What's new
Apple iPad Forum 🍎

Welcome to the Apple iPad Forum, your one stop source for all things iPad. Register a free account today to become a member! Once signed in, you'll be able to participate on this site by adding your own topics and posts, as well as connect with other members through your own private inbox!

TUTORIAL - Jailbreak iPad1 with sn0wbreeze

f4780y

Super Moderator
Staff member
Joined
Sep 11, 2010
Messages
7,113
Reaction score
652
Location
Troon, Scotland
Welcome to the iPadForums.net Tutorial on Jailbreaking the iPad1 with sn0wbreeze on Windows. This is a Windows only solution. OSX users should look at the pwnage tool tutorial in the Hacking Section, which uses the same custom firmware method as sn0wbreeze.

Jailbreak Preparation.
The advantage of using sn0wbreeze to jailbreak is that you do not need to prepare the iPad with the particular firmware you intend to jailbreak. sn0wbreeze will install a fully jailbroken customised firmware as part of it process.

However, if you want to restore your iPad with it's current Apps and settings (saved game data, etc.) at the end of the process, you must ensure you have syncronised fully with iTunes before you progress. The backup process in iTunes (which is the first thing to run) must have completed without errors if you want to be able to restore the state of your iPad later.

The versions of IOS which are supported by sn0wbreeze are detailed in our Hacking Section Sticky - Jailbreak Methods. If you are not upgrading to the current IOS firmware release you may need to reference our SHSH Blob Frequently Asked Questions thread to understand how you can use blobs to install a firmware other than the latest and greatest Apple offering. Whilst sn0wbreeze enables you to install a custom firmware, it cannot bypass the Apple signature check for the version you are trying to install, therefore unless you have saved blobs or you installing the current firmware version then you are out of luck.

Next, you will need to download the latest version of sn0wbreeze from the iH8sn0w website. Always source sn0wbreeze from this site to ensure its authenticity.

Finally, sn0wbreeze relies on having a full copy of the IOS firmware IPSW file to create its custom firmware file. You need to download the correct firmware file, matching the version of IOS you want to be installed on your iPad. Check out our Hacking Section Sticky - Official Apple IOS Firmware Download Links for iPad.

Whilst the firmware file is downloading, which may take some time depending on the speed of your internet connection, you should extract the sn0wbreeze ZIP file into a folder on your desktop.

Important Step!
Windows7 and Vista users should set the compatibility properties for sn0wbreeze by right clicking on the EXE file, choosing "properties", switching to the Compatibility tab, and selecting "Windows XP (Service Pack 2)" and "Run this program as an administrator".

The following screen shows what it should look like for Windows7 users:

sbt_00.png


Lets Jailbreak!
Once your preparation is complete, we can get started on the jailbreak process...

1. Launch the sn0wbreeze executable and you will be presented with a screen as follows:

sbt_01.png


2. Click the big blue arrow and sn0wbreeze will request that you either drag the IPSP file you downloaded in the preparation step onto the grey box, or press the "Browse" button to select the file using a dialogue box...

sbt_02_1.png


Ensure you browse for or drag and drop the correct firmware file for the version of sn0wbreeze. In this example I'm selecting the iPad1 4.3.2 firmware file from my downloads folder for sn0wbreeze 2.6.

sbt_02_2.png


3. sn0wbreeze will now analyse the firmware file and verify it can be jailbroken using this tool...

sbt_03_1.png


You should see the following screen if the file is successfully verified.

sbt_03_2.png


If this step generates an error for you you should double check you have downloaded the correct IPSW file for the iPad1 and that the download completed successfully. Smaller than expected file sizes are a good indication of this. You can expect iPad IPSW files to normally be around 600MB for 4.x versions.

4. Next, you have a choice to use simple mode or expert mode. Choosing Simple Mode will immediately create a custom firmware with a default set of options which includes Cydia (of course), along with some other sensible defaults.

