Legacy-iOS-Kit/README.md
2020-09-16 07:59:50 +08:00

5.5 KiB
Executable File

iOS-OTA-Downgrader

(formerly 32bit-OTA-Downgrader)

Downgrade/restore iOS devices to signed OTA firmwares

  • This is currently the only downgrade script/tool that supports both Linux and macOS
  • Please see the "Other notes" section below to serve as answers/solutions for frequent questions and issues

Supported devices:

  • You can identify your device here
  • iOS 10.3.3 - A7 devices:
    • iPhone 5S
    • iPad Air 1
    • iPad mini 2 except iPad4,6
    • iPad mini 3 is NOT supported
  • iOS 8.4.1 - 32-bit devices:
    • iPhone 4S, iPhone 5
    • iPad 2, iPad 3, iPad mini 1
    • iPod 5th gen
    • iPhone 5C is NOT Supported
  • iOS 6.1.3 (can be jailbroken):
    • iPhone 4S
    • iPad 2 except iPad2,4

Requirements:

  • A supported device in any iOS version:
    • A 32-bit iOS device (jailbreak needed)
    • An A7 device (jailbreak not needed)
  • An IPSW for the version you want to downgrade to
  • A 64-bit Linux install/live USB or a supported macOS version
    • See supported OS versions and Linux distros below
    • A Linux live USB can be easily created with tools like balenaEtcher or Rufus
  • All 32-bit users must install OpenSSH
For Pangu 32-bit users:
  • For 32-bit users using Pangu, install the latest untether for your iOS version here

How to use:

  1. Download iOS-OTA-Downgrader here and extract the zip archive
  2. Plug in your iOS device
  3. Open a Terminal window
  4. cd to where the zip archive is extracted, and run ./restore.sh
    • You can also drag restore.sh to the Terminal window and press ENTER
  5. Select option to be used
  6. Follow instructions

Supported OS versions/distros:

Other notes:

  • You do NOT need blobs to use this, the script will get them for you
  • If the restore process does not work for you, try switching USB ports and/or cables
  • This script will verify the IPSW SHA1sum before restoring
  • For users having issues related to missing libraries or tools, re-install dependencies with ./restore.sh Install
  • For A7 devices:
    • Do not use USB-C to lightning cables as this can prevent a successful restore
    • checkm8 ipwndfu is unfortunately pretty unreliable, you may have to try multiple times (for Linux users I recommend trying in a live USB)
    • If the script can't find your device in pwnREC mode or gets stuck, you may have to start over
    • Other than the above there's not much else I can help regarding entering pwnDFU mode...
  • For 32-bit devices:
    • To devices with baseband, this script will restore your device with the latest baseband (except iOS 6 jailbreak)
    • This script has a workaround for the activation error on devices downgrading from iOS 10
    • This script can also be used to just enter kDFU mode for all supported devices
    • This script can also restore your device to other iOS versions with provided SHSH blobs
    • As alternatives to kloader/kDFU, checkm8 A5 or ipwndfu can also be used in DFU advanced menu
      • To enter DFU advanced menu, put your iOS device in DFU mode before running the script
    • This script can work on virtual machines, but I won't provide support for them

Tools and other stuff used by this script: