Downgrade an Unsigned iOS Firmware Version With SHSH2

Downgrade or upgrade to an unsigned iOS firmware version

iOS hacker tihmstar has announced that he plans to release a new tool called Prometheus, which will allow users to downgrade or upgrade to an unsigned iOS firmware version.

He had also released a new tool called tsschecker which allowed you to save .shsh2 blobs, which would be required by Prometheus to downgrade or upgrade to an unsigned iOS firmware version.

The method to save the .shsh blobs wasn’t straightforward for the not so technically inclined. Thankfully, 1Conan, a reddit user has stepped up and created an online tool called auo-tsschecker that will save you the trouble of executing the commands and instead will automatically save the .shsh2 blobs for you for the currently signed versions.

To use the online tool, you need the ECID and your iPhone, iPad or iPod touch’s device identifier.

How to get your iPhone, iPad or iPod touch’s ECID

• Plug your iOS device to the computer.
• Launch iTunes and click on Summary in the left-hand pane.
• Click on the Serial number field in the Summary tab until you see the ECID.
• Right-click on it and copy it to the clipboard.

Please note that you need a hexadecimal ECID (if the ECID has letters than it is already in hex), if you submit a decimal ECID then it will not save the correct .shsh2 blobs. You can visit this website to convert the decimal ECID to a hexadecimal value.

How to Get your iPhone, iPad or iPod touch’s Device Identifier

• Just like the ECID, click on the Serial number field in the Summary tab until you see the Model Identifier.

How to Save .SHSH2 Blobs for iPhone, iPad or iPod touch

• Open the following link: https://tsssaver.1conan.com
• Paste the ECID you had copied above.
• Select your device type i.e. iPhone, iPad or iPod touch.
• Next, enter your iOS device’s identifier, eg. If your iPhone’s model identifier is iPhone9,1, then just enter 9,1 in the identifier field next to the device type.
• Press Submit.

That’s it. It will take you to the result’s page, and give you the link to your saved .shsh2 blobs. In case you lose your link, you can get download your .shsh2 blobs again by visiting https://tsssaver.1conan.com/shsh/ (please convert the HEX ECID to decimal first).

Wasn’t that an easier method? The best part of the method is that it will save the .shsh2 blobs automatically for you for any new iOS version Apple may release in the future, so you don’t have to go through the hassle of saving it manually every time Apple releases an update.

It is always great to see people like 1Conan stepping up to help the jailbreak community. So kudos to him. You can visit the reddit page to find out how you can make a donation to him to help him keep the server running.

Other Methode Youc can READ HERE

Let us know how it goes. We’ll let you know as soon as tihmstar releases the Prometheus to downgrade or upgrade to an unsigned iOS firmware version. Don’t forget to join our Facebook Fan page, follow us on Twitter, add us to your circles on Google+, subscribe to our RSS feed or our Daily Newsletter for the latest jailbreak news.

Prometheus Tool iOS Downgrade For iOS 10.2

Prometheus Tool iOS Downgrade For iOS 10.2

If you’ve been following all the jailbreak news recently, you may be aware that iOS hacker tihmstar announced that he will be releasing the Prometheus downgrade tool soon. The good news is that he released the tool today and it is now available for download.

Prometheus is a tool that will allow jailbreakers to downgrade or upgrade to an iOS firmware version even when Apple stops signing it. The process of downgrading is not straightforward and requires saved .shsh2 blobs, otherwise you won’t be able to downgrade.

The hacker explains the entire process of downgrading in this video (or you can follow the step-by-step guide here):

Unfortunately, users on Reddit are reporting that Apple has already patched this hack. When using the Prometheus tool, an error will be displayed stating that Apple’s TSS server is down and that the firmware cannot be signed. Additionally, Apple’s TSS page is displaying a “Server not ready” message, which might be due to the fact that they are making changes to block any attempt to downgrade using Tihmstar’s tool.

Many non-jailbroken users are still able to update their devices, which is an indication that the TSS server is actually not down, but is blocking any downgrade attempts from the Prometheus tool.

It is no surprise that Apple has patched this hack so quickly, as any attempt to bypass their platform restrictions is frowned upon by the company.  We’ve seen many times how responsive Apple has been in patching new jailbreak tools that get released to the public.

Tihmstar hasn’t responded to this news yet, so we’re yet to see an official statement from the hacker and if there’s any workaround to this patch. Stay tuned with us for further updates.

Like this post? Share it!

Apple Stops Signing iOS 10.2. Save Your SHSH Blobs

Apple Stops Signing iOS 10.2

Over the past few days, my colleagues and I have reported on Todesco’s exploits and the growing array of 64 bit Apple devices Yalu102 supported. However, today’s news changes everything from a jailbreaking perspective, because if you didn’t heed our warnings and downgrade or upgrade to 10.2. I am afraid to say your chances of jailbreaking have become much more difficult!

That being said, though if you did take one piece of advice and managed to save your SHSH2 blobs there is still a way for you to jailbreak. Just follow the previous link, and everything will be explained, including what an SHSH2 blob is and what to do with them.Unfortunately, if you didn’t save them for iOS 10.2 when Apple was still signing the firmware, you’re out of luck. Because that means, you can no longer downgrade or upgrade to iOS 10 .2, meaning that for know you’re trapped.

Todesco’s work and the Future

Just yesterday I reported on how Todesco had delivered on his promises with a 6th beta installment of his solution. However, it seems as though he had been working overtime to get almost all 64-bit devices compatible. As today he released yet another Yula102 jailbreak in the form of beta 7. And it includes support for the iPad Air 2 and iPad Mini 4, but not the two iPhone 7’s.

For some though this may come as bittersweet news considering Apple’s quick move to prevent iOS 10.2 jailbreaking. As for what Todesco will do next, he has previously stated that when he releases his 10.2 solution that’s it. Meaning, he will no longer produce publically available jailbreaks. However, it’s too early to tell whether Apple’s move will prompt him to stick with it and create more solutions.

But what if Yalu102 is the final public work he produces, who then will pick up where he left off? The usual suspects are either the Chinese PanGu or TaiG teams; however, each has been quiet for some time. So, the only piece of advice I can now give you is to keep visiting our site or social pages. Because as soon as my colleagues or I know anything, it will be published!

In the meantime, if you have any questions or want to share something, please do so using the comments section below.

Free Bypass iCloud Activation iPhone 5 Eeprom Solution

Bypass iCloud Activation iPhone 5 

Here We provide you the most wanted iCloud Unlock Method, iCloud Unlocking by hard ware change

Remember : This is a permanent iCloud Unlock Solution , This method has been tested with all iPhones, Little Hard ware knowledge is Required to use This Unlock Method , You Just Need to Replace Three IC’s From Your Phone to remove Your iCloud Lock.

• Make Sure Your Phone is Working good Only iCloud is locked
• Arrange a Physically Damaged iPhone make Sure its Not Locked to Network or iCloud
• Arrange Proper Screw Drivers , Blower and other Equipments To open you iPhone
• Open The Phones and Search For these IC’s
• U601-RF, U4, U501-RF ( known as BasBand, HDD or Memory and EEProm ic )
• Safely Remove these IC’s From the Damaged Phone and keep in Safe Place
• Also Remove these IC’s From your Phone
• Clean your iCloud Locked iPhone Board
• FIX the IC’s into your iCloud Locked Phone carefully
• Power ON your iPhone
• it will Stuck on Recovery
• Connect to iTunes and Restore or Update
• Phone will Boot up Without any Activation Lock

Bypass iCloud Activation Lock iOS 10 Hardware Solution

Bypass iCloud Activation Lock iOS 10 Hardware Solution

What should I do if I suddenly forget my iCloud ID’s passcode? How can I remove my iPhone’s lost mode when my iCloud ID and passcode are stolen and changed by someone else? Where is the solution if i have lost my original purchase certificate and packaging box? Is it possible to unlock my iPhone through a software unlock method?  

HOW TO WORK ?

 

 

On the above photo, there are respectively 16GB hard disk/flash storage(serial number is stored here), baseband and chip from left to right. Baseband and chip are a whole set, and baseband must work with the IMEI which is stored in chip.

In general, what we need to replace are those three components, hard disk(flash memory), baseband and chip. However, some masters have cracked the data read/write of iPhone 5S’s chip; now we only need to replace baseband and hard disk, then use the particular IMEI box to write the IMEI into the chip.

Let’s see the locations of those three components.

 

1.  Use hot wind to disassemble the hard disk.
   
   

 

2. Deal with the ponding pad of hard disk.

 

3. Continue to dissemble the baseband.

 

4. Deal with the ponding pad of baseband.

 

5. Import the data of new chip into the original ID panel.

 

6. Assemble the new hard disk and baseband, then use 3uTools or iTunes to flash this iPhone 5S.

 

7. Now you can boot and activate it, and use it normally.

 

Now the whole process of unlocking Apple iPhone 5S’s iCloud ID is complete. Currently 3uTools is an iOS jailbreak and flash tool, and the next big update will add many more features. To view 3uTools video tutorials, you may search 3uTools on Youtube.