For completeness, we will look at Expert Mode so that we can add in a couple of bonus items to the jailbreak, namely multitasking gestures and animated boot logos. We won't be exploring all of the expert options in this tutorial.

For now, click "Expert Mode" and press the arrow key...

sbt_A1.png


The options we want to select are in the "General" category, so go ahead and click "General" to tick it, followed by the blue arrow to move to the next screen...

sbt_A2.png


Here, if not already ticked, you should tick "Enable Gestures Menu", which provides the developer preview multitasking gestures on your iPad. Check the Settings > General menu once the jailbreak is complete for details on these.
Also tick "Enable Animated Logo Capability" which allows you to download animated boot logos from Cydia and enable them in the Settings app. My favourite is "Animate Apple". Try it out!

Once you are happy with the options, press the blue arrow...

sbt_A3.png


sn0wbreeze also has the option to add custom packages into the custom firmware, but we won't be looking at these advanced topics today... Just click the blue arrow to continue...

sbt_A4.png


Finally, we can tick the "Build IPSW" option and click the blue arrow to build our custom firmware file...

sbt_A5.png


5. Now sn0wbreeze begins creating a custom jailbroken firmware file in the background. As a nice diversion, you can choose to play pacman if you like! I prefer to watch the spinner...

sbt_05_1.png

sbt_05_5.png


WOW! That was easy, eh? A minute or two later, a custom firmware file has been created. By default, sn0wbreeze will drop this on your Desktop, so look there first. The IPSW file will be called something like "sn0wbreeze_iPad-4.3.2.ipsw"

6. Now we must use iTunes to install this custom IPSW file. However, in order to do this and bypass the security checks in the bootrom of the iPad, we must put the iPad into a special pwned DFU mode using the greenp0ison exploit.

Happily this is no different for you, the user, than putting the iPad into normal DFU mode and sn0wbreeze helps you with this process... You now need to ensure your iPad is connected to your PC and follow the instructions on the screen exactly. We start by powering off the iPad and then clicking the "Start" button at the bottom of the screen.

sbt_06_1.png


sbt_06_2.png


Three countdowns will be provided on screen in quick succession. The first one is just for preparation to power on the iPad and is not important to nail exactly. The other two however are critical and you must follow them perfectly with accurate timing and sequence. Then and only then will your device be in DFU mode (which is a black screen, so there is no way to tell by looking at the device). Ignore what is happening on the iPad screen, and keep your concentration on your fingers and the instructions on sn0wbreeze.

sbt_06_3.png


sbt_06_4.png


If you get the timing wrong or make a mistake, DONT PANIC! You will see the big red X below but you can click the Start button and try again. Practice makes perfect with DFU mode! It may help to note that you do not have to start with the iPad turned off. This is just for convenience.

sbt_06_5.png


One thing to note is that it WILL take time for Windows to install device drivers for DFU mode the first time you try it. DONT pull the plug or stop it working. This may result in sn0wbreeze not picking up the device first time, but let Windows finish its thing. On slower machines I have seen it take 45 seconds + to install DFU mode drivers the first time it tries so the timings cannot be met on the first run. Windows will have to install drivers every time you try a new USB port, so bear that in mind. Don't get impatient, and don't interrupt the process! I am convinced that interruption of the device driver installation is the number one reason people complain about their PC not recognising their device!

Hopefully, you will have nailed the timing and you should see a screen like this...

sbt_06_6.png


7. So! sn0breeze has given you the rest of the instrucitons for the tutorial... We have to launch iTunes, which will tell us there is a device in DFU mode connected which must be restored, but because this is pwned DFU mode it will let us install our custom firmware. When iTunes is open it should look something like this...

sbt_07.png


Dismiss the message by clicking OK.

8. Hold down the shift key on the keyboard - THIS IS IMPORTANT, and whilst holding it, click the "Restore" button. This will allow you to navigate to the sn0wbreeze custom firmware and select it for restore...

sbt_08_1.png


When you select the file, iTunes will warn you that it is about to perform a restore operation and verify it with their signing servers.

