DevTeam

iPhone 3G Unlock Coming Before New Year

Sébastien Page ∙ December 15, 2008

A new rumor is circulating about a possible software unlock for the iPhone 3G sometimes soon after Christmas. This is just a rumor so don't get too excited but it is however true that the Dev Team has been progressing a lot towards this soft unlock.

This software unlock would be only available for 3G users that are still on 01.45.00 baseband, which is the baseband of firmware 2.0. Remember when I published my firmware 2.2 jailbreak tutorial? I warned you that this method would be good only if you didn't care about a future soft unlock. Well, this future soft unlock is now coming and if you haven't followed my warning, then you won't be able to unlock.

This is pure speculation at this time as there is no real evidence of a post-Christmas unlock release. I asked MuscleNerd (key Dev Team member) about it but it didn't comment whether it was true or not.

So, what do you think? Rumor or real info?

Read More

Exclusive Interview With A Dev Team Member

Sébastien Page ∙ December 3, 2008

This interview was featured on AppleBlog.Blog.hu and was sent in and translated by Hungarian reader panicradio. It is extremely rare that Dev Team members give interviews, and while this is not MuscleNerd, or PlanetBeing speaking here, it's always nice to have an insight on what these guys do and how they do it. Dev Team member, if you read this, hit me up as I'd love to get an interview with you directly.

First of all congrats for the job you did so far, but I think you already know that half of the world is supporting you!

Thanks! Me and my wife read your blog, and after you wrote about the Dev Team, we thought it would be a good idea to find you. Your blog is the first hungarian language blog or newsportal we communicate to directly.

Special thanks for that. Let's start with who the members of the Dev Team (no names of course) are, and how you organize your work since you are living in different countries, continents.

Members of the Dev Team are software, electronics and cryptographics professionals from all over the world. The members of the team - or much more, the core - are from Hungary, France, Belgium, England, Russia, Israel, Ukraine and the USA. We work in a way, that we distribute our work files among us, and with team work, we put the ideas together. The average age is about 30 years old. Most of us don't know each others name and never met each other.

How many are you?

Everyone has a full time job - and of course this has influence on the Dev Team's work, but usually there are 15 active members working on the job at the same time.

How do you organize, where does the idea come from to hack the iPhone, and why did you set it up?

We are high tech enthusiasts and hackers... hackers in a good way. We like to crack things and see how they work. Most of us have worked with UNIX and OS X for a long time. Few of us knew the others from there, and other professionals have joined later, those whose work we appreciate a lot.

Do you get any threats or "feedback" from Apple? Did you have any contact with the company?

Apple never made contact with us. We make sure we never break the law when we release a new software. PwnageTool and QuickPwn are very complicated, because these softwares remove the necessary parts from Apple's firmware. We NEVER release pirated softwares.

How much time do you spend on the crack, and other iPhone-related works?

We are working on it 24 hours a day. While one of us are working on it, others are sleeping, and we continually switch. IRC is running in the background all the time, even when we are working onour private jobs, so we have worked on the iPhone thousands of hours. I have to mention, that we spend a lot of money on special hardware and reverse engineering softwares, also from our own money.

Do you get any donation, do you make any profit out of the huge work you made anyway?

We finance everything with our own money. Most of the team has a good job that pays good money in the IT field. The Dev Team is our hobby and although it is very time consuming, yet it still is a hobby. We didn't take money from anyone!

How many people cracked their iPhones with your program? Do you have any idea how much iPhone users freed their phones?

We have more than hundred thousand recurrent PwnageTool and QuickPwn users. It is hard to estimate how many exactly, but a lot.

Why it is so hard to unlock the iPhone 3G? What is the main difference between 2G and 3G that has prevented the unlock so far?

Apple and Infineon made a very serious work and made almost impossible to unlock the iPhone 3G. They learned from what we did with 2G and made the 3G much more safer.

How far are you from suceeding with the unlock?

This is secret of course.

How deep was the 2.2 baseband update? If you want to make a sim-unlock on this as well, do you have to start the job from scratch? So, if someone accidently updated the baseband, does he have to give up, or does he still have a chance to unlock his phone?

At the moment the exploits we used to run our codes on 2.1 and older basebands has been removed from 2.2. 2.2 closed the security breach we used to control the baseband as we wanted and at the moment 2.2 baseband is bad.