If you have any questions about iOS and 3uTools, please post them on 3uTools Facebook group "3uTools for iOS Users".

Delete iCloud on IOS 10.2 Activated iPhone

Remove iCloud on IOS 10.2 Activated iPhone

This steps will help you remove iCloud if your iPhone is activated. Activated means your can use your iPhone/ipad as normal , make calls, send sms, open apps etc. If you have one iCloud signed into your iPhone you can remove the old iCloud and use the phone on same way was before. this method is updated for new iPhones 7 and iPhone 7 plus also working on IOS 10.x to iOS 10.2.1.

how this works ? please follow the video tutorial step by step to remove iCloud successfully .

1. First you need download this backup from IOS 7.1.2 patched to work on all devices. Download
2. unzip the file and add all files and folders into your backups / iTunes, in mac will be here:  (~/Library/Application Support/MobileSync/Backup/  ) in windows To find a list of your backups, go to ( \Users\(username)\AppData\Roaming\Apple Computer\MobileSync\Backup\ )
3. now install ibackupbot free version mac and windows .
4. go to iPhone iOS 10.2 and reset all settings in general settings press yes reset , your iPhone will restart thats ok .
5. go to ibackupbot and right after iPhone restart ibackupbot will detect your iPhone , here you must be quick to press on restore backup icon on top tab on ibackupbot . 
6. Choose the backup you just add on back folder and ibackupbot will inject into your iPhone.
7. wait for all processe finish in some cases the iPhone will restart twice . also a scree with restore in process will show up.
8. after restart you will not have the old iCloud. just add new one and go to iCloud to confirm its ON for new iCloud account .

Remove iCloud on IOS 10.2 activated iPhone

DOWNLOAD BACKUP ICLOUD FREE

BACKUP 1 

BACKUP 2

IbackupBOT

NOTE : this will not remove old iCloud from apple servers but you still can update your iPhone using OTA and if your are on any jailbreak version you can jailbreak .

BlueCl0ud Automatically Downgrade or Upgrade Signed Firmware

BlueCl0ud Automatically Downgrade or Upgrade Signed Firmware

BlueCl0ud Automatically Downgrade or Upgrade when firmware is resigned this is a simple windows tool based on idevicerestore will make your update or downgrade very easy. try BlueCl0ud in windows just running the .bat file.

Automatically repeats restore attempts, hopefully until the firmware is signed. Should work on iOS 10, positively works on 9 and below. Not sure about the iPhone 7. Should the selected firmware be signed, the restore will repeat multiple times until it is no longer signed. This is okay, a failed restore caused by a firmware not being signed is not dangerous.

BlueCl0ud v2 or Here From Mega

EDIT: Baseband Blobs are acquired after normal blobs. If you have an iPhone or cellular iPad and apple stops signing during your restore, it may fail. Please plan accordingly. iPhone 7 is also NOT supported unfortunately.

EDIT 2: If you wish to unplug your device after a restore, please make sure it is actually finished!

To Downgrade please run BlueCl0udErase.bat – ALL DATA WILL BE ERADICATED.

PLEASE DO NOTUSE THE UPGRADE TOOL AS UPGRADING TO AN OLDER FIRMWARE CAN RESULT IN MANY ISSUES

To Upgrade please run BlueCl0udSave.bat – User data SHOULD be retained.

To use, simply rename the ipsw you want to “Firmware.ipsw” and drag into the folder.

Then run  BlueCl0udSave.bat

idevicerestore is created by nikias, posixninja, FunkyM, zbalaton, aburgh, and boxingsquirrel.

Download Here

The github readme is as follows:

BlueCl0ud developed by @Sp1nny_

About

=====

The idevicerestore tool allows to restore firmware files to iOS devices. It is a full reimplementation of all granular steps which are performed during restore of a firmware to a device. In general, upgrades and downgrades are possible, however subject to availability of SHSH blobs from Apple for signing the firmare files.

To restore a device to some firmware, simply run the following:

$ sudo idevicerestore -l

This will download and restore a device to the latest firmware available.

