How To: Jailbreak the iPhone/iPod Touch/iPad/Apple TV 2G Running iOS 4.3.1! [The PwnageTool 4.3]

Several hours ago we told you MuscleNerd predicted that the iOS 4.3.1 untethered jailbreak would be released today and it appears as if he was correct. The PwnageTool was updated on a few minutes ago to support jailbreaking the iOS 4.3.1 firmware untethered on the iPhone/iPod Touch/iPad/Apple TV 2G. The only iDevice that this version of the PwnageTool does not support is the iPad 2G! If you are interested in jailbreaking your iDevice with the PwnageTool 4.3 please follow the how to guide below…

Step 1) – The first thing you will need to do is download the PwnageTool to your Desktop (Click the download link below).

Download PwnageTool 4.3 (Not working? Click here)

Note: The PwnageTool tool is only available for the MAC OS X operating system.  If you have Windows, it is possible to run the PwnageTool but only via VMWare (we may make a tutorial on how to do this at a later date). Please follow our RedSn0w 0.9.6rc9 how to guide which will show you how to jailbreak the iOS 4.3.1 firmware untethered for Windows by clicking here.

Step 2) – Once you have downloaded the PwnageTool, you are going to need to now run it. Once the PwnageTool is up and running, click okay to the pop-up window. Now if you have never used the PwnageTool you will notice there are many options presented to you. We will guide you through to process so do not get overwhelmed. The first thing you must do is click on the expert mode button in the top left hand corner of the screen (you will notice by default, Simple mode is selected, but we want Expert mode).

Now once you ensure Expert mode is selected, you will need to select the iDevice you are going to jailbreak, once you do select your iDevice a big check mark will appear over the one you selected. Click the Blue Arrow to continue…

Step 3) – In the next screen you will be selecting the  iOS 4.3.1 firmware that corresponds to the iDevice you are jailbreaking.

Mac OS X Note: Your iDevice’s firmware files are stored in the following directory:

~/Library/iTunes/iPhone Software Updates

Once you have selected your firmware file, please click the blue arrow to continue…

Step 4) – Once you have clicked the blue arrow you should be at a screen with several options. It is from this screen you can go through the process of customizing your jailbreak.

Here is a quick breakdown of what each of the tabs customize:

General Settings: From here you can customize features of your jailbreak such as root partition size (the amount of space dedicated to jailbroken apps), activation options for those of you using an unofficial carrier on your iPhone and you can also re-enable functionality for those on you jailbreaking older iDevices. Unlockers only: Ensure you click the activate the phone option if you are using an unofficial carrier on your iPhone.

Cydia Packages: In this area you can select Cydia packages to be pre-installed when you restore the custom firmware file to your iDevice.

Custom Packages: The only thing you need to ensure you do in this area, is that Cydia is selected to be installed.

Once you are done customizing your jailbreak, you will need to go back to the main screen and click the build button.

You will then need to select a directory to save your custom firmware file to. Once you do this you simply need to wait for it to build. This can take a few minutes…

Step 5) – Once you have built your custom IPSW, you will need to put your iDevice into DFU mode so that you can restore this custom IPSW to your iDevice (through iTunes).

Follow the on-screen instructions that the PwnageTool presents to you:

  • Turn your iDevice off
  • Hold Power and Home buttons for 10 seconds
  • Now release the Power button but continue holding the Home button for at least 10 more seconds
  • You device should now be in DFU mode



Step 8 ) – Once your iDevice is successfully in DFU mode, iTunes should pop-up saying your iDevice is in recovery mode (it is actually in DFU mode), iTunes will also prompt you to restore your iDevice.

Hold down the OPTION button and click on the restore button, you can now browse and select your custom firmware file you created. Once you have selected this firmware file, simply wait for it to be restored on your iDevice.

Note: Ensure you do not do anything to disturb your iDevice, while iTunes is restoring the custom iOS 4.3.1 firmware file.

Once your iDevice has been successfully restored to the custom iOS 4.3.1 firmware, you should notice your iDevice is now jailbroken untethered on the iOS 4.3.1 firmware (Cydia should be on your SpringBoard). Please leave any questions or comments in the comments section below. If you are having any kind of troubles we will try out best to help you.

Don't forget to like iJailbreak on Facebook, follow on Twitter and add to your circle on Google+ to stay up-to-date on all the latest Jailbreak and Apple news!


  1. i still dont see the need to jailbreak the AppleTV2G yet….isnt there like 1 app that has come out for it so far? I am surprised people have not come out with more tweaks/apps for the ATV2G so far…..

  2. Xbmc!

  3. Alexmtz92 says:

    Can you use this jailbreak for firmware 4.3??

  4. Drewstone says:

    no, only for 4.3.1

  5. Jsenny25 says:

    So, I completed the entire process with no problems until the entire process was completed. Then, after the iPad rebooted the device was wiped clean of all of my app and information. Should I restore?

    New to JB and need help

  6. CyCLoBoT says:

    I was able to jailbreak the device (iPhone 4 4.3.1) but now I don’t have any network service on the phone? Is there something extra I have to do to jailbreak? I am with Virgin Mobile.

  7. HeypetroBrandon says:

    I can t seem to get past the “Please wait your device is being processed. It just hangs there forever. Help please

  8. Dietermania says:

    I have the same problem!!!! only one bar on the screen….whats going on?

  9. Do you have to be on 4.3.1 to add the 4.3.1 JB? I’m still on 4.2.1 and am wondering if I have to go to the effort to unJB, load 4.3.1 and then JB 4.3.1?

  10. Alright, everything works great. A BIG Thank You to the Dev Teams and thumbs WAY UP for collaborating across at least six time zones! :D

    I used redsn0w RC9 to jailbreak my iPhone 4 and iPad 1 (would have loved to do up my iPad 2 as well but hopefully soon!) and I used PwnageTool 4.3 for my Apple TV 2nd gen.

    Let’s see if I can help some of you out. Just to clarify: I am on Mac OS X 10.6.7 and for those of you who are trying to find a microUSB cable, you may have one already if you’ve ever had a BlackBerry, for example, or any other smartphone that uses microUSB on the device. I’m only saying this because I almost ordered one w/ overnight delivery, etc., when all I had to do is look for my BlackBerry 9700 sync cable. ;-) I also have Windows 7 x64 in a dual-boot configuration which for Mac users is not really necessary, unless you must use sn0wbreeze at some point for some reason.

  11. I tried the Pwnage jailbreak and it killed my AT&T account. No idea what happened.

  12. I have the same issue. I am with AT&T. Please let me know if you find a solution. I’ll do the same.

  13. Yes, use iTunes to restore the data. I hope you synced and backed up before wiping.

  14. I figured out what I missed. Before creating the IPSW, you have to go into General and uncheck Activate. Why that’s chosen by default is anyone’s guess. Tried it again after that and of course, it worked flawlessly.

  15. Did u get this working on Virgin Mobile?

Speak Your Mind