What do you mean "bad"?

In 2.2 baseband there is no such an exploit we can use, so it is bad :-).

What do you think about the sofware and hardware of the iPhone 3G compared to other smartphones?

The iPhone OS is very advanced technology. It is years ahead of everything you can buy on the market at the moment. And yes, I am an Apple fan, but nobody can deny that iPhone is almost futuristic. T-Mobile's G1 is the second best device after iPhone, but it is still behind 18 months at least I think.

Why do these two devices have advantage over others?

The iPhone OS is based on UNIX/Mach operating system, and both UNIX and Mach is a result of many years of developement. G1 is using Linux, which has a similar story. Fortunately nowadays mobile processors are powerful enough to use UNIX.

What kind of deficiency does the iPhone OS have, and in which direction would you develop it, if it depended on you?

It would need to be more open.

Why and for who do you do your work?

First of all for myself, for us, and for the people who prefer an unlocked phone. We bought a flat in Budapest with my wife, and the agent does not come to our home every week to check if we had painted the walls red, does he? The situation is similar with the IPhone and other devices we buy as well.

What do you do on week days?

We work and play. We have a very special Hungarian Vizsla (deerhound), he keeps us busy all the time.

Why did you choose a pineapple as your logo?

Apple/Pinapple, Pwn/Own, PwnApple (Pwning Apple)

Read More

Linux Running On The iPhone

Sébastien Page ∙ November 28, 2008

This piece of news might mean something for iPhone geeks out there,but I guess the average iPhone owner couldn't care less... Dev Team member PlanetBeing found a way to port Linux 2.6 kernel to the iPhone.

This is a rough first draft of the port, and many drivers are still missing, but it's enough that a real alternative operating system is running on the iPhone.

.

Visit PlanetBeing's blog for the download.

Read More

iPhone 2.2 Jailbreak Officially Out!

Sébastien Page ∙ Updated January 23, 2016

I knew it wouldn't take too long to the Dev Team to come up with a new jailbreak method for firmware 2.2. They just released an important message on their blog that every jailbreaker should read before attempting to pwn their iPhone.

I don't like copying large part from other people's blogs but I feel like it's necessary in this case as I want to make sure you fully understand the methods and the risks you're taking if you decide to go ahead and jailbreak your iPhone. You can also read this post on the Dev Team's blog.

GOLDEN RULE: If you have a 3G iPhone and want potential soft unlock in the near future do NOT use QuickPwn, and do not use the official ipsw or the iTunes update process without using PwnageTool. Read item 1 again and again. At the bottom of this post are the bittorrent files for the latest versions of PwnageTool and QuickPwn. These are suitable for the recent 2.2 release. Please read all parts of this post before downloading and using these tools. The ‘late 2008’ MacBook/air/pro line of computers have an issue with DFU mode, it is possible to go from Pwned 2.1 -> 2.2 but going from stock to Pwned does not work, if in any doubt use a different machine. Choosing the correct tool is crucial. Be warned!

Baseband 101

The ‘baseband’ is the generic name given to the internal components of the iPhone that handle the phone calls and Internet access. This ‘baseband’ is a tiny and unique independent computer system that runs inside your iPhone, it is separate to the main system that handles the applications (such as email and google maps) and it talks to the main part of the phone over an internal communications network. Think of it like a cable modem or other peripheral that is attached to your home PC that needs occasional updates. When a software update is released and presented to you within iTunes the baseband is sometimes updated (to fix bugs or add new features). The 2.2 update for the iPhone 3G contains such an update, so running the vanilla updater straight away with iTunes will reprogram and update the baseband. This could be bad for certain people, depending on your ultimate aim.

SIM Free/SP Unlocked/Factory Unlocked iPhone 3G

This applies if you bought your iPhone 3G for $$$$$$$. This model of iPhone 3G doesn’t have an Service Provider lock (aka factory unlocked) and you are able to put any SIM card into the phone and get service. Your phone is already unlocked so you do not need to worry about baseband updates, simply upgrade to 2.2 using iTunes and then use QuickPwn to Pwn and Jailbreak. This will add Cydia and Installer too.