IF you are restoring a version of IOS which is not the current (latest) Apple firmware for your device, you must ensure that you have SHSH Blobs saved and ready to be served up to iTunes using a program such as Tiny Umbrella. However if you are installing the current version of IOS, Apple will provide the verification. There is no way around this system, so if you are installing a previous version of IOS and you don't have saved blobs served up to iTunes this process will fail...

Assuming blobs are not an issue for you, press the restore button to proceed...

sbt_08_2.png


9. iTunes should now prepare the iPad for restore and progress as expected. This process may take quite a while to complete depending on your setup...

sbt_09.png


Within a few minutes you should see a progress bar appear on the iPad with the iH8sn0w logo above it. Progress may be slow, but there should always be progress. If the restore hangs in one place for more than 5-10 minutes there has likely been a problem.

10. If everything has gone to plan, you can now just sit back, relax, and enjoy, whilst iTunes does its thing. Once the restore is complete iTunes will treat the iPad just like any other newly restored device, even though it is jailbroken...

sbt_10.png

If you synchronised at the beginning of the process to create a backup and you want to restore the iPad apps and settings onto this fresh firmware, choose the "Restore from the backup of..." option.
Otherwise, if you want to keep that factory fresh feel and re-install your Apps from iTunes in a controlled manner, choose "Set up as new iPad".

10. You should find the new "Cydia" application icon on your springboard at the end of the list of Apps.

rst_10.png


That's it! You are jailbroken. Congratulations!
Now launch Cydia and start exploring the brave new world!
 
Last edited:

OUTL4W

iPF Novice
Joined
Dec 30, 2010
Messages
1,236
Reaction score
13
Location
Gettysburg, Pa
Excellent tut....
But you might want to insert a link to the official sn0wbreeze site for the less initiated...

And just to verify...this does activate the multi-tasking gestures?

I like these type of tuts as compared to the videos...as I can follow along easier.
 
Last edited:
OP
f4780y

f4780y

Super Moderator
Staff member
Joined
Sep 11, 2010
Messages
7,113
Reaction score
652
Location
Troon, Scotland
Excellent tut....
But you might want to insert a link to the official sn0wbreeze site for the less initiated...

And just to verify...this does activate the multi-tasking gestures?

I like these type of tuts as compared to the videos...as I can follow along easier.

Thanks for the feedback OUTL4W. The links are in there at the top of the post now, and I've updated the tutorial to use the "Expert" mode, so all covered I think... I got some feedback that gestures were not on by default on simple mode. I guess I had them because of my previous jailbreaks and made a bad assumption they were in simple mode.

Cheers.
 
Last edited:

mysterya

iPF Noob
Joined
Apr 21, 2011
Messages
3
Reaction score
0
Hi there guys i have been following the instruction by f4780y but i got stuck starting from instruction 6 I try it for 5 times or more i kept hearing the sound "dudu" on my computer after i press the home button for the first 23 seconds but it kept saying that "DFU was not detected! Try again." what should I do? Please help me
 
OP
f4780y

f4780y

Super Moderator
Staff member
Joined
Sep 11, 2010
Messages
7,113
Reaction score
652
Location
Troon, Scotland
Hi there guys i have been following the instruction by f4780y but i got stuck starting from instruction 6 I try it for 5 times or more i kept hearing the sound "dudu" on my computer after i press the home button for the first 23 seconds but it kept saying that "DFU was not detected! Try again." what should I do? Please help me

Are you sure you followed the "Important Step" exactly as stated at the start?

Does the screen stay blank? It should, if it is in DFU mode. After you hear the sound then that indicates you were sucessful provided the screen on the iPad is also blank. Try using a different USB port on your PC as you may have interrupted the DFU device driver installation on a previous run...