Requirements

============

Development Packages of:

libimobiledevice

libirecovery

libusbmuxd

libplist

libzip

openssl

Software:

usbmuxd

make

autoheader

automake

autoconf

libtool

pkg-config

gcc

Installation

============

To compile run:

./autogen.sh

make

sudo make install

Who/What/Where?

===============

Home:

http://www.libimobiledevice.org/

Code:

git clone http://git.libimobiledevice.org/idevicerestore.git

Code (Mirror):

git clone https://github.com/libimobiledevice/idevicerestore.git

Tickets:

http://github.com/libimobiledevice/idevicerestore/issues

Mailing List:

http://lists.libimobiledevice.org/mailman/listinfo/libimobiledevice-devel

IRC:

irc://irc.freenode.net#libimobiledevice

Credits

=======

Apple, iPhone, iPod, and iPod Touch are trademarks of Apple Inc. idevicerestore is an independent software tool and has not been authorized, sponsored, or otherwise approved by Apple Inc. idevicerestore was compiled for windows by elrhk.

Link: https://github.com/elrhk/Libimobiledevice-idevicerestore-for-Windows

Readme:

Libimobiledevice for Windows

You’ll find here the last libimobiledevice updates for Windows.

Download Here

Credits

Thank you :

libimobiledevice team : http://www.libimobiledevice.org/

Built for Windows by Elrhk (@Dev__Jam)

Tested by @matteyeux

Tested by @B00tsn0w you can also check his tool : FirmwDown

Bypass iCloud Activation By HOME SERVER

iCloud BYPASS HOME SERVER

iCloud BYPASS HOME SERVER Works on lost mode devices locked

This is a full working tutorial for those how need unlock , or icloud bypass for free , you can do it, a home made server to delete the icloud from de iphone, ipad, ipod in lost mode, this is the only full working solution available , here you will find all software you need. Please note this is not a permanent solution yet. You will still not have carrier service , not Push Notifications, its a tethered icloud bypass ( it means you need do this process every time you reboot) and more bugs related to icloud id , but you can jailbreak it and find aeasier way to fix the issus until the final release icloud bypass.

myicloud.info team release a identical tutorial 2 month ago in downloads area but his one is updated more stable. tks to @ xSnivyn

What you Need
1 – Donwload XAMPP
2 – Fiddler 2.4.9.6
3 – baarney file

ALL STEPS :
1. Install all the programs
2. Download the file and create the following directory – C:/xampp/htdocs/deviceservices/buddy/
3. Place the downloaded file in the folder created “buddy”
4. In Fiddler, at the top press “Tools” and then “Fiddler Options”
5. Make it look like this picture (Pic)
6. Edit your hosts file by adding this line: 127.0.0.1 static.ips.apple.com
7. Start Apache in XAMPP and restart Fiddler
8. Open cmd (as admin) and type “ipconfig”
9. Look for the line that shows your local IP ( Exp: 192.168 .X.X )
10. On your device, press the home button and tap “More Wifi Settings” after connecting to WiFi
11. Scroll down to “HTTP Proxy” and tap “Manual”
12. Server is the IP address from step 9 and your port should be 8888
13. Tap “Back” then “Next”
14. Tap “Activation Help”

Bypass iCloud Lock on iPAD 2 Emoji

iCloud pass the use of emojis iPad smart Case

iCloud pass the use of iPad smart Case its now not new, many different videos in the past show one iPhone or  iPad with lock screen being bypassed leaping into springboard after many emojis icons attempts .

WHAT iPad smart Case will do?

What an iPad clever case will do is, If we lock the display screen using this magnetic smartcase and unlock it via establishing the case it's going to display the equal vintage display screen thereby sending the request again.

Apple iOS v10.1.1 – iCloud & iDevice Lock Activation pass through local Buffer Overflow Vulnerability (Wifi community form & Rotate)

that is iPad air version

http://www.apple.com/ipad-air-2/

icloud-ipad-bypassicloud-pass-ipad-wifibug-icloud-skip-display

The hassle of this bypass is after you get the springboard icons the iPad firmware could be without delay go back you on iCloud lock display. Will let you see the springboard in only few instants.

Is there some reviews if the iPad isn't restores or erased it will be viable bypass the lock screen. and will let you run the springboard however simplest will open some apps no longer all . however the usage of this you may take a look at come records from the iPad like iCloud id, electronic mail and proprietor call .

Apple iOS v10.1.1 – iCloud & tool Lock Activation skip thru nearby Buffer Overflow Vulnerability (Wifi community shape & Rotate)