Locked iPhone 3G - Preserve Baseband

This applies if you have a locked iPhone 3G and you wish to update to 2.2 but preserve the iPhone’s current baseband software. Preserving the baseband will give you the maximum chance for any upcoming software unlock. To upgrade your phone to 2.2 and preserve the state of the baseband you need to create a custom .ipsw with PwnageTool. This custom .ipsw will not contain the baseband update but of course will still allow all the cool new stuff from 2.2.

There are plenty of tutorials about this process on the web, but PwnageTool contains intuitive graphics and easy to follow prompts that should have you up and running in no time at all.

Locked iPhone 3G

If you are using your iPhone with one carrier and have no interest in the possibility of an iPhone 3G unlock in the near future then just restore or upgrade to 2.2 using iTunes and use QuickPwn to Jailbreak and add Cydia and Installer.

Locked iPhone 2G (1st Generation)

Restore your iPhone 2G with iTunes then run QuickPwn to do the magic, ‘nuff said.

iPod Touch 1G (Original iPod Touch)

Update to 2.2 with iTunes and run QuickPwn.

iPod Touch 2G (New iPod Touch)

Sorry, no support at this time.

Bittorrent Releases

PwnageTool 2.2 for Mac OS X is here SHA1 Sum - 97ee6096aaa1967498431bf01c36c18d0e877545 QuickPwn 2.2 for Mac OS X is here SHA1 Sum - 254b8af0e19870a4660b7b11e3b6f6ae1d6bc66f QuickPwn 2.2 for Windows is here SHA1 Sum - ffdbc561224c61ffc2713cb6a6e696b6d429c4ca

I'm gonna be working on a QuickPwn 2.2 Guide and a PwnageTool 2.2 Tutorial and I should post this within hours.

UPDATE: I wrote new tutorials on how to jailbreak or unlock your iPhone 2.2 firmware using QuickPwn:

jailbreak iPhone 2.2 unlock iPhone 2.2
Read More

iPhone 2.2 Jailbreak

Sébastien Page ∙ November 21, 2008

Update: The Dev Team cracked the code again and you can now jailbreak your iPhone 2.2 firmware. I highly recommend you read this before doing anything!

Update 2: I wrote new tutorials on how to jailbreak or unlock your iPhone 2.2 firmware using QuickPwn:

jailbreak iPhone 2.2 unlock iPhone 2.2

Like I mentioned in my previous post, there is no jailbreak available so far for iPhone firmware 2.2. The Dev Team is working on it and from what I understand, it shouldn't take too long...

We believe that our Pwnage technique (and therefore the Jailbreak) isn’t affected, but PwnageTool and QuickPwn do not support this release as yet, so DO NOT install 2.2 using iTunes as you will lose your jailbreak.

It's also worth noting that if you're on a jailbroken iPhone, you really don't want to update using iTunes yet as it may modify your baseband and make future jailbreak and/or unlock impossible.

I suspect that it will take a few days to the Dev Team to update PwnageTool to allow it to jailbreak your iPhone firmware 2.2, so please hang on... Once PwnageTool is released, other methods including WinPwn, and QuickPwn will be following.

We will let you know as soon as PwnageTool, WinPwn, and QuickPwn are available, and we will also release our tutorials on how to use them. You may want to subscribe to our RSS feeds (if not done yet) to keep in touch and be notified as soon as the news fall.

Read More

iPhone Firmware 2.2 is Out. Jailbreakers Should Not Update!

Sébastien Page ∙ Updated January 29, 2016

The rumor was right... Apple did release firmware 2.2 last night and for once, it seems that we have some useful features added:

Enhancements to Maps:

Google Street View public transit and walking directions display address of dropped pins share location via email

Enhancements to Mail

resolve isolated issues with scheduled fetching of email improved formatting of wide HTML email

Other Enhancements

Improved stability and performance of Safari Podcasts are now available for download in the iTunes application (over Wi-Fi and cellular networks) Decrease in call set-up failures and call drops Improved sound quality of visual voicemail messages Pressing the Home button from any Home screen takes you the first Home screen Preference to turn on/off keyboard auto-correction

Apparently, iPod Touch users don't get the Google Maps upgrade that includes the addition of Street View as well as public transit and walking directions.

Like they did earlier this week, the Dev Team warns us about updating the iPhone using iTunes.

So, as anticipated our friends the misfits have recently released the long awaited 2.2 update. We can confirm that this update SHOULD NOT be applied using iTunes if you want the chance of a soft-unlock in the near future.

If you want to keep that option of a ‘soft-unlock in the near future’ available but you want the new features of 2.2, you will be able to update to 2.2 using a PwnageTool created custom ipsw file that disables the baseband update. You will be able to do this using an updated version of PwnageTool that will be released sometime soon.

Some facts -

The 2.2 firmware for 3G contains a baseband update for the 3G iPhone The 2.2 firmware for 2G (1st gen iPhones) doesn’t contain a baseband update and the baseband is still at 04.05.04 We believe that our Pwnage technique (and therefore the Jailbreak) isn’t affected, but PwnageTool and QuickPwn do not support this release as yet, so DO NOT install 2.2 using iTunes as you will lose your jailbreak If you apply this update and you previously relied on PwnageTool or QuickPwn to activate your phone, it may become temporarily deactivated and unusable (until we release the new version of PwnageTool or QuickPwn). PwnageTool and QuickPwn updates will be released as soon as possible that will allow a safe update path to 2.2 the release of these updates is inevitable but not imminent, we are creating the modifications right now and we need to put the new software through the usual testing process. If you apply this update and you have third-party (non AppStore) applications  that you rely on they will stop working. 2G (1st gen) iPhone users who cannot wait for the new PwnageTool or QuickPwn can safely “Update” to 2.2 using iTunes, this will preserve the existing activation. However “restoring” to 2.2 using iTunes will return the iPhone to the unactivated state. If you are in any doubt just wait. NB: This works for 2G ONLY. The use of SIM-Proxies (small circuit boards/chips that sit underneath the SIM card) to provide GSM/UMTS service on your locked iPhone 3G is a method that we have always advised against. Early reports suggest that the 2.2 update disables the functionality of these devices. The techniques used were always unreliable and we are surprised that they have lasted this long. We are not working on the 2nd generation iPod touch at the moment, so we cannot comment on what the the 2.2 software update may do to this specific model

So, as always, if you are in any doubt whatsoever please delay the install of this firmware on any of your devices until we have investigated the release in more detail. Watch this space ;-)

Also, iTunes 8.0.2 is out now. I doubt this will make much difference either way, but ask yourself, why bother. Just because a new version is out doesn’t mean you want it. I would hold off on this also.

iPhone Firmware 2.2 and iTunes 8.0.2 are both available from the downloads section of our blog.

Read More

DevTeam getting closer to 3G unlock

Sébastien Page ∙ Updated January 29, 2016

It had been a while since we had heard from our favorite team of hackers, namely the DevTeam, but today they posted on their blog, giving us an update about the status of the iPhone 3G unlock.

We made some significant 3G progress this week.

Here’s a screenshot of a 3G iPhone whose baseband has been modified.  And even though it’s modified — and fails the integrity check — it’s still running.  Can you guess where the patch was made?

So, can you guess where the patch were made??

Read More

Where is Cydia from?

Sébastien Page ∙ October 8, 2008

For those of you that are not familiar with jailbreaking, Cydia is an open-source distribution platform created by Jay "Saurik" Freeman that is now automatically installed on your iPhone with the DevTeam jailbreaks such as QuickPwn and PwnageTool. Cydia is pretty much the equivalent of the App Store and lets you download, install and update applications developed by independent developers.

But where does this name come from? Cydia? Erica Sadun, who happens to be my all-time favorite iPhone blogger (she used to be with TUAW until they start screwing their writers over and is now working over at Ars Technica) wrote a very interesting post today about the origins of Cydia.

Cydia pomonella is the scientific name for the coddling moth, which as Freeman writes "is what we often think of the as the stereotypical apple worm." He adds, "I felt the name was fitting." It's certainly easier to say than Rhagoletis, after Rhagoletis pomonella, the apple maggot.

Freeman regularly gets e-mails from people asking how to say the name. He jokes that they write "'Please help me win this bet I have with my friend: is Cydia pronounced see-dee-uh or sigh-dee-uh.' It's always two incorrect choices." For the record, the correct pronunciation is sih-DEE-uh. Or it is at least for the moment. "I don't actually speak or study Latin, but I am a linguistics student." He adds that he's open to corrections from Latin experts.

Read the full post here.