If you still have problems, please post DETIALS of what you are doing. Version of Windows, firmware, etc. These things help us help you.
 

mysterya

iPF Noob
Joined
Apr 21, 2011
Messages
3
Reaction score
0
Yeah after i try dfu it stays blank i could not do anything do it, all i could do is to open itunes and press power button and home button at the same time then the ipad will turn on. I use windows xp and yeah i was really confused the ipad screen is blank and the problem is i don"t remember anything about installing DFU device driver.
 
OP
f4780y

f4780y

Super Moderator
Staff member
Joined
Sep 11, 2010
Messages
7,113
Reaction score
652
Location
Troon, Scotland
mysterya said:
Yeah after i try dfu it stays blank i could not do anything do it, all i could do is to open itunes and press power button and home button at the same time then the ipad will turn on. I use windows xp and yeah i was really confused the ipad screen is blank and the problem is i don"t remember anything about installing DFU device driver.

Installation is automatic, but it sounds as though you interruped it. Swap the USB port the iPad is connected to when it is in DFU mode and let Windows install the driver. Do not interrupt the process. It can take a few minutes if your hardware is old. iTunes should then see the iPad.
 

mysterya

iPF Noob
Joined
Apr 21, 2011
Messages
3
Reaction score
0
Thanks f4780y i finally got my ipad jailbroken. i use my brothers windows 7 and it work well :)!!
 

ipadck7

iPF Noob
Joined
Apr 30, 2011
Messages
2
Reaction score
0
Location
Singapore
Hi f4780y,

After step9, I receive the error message "The "iPad" cound not be restored. An unknow error occured [21]. I am stuck, what should I do? Please help.

I am using widow xp, and prior installing this IOS4.3.2, I am using JB vesion of 3.2.1.
 

OUTL4W

iPF Novice
Joined
Dec 30, 2010
Messages
1,236
Reaction score
13
Location
Gettysburg, Pa
ipadck7 said:
Hi f4780y,

After step9, I receive the error message "The "iPad" cound not be restored. An unknow error occured [21]. I am stuck, what should I do? Please help.

I am using widow xp, and prior installing this IOS4.3.2, I am using JB vesion of 3.2.1.


Error 20, 21, 34, 37, 40:These errors typically occur when security software interferes with the restore and update process. If you are using a PC, follow this article to resolve this issue. Error 40 may also indicate a hardware issue.


Are you trying overwrite a jailbreak with a jailbreak?


I think you might have better luck updating to official 4.3.2 and then jb. I kept getting an error 1600 when I tried doing that.
 
Last edited:

ipadck7

iPF Noob
Joined
Apr 30, 2011
Messages
2
Reaction score
0
Location
Singapore
ipadck7 said:
Hi f4780y,

After step9, I receive the error message "The "iPad" cound not be restored. An unknow error occured [21]. I am stuck, what should I do? Please help.

I am using widow xp, and prior installing this IOS4.3.2, I am using JB vesion of 3.2.1.


Error 20, 21, 34, 37, 40:These errors typically occur when security software interferes with the restore and update process. If you are using a PC, follow ,,, to resolve this issue. Error 40 may also indicate a hardware issue.


Are you trying overwrite a jailbreak with a jailbreak?


I think you might have better luck updating to official 4.3.2 and then jb. I kept getting an error 1600 when I tried doing that.

Thanks. Yes, I am overwriting a JB with a JB.
Also, after restore with SHSH and trying to upgrade to official 4.3.2, i noticed I need itunes 10.2.2. And believe this is also another cause of error.
 

rehabdirector

iPF Noob
Joined
Jun 4, 2011
Messages
4
Reaction score
0
Location
Florida
Thank you for your thorough tutorial. I am getting an error code 3194 which appears to be related to not using the most current version of iTunes, however I have 10.2.2. Any ideas?

Thanks!
 

rehabdirector

iPF Noob
Joined
Jun 4, 2011
Messages
4
Reaction score
0
Location
Florida
Thank you! Now I am getting an error 1600, but am in the process of googling to figure out the problem. :)
 

Most reactions

Latest posts

Top