Sign In »
Register Now!
Help
Step One
Press to launch Finder from the dock.
Select Go to Folder.. from the Go menu.
Type /tmp into the entryfield and click the Go button.
This will open the tmp folder in the Finder window make sure to sort the contents of your tmp folder by Date Modified. Leave this window open.
Step Two
Create a new folder on your desktop called Pwnage and place the 3.0 firmware in the folder. You can download the firmware from here. Leave this second window open.
Step Three
Launch iTunes by clicking its icon in your dock
Step Four
Make sure your iPhone 3GS is connected to the computer then select from the list of devices on the left. Hold down the Option key and click the Restore button
Select the iPhone2,1_3.0_7A341_Restore.ipsw file from the Pwnage folder on your desktop and click the Open button.
Your iPhone will now begin restoring to the 3.0 firmware. You will be warned that this will erase your phone. Click the Restore button to continue.
Step Five
As the restore is progressing watch the /tmp folder we have open in Finder. A new folder will appear with a name similar to PersonalizedRestoreBundle.rCWW7jtHro. When the folder does appear, select it, then press Command+c to copy it to the clipboard.
Move to the second Finder window that is showing the Pwnage folder and press Command+v to copy the file folder into the window. This is making a copy of your iBEC.
**Remember you only have a limited time to do this as the folder will be removed shortly.
Step Six
Once the restore has completed iTunes will ask you to restore from backup or set up as a new phone. To keep your settings as before select Restore from the backup of: then click the Continue button
Step Seven
Once the backup has been restored we will need to do another iPhone restore from DFU mode to get our iBSS.
Follow these instructions to put your iPhone into DFU mode.
iTunes will popup a message saying it has detected an iPhone in recovery mode.
Click okay to this message then Hold down the Option key and click the Restore button
Select the iPhone2,1_3.0_7A341_Restore.ipsw file from the Pwnage folder on your desktop and click the Open button.
Your iPhone will now begin restoring to the 3.0 firmware. You will be warned that this will erase your phone. Click the Restore button to continue.
Step Eight
As the DFU mode restore is progressing watch the /tmp folder we have open in Finder. A new folder will appear with a name similar to PersonalizedRestoreBundle.yoM6c2aLdH. When the folder does appear, select it, then press Command+c to copy it to the clipboard.
Move to the second Finder window that is showing the Pwnage folder and press Command+v to copy the file folder into the window.
**Remember you only have a limited time to do this as the folder will be removed very shortly. If it goes by too fast for you try selecting it then pressing Command+d to duplicate the folder. The duplicate won't be removed.
Step Nine
Once the DFU restore has completed iTunes will ask you to restore from backup or set up as a new phone. To keep your settings as before select Restore from the backup of: then click the Continue button to finalize the restore.
Step Ten
That's it. We now have captured our iBEC and iBSS. You can move these to a safe place to be used for a future jailbreak of your iPhone 3GS.
To confirm you have the files look in Pwnage/PersonalizedRestoreBundle.**********/Firmware/dfu. You should see two files: iBEC.n88ap.RELEASE.dfu and iBSS.n88ap.RELEASE.dfu
Back to top