Read More

DevTeam still working on 3G unlock

Sébastien Page ∙ October 6, 2008

The DevTeam posted today on its blog that it is still working on the iPhone 3G unlock. They apparently broke some hardware in their testings but got it back to work after a round of upgrades and downgrades. I don't like copy/pasting large parts from other people's blogs but in the DevTeam's case, I always find it hard to paraphrase them and it makes more sense to give you the full text. Read the full post here.

Disclaimer!! This is a purely technical post with no pragmatic use! There is no 3G unlock in this post. There is no iPod Touch 2G jailbreak in this post. It’s just a random technical post related to the 3G unlock.

We’ve been exploring different ideas with the 3G unlock, but this past weekend one of us hit a big snag. For whatever reason, all of our poking and prodding of the 3G baseband caused it to finally have a breakdown. After one specific exploit run, all of a sudden our baseband stopped responding to the OS.

Somehow our software hacking had caused the baseband chip’s SPI bus to stop responding (so it looked like a hardware problem). Even though BBUpdaterExtreme reported the correct baseband version, it failed basic tests like memtest.

If you’re familiar with the baseband revision history for the 3G iPhone, you may have noticed that the above captures were done at the original 01.45 baseband. As dire (and hardware-related) as these messages sounded, though, there was a simple solution. We just updated to 01.46 and then downgraded again (because we can run unsigned code on the baseband CPU) to 01.45.

We tried to recreate the problem by using the same exploit over again, but it doesn’t appear to be reproducible (which is actually disappointing, as it might have been exploitable).

Read More

News from the DevTeam

Sébastien Page ∙ Updated January 29, 2016

How much do you love the DevTeam? These guys are working day and night so you don't have to rely on Apple to provide you with great iPhone applications. I believe I use more jailbroken applications than I actually use "Apple approved" apps. All this thanks to the DevTeam.

Today, the DevTeam updated us on the status of their work.

While we continue working on the two current remaining challenges from Apple (the iPhone 3G soft unlock and iPod Touch 2G jailbreak…see the end of this post), we’re also watching the latest beta releases from Apple.

The first beta 2.2 from Apple reveals a few things:

They’re continuing with their ski-resort theme;  Version 2.2 is nicknamed TImberline. They’ve gone back to using expiry dates.  The first 2.2 beta is due to expire on November 30, 2008.  They stopped using expiry dates about halfway through the 2.1 betas, but for some reason they’ve started using them again. Version 2.2 is still vulnerable to pwnage and quickpwn on everything but iPod Touch 2G.

To demonstrate point #3, here’s the non-AppStore application Terminal.app running on 2.2, showing the kernel build information.

Hardware already vulnerable to pwnage remains vulnerable in version 2.2.

Regarding the two current challenges:  the 3G iPhone soft unlock and iPod Touch 2G jailbreak are still relatively new challenges (compare them with the timeframe of the iPhone challenges last year).  We’re making slow advances on both fronts, but it’s not the sort of thing that can be easily described in a blog like this.

But, to maybe show how interlinked these challenges are, this weekend we’ll be trying some hardware based ideas on the iPod Touch 2G jailbreak :)

As you can read, they are still working of this long-awaited iPhone 3G unlock. I am a "legit" AT&T customer so I don't care much about the unlock for myself, but I can't wait for them succeed as it will help thousands, if not more.

Keep up the good job DevTeam.

Read More

Disapointed by Engadget

Sébastien Page ∙ Updated November 15, 2017

From the iPhone DevTeam blog:

While criticism and competition is fine it should be reported correctly, with all the facts. and certainly minus the FUD. Do you guys think we are “less and less relevant with each passing day” ? We don’t think so, and we certainly prefer our hacks to theirs. ;-)  Though even if the world deems us irrelevant, the iPhone family of devices is still fun to hack!

Unlike Engadget, I think the DevTeam is more and more relevant! Come on people, do you really want to be a prisoner of Apple? You're already are in some ways since you have to battle at every firmware update to keep your iPhone jailbroken. People talk shit about MicroSoft but at least if you have a device that runs on Windows Mobile, you don't have to "hack" your phone to add 3rd party applications.

That is the way Apple does business. Steve Jobs, whom I hate with passion, just wants to lock you in his products. Screw that! I don't want to rely on you Mr Hypocrite! Truth is I have more jailbroken applications on my iPhone than I have App Store approved apps.

If you're reading my blog, you're most likely into jailbreaking your phone so please, go to Engadget and take their poll and leave a nasty comment.

Read More