So here is the first tool release, iEraser. This erases the current firmware on your modem. Don't worry, you can always put it back with bbupdater. Here how the bootrom check works; it reads from 0xA0000030 0xA000A5A0 0xA0015C58 0xA0017370 and all these addresses must read as blank, or 0xFFFFFFFF. When you erase flash, it becoms 0xFFFFFFFF. But you can't erase those locations, because they are in the bootloader. So thats where the testpoint comes in. Pulling A17 high hardware OR's the address bus with 0x00040000(offset one because data bus is 16 bit) So the bootrom instead checks locations 0xA0040030 0xA004A5A0 0xA0055C58 0xA0057370, which are in the main firmware and can be erased. Pretty genius :)
To use this tool, you need the secpack from your modems version. The erase of this section is protected. Check the modem version in Settings->About. It'll either be 3.12(1.0) or 3.14(1.0.1 and 1.0.2). You need the ramdisk which cooresponds to your version. Then go into "/usr/local/standalone/firmware" and get the ICE*.fls file. Extract 0x1a4-0x9a4 and save it in a file called secpack and place it in the same directory as the ieraser tool. Run ieraser. This should erase the modem firmware and leave you one more step on your way to unlocking.
52 comments:
GoeHot... U r a genious... but i have a qustion... I'm from a foreign country... do you know if the iphone will work with sim cards from, for example, Argentina? ty... and waiting for more...
It will work with any SIM card when it is unlocked.
Heya george, great that you keep up the steam!
I honestly thought you would stop this somewhat in the middle when you talked this morning (in my timezone) on #iphone.unlock .
But I guess you're dedicated :D
Great work so far - I'm still impressed that you guys figured out how to bypass the NOR so you can patch it. Great achievement everybody!
Can't wait for the next and final part :) This will be 10% of the reason for me buying an iphone. The other 90% is split half and half between the iphone being a cool device that's very hackable and IF I can change the intelligent dictionary so I can be allowed to input danish words.
Thanks for what you and others have done so far!
So.. Can Apple easily put a stopper for this unlock by signing the file in tha main firmware where theese values are located???
Oh and great work Geohot :D
I agree too.. but would it make any different to pins on other parts of the same trace? e.g the bottom part!
Hi George, congrats. I have some doubt's about the hex dump you did on step 7 to generate the secpack file and in the step 8, did you use DD to export that ranges?
is this compiled for ssh or cmd in windows? or is this intel mac only file?
I can't believe it. Why the hell are you going to college when you could have made a fortune on the unlock? You said you didn't want people making money off of this. Are you knocking futs? There's maybe 10 or 20 people that can do what you did. Everyone else is going to buy it. Are you an IDIOT SAVANT?
Good job! You will be rich very soon! Here's a link that let me get one free ringtone 4 my iphone - no subsription required - but it only give u one free :(
http://ushrink.com/freeringtone
Could you be sue by the Apple and AT&T company for unlocking this phone or for publishing how go by on doing so. Do you need a partner to start a iphone unlocking business.
HOTZ, YOU CERTAINLY PICKED THE RIGHT PROFESSION TO GO INTO. THE HUMAN BRAIN HAS SOOOO MANY UN-HACKED AREAS. THE HUMAN RACE IS CERTAINLY BLESSED BY YOU AND OTHERS LIKE YOU.
I HAVE ALPHA 1 ANTITRYPSIN DEFICIENCY (HEREDITARY EMPHYSEMA). I RECEIVED A Z GENE FROM EACH OF MY PARENTS (RARE). ONE PROTECTS THE LUNGS, ONE ATTACKS THEM.
I’M ON THE WAITING LIST FOR A LUNG TRANSPLANT, BUT I’M A SMALL PERSON 5' 1", NOT TO MANY SMALL LUNGS DONATED. THEY HAVE TO FIT, THEY CAN’T CUT THEM DOWN, HA HA. THE AVERAGE WAIT ON THE LIST IS 6 MONTHS IN WASHINGTON, I’M GOING ON 2 YEARS.
WHILE YOUR HACKING INTO THE HUMAN BRAIN FIND THAT SECOND Z GENE AND SEE IF YOU CAN ALTER OR MAKE IT DESTROY ITSELF.
A THOUGHT TO PUT IN THE BACK OF YOUR MIND ON YOUR JOURNEY THROUGH LIFE. MAY IT BE A GOOD ONE!!!
VIRGINIA
Genius kid! Good onya my friend and thanks.
Mike
Firefighter Blog
I have a question that should interest everyone here. What is the probability, do you think, that Apple and/or AT&T wil disable the unlocking method our Collegian friend?
marshall
estou interessado em saber mais, favor responder matheus_brito@hotmail.com
brasil.
interessado em informatica, celular, e coisa e tal entre em contato matheus_brito@hotmail.com
How do you cut and paste all those computer words in?
where do you pu the sim card at in the iphone?
Congrats on discovering what Apple and AT&T "Your World...Monopolized" wanted so badly to keep secret: the iPhone lock!!!
But why should I pay you or any other hackers for unlocked iPhones???
You don't think that now the jig's up, Apple (who surely has some retentive iPhone rights of product) will now offer iPhone services to OTHER celluar providers???? Heh....to save that Steve Job ass from a monopoly suit (and you can bet one's in the oven a-cookin'), Apple will be all too glad to share the iPhone!!!!
Nice job, George!! Stay in school and bone up on that Engineering degree; a mind like yours will offer the Planet some pretty cool whiz-bang stuff!!!
Has apple offered you a job yet? genius !!! Nice work
will it work on Verizon
May the souls of hackers and open source freaks be with you forever. Thank you for your amazing time and energy. You have done a huge service to bringing technology back to the people and away from wall street.
Small correction. That second group of addresses should instead be "0xA0040030 0xA004A5A0 0xA0055C58 0xA0057370". (Last two are different, the 4s should be 5s.)
Dude you are genius. I am interested in finding out what all resources did you tap in to get to know all the intricate details about hardware and software? Is it documented somewhere or was it mostly tial and error?
how do i go into /usr/local/standalone/firmwareusing ssh???
second how do i find bbupdater and where do i have to upload it so that i could run it
@Spencer - This will not work with Verizon because Verizon phones work with CDMA and the iPhone works with GSM. Sorry!
CONGRATULATIONS!
Now you can use iphone, or any other unlocked phones globally with SIM card from
www.1world1sim.com
Unlock phone and global SIM card best products.
to create the secpack file out of the ramdisk you can do:
dd if=ICE03.14.08_G.fls of=~/secpack bs=1 skip=0x1a4 count=0x800
Help........... I use ieraser 2 times. First time ok ! I complete to unlock my iphone. But next time I use the same method. But the ieraser hang up along time... Please help... Thanks JT
Hi,
eraser is not working as intended coz i think my baseband is pretty screwed up.
i started off with an unlocked 1.0.2 (never on 1.1.1), tried to revirgnized and got "FW differences". heard advice that i should downgrade baseband by removing it with ieraser, then run bbupdater with EEP/FLS. so i did that, but i ran it with secpack v4 not knowing what v4 means. by right, i should be using v3 since i was never on 1.1.1.
so after i ran that.. bbupdate with EEP/FLS returns error. EEP checksum error, and FLS failed download. I suspect that ieraser wasnt removing the baseband properly, could be coz i used the wrong secpack.
in my desperate attempt, even tried upgrading to 1.1.1 then downgrade to 1.0.2. doesnt help. iphone still a brick. must've screwed baseband really bad when i tried to upgrade to 1.1.1
so nowi tried ieraser with secpack v3 and v4. it still gives me the same error with bbupdater. ieraser seems to be working fine coz it outputs lots of number. could i have screwed up the baseband really bad that ieraser can erase it properly??
using bbupdater -v after i restore my iphone doesn't give me any modem version at all. hope you can help
honcheng did you find a solution to your problem? if you di please let me know how as i am in the exact situation you described above. I would appreciate it greatly.
hi jorge,
unfortunately no.. i'm still stuck at where i am
i have posted a request on elite dev team site.. highlighting our problem.. and hopefully they can come up with an app that can forcefully flash in the baseband..
if you are in the same situation.. maybe you can post your entry there for support
http://code.google.com/p/iphone-elite/issues/detail?id=17
Best regards.
sex shop
sex shop
sex shop
seks shop
seks shop
seks shop
erotik shop
erotik shop
penis büyütücü
penis büyütücü
penis büyütücü
erotik shop
seks shop
sex shop
erotik shop
erotik market
vidrom.com
video share
file upload
free file
image upload
erotik market
erotic market
erotik market
erotik market
erotic shop
erotic shop
erotic shop
hediye
12 taksit
mirc
mirç
mırc
mırç
mircturk
turkmirc
mirc indir
mirc yukle
mirch
mırch
mirc turk
turk mirc
mırcturk
turkmırc
mırc turk
turk mırc
turkiyemirc
türkiyemirc
turkiye mirc
türkiye mirc
mircturkiye
mirctürkiye
mirc turkiye
mircturk
turkmırc
muhabbet
forum
forum
turkforum
turkiyeforum
mirc
turkmirc
toplist
site ekle
pagerank
turkmirc
turkforum
sohbet
chat
sohbet odaları
bedava sohbet
bedava chat
türk
karar
Best regards.
sex shop -
feromon -
sex shop -
sex shop -
seks shop -
seks shop -
seks shop -
erotik shop -
erotik shop -
penis büyütücü -
penis büyütücü -
penis büyütücü -
erotik shop -
seks shop -
sex shop -
erotik shop -
erotik market -
vidrom.com -
video share -
file upload -
free file -
image upload -
erotik market -
erotic market -
erotik market -
erotik market -
erotic shop -
erotic shop -
erotic shop -
alışveriş -
12 taksit
Kozmetik
Shopseks.com
Hepzinde.com
penis büyütücü -
penis büyütücü -
virility pills -
elektronik sigara -
virility pills -
penis büyütücü -
penis büyütücüler -
bayan iç giyim -
virility pills -
elektronik sigara
feromon
sex -
hikaye -
sex hikayeleri -
hhikaye.com -
sex video -
porno -
89 -
sex -
seks -
iizle.net -
porno -
sex -
hikaye -
89 -
adult -
seks -
kadinclub.com -
sex -
89 -
hikaye -
sex -
porno -
bakire -
oyun -
youtube -
mirc -
diyet -
canlı tv -
chat -
penis büyütücü
sex
garantisex
garantisex.com
hikaye
erotik
forum
sohbet
aşk
chat
hikayeler
thanks a lot
güzel sözler | hikaye | hikayeler | güzel hikayeler | anlamlı hikayeler | seks hikayeleri | sex hikayeleri | <film indir | film izle
Sex Shop
erotik market
sağlık ürünleri
cinsel sağlık
kozmetik ürünleri
penis büyütücü
azdırıcı
kaldırıcı
sertleşme
sertleştirici
geciktirici
seks shop
erken boşalma
göğüs büyütücü
kaydırıcı
oral
anal
sex
penis
evden eve nakliyat
evden eve nakliyat
evden eve nakliyat
Sohbet
sohbet
mirc
penis büyütücü
sohbet
muhabbet
matbaa
seks
sex
hikaye
hikayeler
sex
porno
Sohbet kanalları
Sohbet odaları
Chat
evden eve nakliye
chat
magazin
chat
Sohbet
tuzcuoğlu
very good article thanks great blog site:)
süper board
kurtlar vadisi pusu
board
dizi izle
indir
video izle
haber
güzel resimler
süper oyunlar
oyun hileleri
ışık bilgisayar
komedi dükkanı izle
motorsiklet
video izle
dizi izle
kırıkhan
pars narko terör
canlı dizi izle
facebook
facebookara
facebookara.com
arkadaş
sohbet
chat
Thanks man good job.
renovationdoctors.com
turizmseyahat.blogspot.com
www.yagmurunsesi.org
yagmurunsesiorg.blogspot.com
turkuntarihi.blogspot.com
websitesiyapamak.blogspot.com
saglik-k.blogspot.com
ders-hane.blogspot.com
webmaster-sitesi.blogspot.com
hack
mail hack
ms hack
warez
Hi i am kishore and i have a blog with good traffic, shell we have link exchange.On my blog i am providing s60v3 applications and keygens and my blog is CLICK HERE TO VISIT MY BLOG
linkexchange means you have to put a link of my blog in one of your post and i ll do the same for u.
partner
erotik partner
erotik partner
sex partner
sex partner
seks partner
arkadaş
facebook
sexshop
cinsel sağlık ürünleri
penis büyütücü
erotik market
Thank you for the wonderful effort
إني تذكـرت والذكرى مؤرقـة * مجـداً تلـيدا بأيـدينا أضعـناه
أنَّى اتجهتَ للإسـلام في بـلـدٍ * تجْده كالطيرِ مقصـوصًا جناحـاه
كـم صرفتنا يـدٌ كنـا نـصرفها * وبات يـملكنا شعب مـلكناه
بالله سل خلف بحر الروم عن عرب * بالأمس كانوا هنا واليوم قد تاهوا
وانزل دمشق وسائل صخر مسجدها * عمن بناه لعل الـصخر ينعـاه
هذى معـالم خرس كـل واحـدة * منهن قامت خطيبـا فاغرا فـاه
الله يعلم ما قلبت سـيرتهم يومـا * وأخطـأ دمـع الـعين مـجراه
يا من يرى عمـراتكسوه بردته * الزيت أدمٌ لـه والكـوخ مـأواه
يهتز كسـرى على كرسيه فرقـا * من خوفه ، وملوك الروم تخشـاه
يا رب فابعث لنا من مثلهم نفـرا * يشـيدون لـنا مـجدا أضعنـاه
Thank you for the wonderful effort
إني تذكـرت والذكرى مؤرقـة * مجـداً تلـيدا بأيـدينا أضعـناه
أنَّى اتجهتَ للإسـلام في بـلـدٍ * تجْده كالطيرِ مقصـوصًا جناحـاه
كـم صرفتنا يـدٌ كنـا نـصرفها * وبات يـملكنا شعب مـلكناه
بالله سل خلف بحر الروم عن عرب * بالأمس كانوا هنا واليوم قد تاهوا
وانزل دمشق وسائل صخر مسجدها * عمن بناه لعل الـصخر ينعـاه
هذى معـالم خرس كـل واحـدة * منهن قامت خطيبـا فاغرا فـاه
الله يعلم ما قلبت سـيرتهم يومـا * وأخطـأ دمـع الـعين مـجراه
يا من يرى عمـراتكسوه بردته * الزيت أدمٌ لـه والكـوخ مـأواه
يهتز كسـرى على كرسيه فرقـا * من خوفه ، وملوك الروم تخشـاه
يا رب فابعث لنا من مثلهم نفـرا * يشـيدون لـنا مـجدا أضعنـاه
Thank you for the wonderful effort
إني تذكـرت والذكرى مؤرقـة * مجـداً تلـيدا بأيـدينا أضعـناه
أنَّى اتجهتَ للإسـلام في بـلـدٍ * تجْده كالطيرِ مقصـوصًا جناحـاه
كـم صرفتنا يـدٌ كنـا نـصرفها * وبات يـملكنا شعب مـلكناه
بالله سل خلف بحر الروم عن عرب * بالأمس كانوا هنا واليوم قد تاهوا
وانزل دمشق وسائل صخر مسجدها * عمن بناه لعل الـصخر ينعـاه
هذى معـالم خرس كـل واحـدة * منهن قامت خطيبـا فاغرا فـاه
الله يعلم ما قلبت سـيرتهم يومـا * وأخطـأ دمـع الـعين مـجراه
يا من يرى عمـراتكسوه بردته * الزيت أدمٌ لـه والكـوخ مـأواه
يهتز كسـرى على كرسيه فرقـا * من خوفه ، وملوك الروم تخشـاه
يا رب فابعث لنا من مثلهم نفـرا * يشـيدون لـنا مـجدا أضعنـاه
Thank you for the wonderful effort
إني تذكـرت
والذكرى مؤرقـة
مجـداً تلـيدا
بأيـدينا أضعـناه
أنَّى اتجهتَ للإسـلام في بـلـدٍ * تجْده كالطيرِ مقصـوصًا جناحـاه
كـم صرفتنا يـدٌ كنـا نـصرفها * وبات يـملكنا شعب مـلكناه
بالله سل خلف بحر الروم عن عرب * بالأمس كانوا هنا واليوم قد تاهوا
وانزل دمشق وسائل صخر مسجدها * عمن بناه لعل الـصخر ينعـاه
هذى معـالم خرس كـل واحـدة * منهن قامت خطيبـا فاغرا فـاه
الله يعلم ما قلبت سـيرتهم يومـا * وأخطـأ دمـع الـعين مـجراه
يا من يرى عمـراتكسوه بردته * الزيت أدمٌ لـه والكـوخ مـأواه
يهتز كسـرى على كرسيه فرقـا * من خوفه ، وملوك الروم تخشـاه
يا رب فابعث لنا من مثلهم نفـرا * يشـيدون لـنا مـجدا أضعنـاه
Thank you for the wonderful effort
إني تذكـرت والذكرى مؤرقـة * مجـداً تلـيدا بأيـدينا أضعـناه
أنَّى اتجهتَ للإسـلام في بـلـدٍ * تجْده كالطيرِ مقصـوصًا جناحـاه
كـم صرفتنا يـدٌ كنـا نـصرفها * وبات يـملكنا شعب مـلكناه
بالله سل خلف بحر الروم عن عرب * بالأمس كانوا هنا واليوم قد تاهوا
وانزل دمشق وسائل صخر مسجدها * عمن بناه لعل الـصخر ينعـاه
هذى معـالم خرس كـل واحـدة * منهن قامت خطيبـا فاغرا فـاه
الله يعلم ما قلبت سـيرتهم يومـا * وأخطـأ دمـع الـعين مـجراه
يا من يرى عمـراتكسوه بردته * الزيت أدمٌ لـه والكـوخ مـأواه
يهتز كسـرى على كرسيه فرقـا * من خوفه ، وملوك الروم تخشـاه
يا رب فابعث لنا من مثلهم نفـرا * يشـيدون لـنا مـجدا أضعنـاه
Post a Comment