone is better than my friend 3GS OS 4 normal iPhone, but off course maybe people will experience differently.

  • Paj

    I just bought a used 3GS iPhone already upgraded to iOS 4. The phone has never been jailbroken or unlocked. The bootrom seems to be the old version. My questions are:

    1. Can I downgrade from iOS 4 back to the 3.1.2 firmware?
    2. Will downgrading back to 3.1.2 firmware allow me to jailbreak and unlock the phone (I have no desire to upgrade the phone once it is unlocked).


  • Apou

    I have a iPhone 3GS. It was at FW 3.1.2, JB with blackra1n. I have the old bootrom. I updated the phone to the official iOS4 version. Can i still JB it? I tried to do it following the instructions, but it failed saying there was a missing file/folder. What should i do?

  • Citrine

    Thanks for the tutorial, I am able to jailbreak my iPhone 3GS with iOS 4.

  • OJ

    I have the same problem that Max is having. Error 1064 when restoring 3GS 4.0 after creating custom firmware with latest PwnageTool for Mac. Can some of the experts tell us what to do next? What do we try? Anybody solved this problem without defaulting the phone?

    Thanks in advance

  • OJ

    I was able to restore back to original (4.0 code) by placing the phone in DFU mode following instructions found in the following link:

    I had backed up before attempting JB so everything went back to normal after restoring and re-synch.

    Net, net, PwnageTool didn’t work for me. Anyone knows of any other freeware JB tool that might work better with a 3GS 4.0?


  • E-Zee

    Hello guys
    i have a stupid question
    i have iphone 3gs 3.1.3 and i DID jailbreak it using spirit but my iphone stills on the old bootrom (baseband 05.12.01 iBoot is 359.3) (am i right ?!)
    so can i use the pwnage tool to jailbreak the new ios 4 or should i stay on 3.1.3 ??!!!
    help plz ^^

  • Echelon

    Ok this sucks. Why can’t you release Pwnagetool on Windows? Not everyone has OSX!!!

  • Thanks for the instructions on Jailbreak of iPhone 3GS for OS4.01.

    I did the PWNAGE under simple method and all worked fine except that Cydia and Bitesms have disappeared from my iPhone.

    So I tried PWNAGE again under the Expert mode but had the following error

    When I plug my iPhone and press ALt/option and restore button… goes to “preparing iphone for restore” and then it just got stuck there for awhile. Finally an error message pops up saying “The iphone could not be restored. An unknown error occurred (1604)”

    So I restored and recovered my iPhone from the backup and now have it in the same state as was after PWNAGE under Simple Mode.



    Thank you very much

  • Eden


    It’s been almost 3 month since the iso4.0 was released and we heard it’s possible to jailbreak it from the news of the beta.
    But since then they released 4.0.1 and very soon 4.1
    With no real jb solution out there (except for 3G and iPods,etc..)

    I am ready the try out a long method that might work.
    Downgrade to 3.13 with cydia
    Jb with redsn0w not spirit
    Use macox vm to download and recreate an ipsw package with 4.0.1 with pwnage tool 4.0.1 then restore with that package.

    Has that worked for anyone using the iPhone 3GS (md715ll) or similar ? Would inbe wasting my time?

    Alternatively go back to 3.1.3 then ios4.0 beta (or it’s too buggy)

    Let me know what you guys think ?


  • joanna

    can this be used on the iphone 4?

  • Norio

    Can the iPhone 3gs mc new bootrom IOS 4 be jailbroken already? I’m still on 3.1.3 and cannot wait anymore to upgrade!!

  • Ale

    Hey, so i need help, what’s a boot rom? and how do i know if it’s the right one?

    Also, i just downloaded the pwnage tool and it told me “no firmware bundle found” and i downloaded one off the internet, is that going to work?

  • keith

    iOS 4.0 Custom Activated With Cydia for iPhone 3GS

    This firmware only works with iPhone 3GS

    iPhone 3GS
    iTunes 10.0.1

    Use iTunes to restore this firmware.


    100% working, enjoy

  • aagruv

    tried limera1n,it unlocked but now not recognising my sim, do waht

  • Joao Roberto

    Hey i want to know what the version of IOS on iphone 4 right now , i have 4 iphones in my home for my family but i dont know why im not getting to unlock it , help me out !

  • Jon

    I kept getting an error that I had selected the wrong firmware bundle. I tried using (thanks Sebastien) instead and it worked like a charm! iPhone 3GS 4.0 5.13.04.

  • aagruv

    are we expecting for the downgrade from 6.15 soon, m missing my equipment