After retrying 20 times, I still haven't managed to get my 5s to enter pwned DFU. The phone reboots around 7 seconds after the tool has been run, then it returns this timeout error:

Found: CPID:8960 CPRV:11 CPFM:03 SCEP:01 BDID:02 ECID:000005F5A9D9BCD0 IBFL:1C SRTG:[iBoot-1704.10]
ERROR: No Apple device in DFU Mode 0x1227 detected after 5.00 second timeout. Exiting.

Do I need to keep trying, or is this a common issue with A7 devices?

The T2 processor is almost identical in DFU protocol to USB DFU, but instead uses Thunderbolt as the transport. Because of this sending the same payloads over Thunderbolt DFU will likely allow it to be used with the T2 chip as well.

Hello thanks for this sharing! Im on parrot os new fresh install. I have the same problem with iphone 5c and 5s... i dont have idea why i have this error can check pls thanks"

sudo ./ipwndfu.py -p

*** checkm8 exploit by axi0mX *** Found: CPID:8950 CPRV:20 CPFM:03 SCEP:10 BDID:0E ECID:0000009xxxxx8 IBFL:00 SRTG:[iBoot-1145.3] Traceback (most recent call last): File "ipwndfu", line 62, in <module> checkm8.exploit() File "/home/gen/ipwndfu/checkm8.py", line 510, in exploit if 'PWND:[checkm8]' not in device.serial_number: File "/home/gen/ipwndfu/usb/core.py", line 830, in serial_number self._serial_number = util.get_string(self, self.iSerialNumber) File "/home/gen/ipwndfu/usb/util.py", line 314, in get_string raise ValueError("The device has no langid") ValueError: The device has no langid

When I run ./ipwndfu -p a pop-up comes up saying "Python quit unexpectedly while using the libusb-1.0.dylib plug-in" then I get Illegal instruction: 4 on terminal. When I run the command again I get "IndexError: array index out of range" and then "ValueError: The device has no langid" on macOS Sierra. Thanks!

My device has been restored with iOS 5.0.1 and starts in DFU mode. I tried to run ./ipwndfu -x but now I'm stuck at

Device is not in pwned DFU Mode. Try again

Then I tried to run ideviceinfo and get No device found. But if I plug in an iPhone 5S, ideviceinfo can provide all informations. I tested this on a Mac, windows and on a linux debian and all get the No device found error wehen I run ideviceinfo.

Do I need to install a special version of libimobiledevice?

My enviroment:

Linux Mint 19.2 Tina
Linux Computer 5.3.1-xanmod1 #1.190922 SMP PREEMPT Sun Sep 22 12:20:12 -03 2019 x86_64 x86_64 x86_64 GNU/Linux

toor@Computer ~/ipwndfu $ apt list --installed | grep libusb

libusb-0.1-4/bionic,now 2:0.1.12-31 amd64
libusb-1.0-0/bionic,now 2:1.0.21-2 amd64
libusb-1.0-0-dev/bionic,now 2:1.0.21-2 amd64
libusb-1.0-doc/bionic,bionic,now 2:1.0.21-2 all
libusbmuxd4/bionic,now 1.1.0~git20171206.c724e70f-0.1 amd64

iPad mini 2(soc:S5L8960)/iOS 12.4/iBoot-1704.10

I tried "ipwndfu -p" 30+ times but it fails by same error

toor@Computer ~/ipwndfu $ ./ipwndfu -p
*** checkm8 exploit by axi0mX ***
Found: CPID:8960 CPRV:11 CPFM:03 SCEP:01 BDID:0A ECID:000001B78D366D1C IBFL:1C SRTG:[iBoot-1704.10]
ERROR: No Apple device in DFU Mode 0x1227 detected after 5.00 second timeout. Exiting.

toor@Computer ~/ipwndfu $ ./ipwndfu -p
Traceback (most recent call last):
  File "./ipwndfu", line 48, in <module>
    serial_number = device.serial_number
  File "/home/toor/ipwndfu/usb/core.py", line 830, in serial_number
    self._serial_number = util.get_string(self, self.iSerialNumber)
  File "/home/toor/ipwndfu/usb/util.py", line 314, in get_string
    raise ValueError("The device has no langid")

I've pwned my iPhone 4 GSM & CDMA and no custom ipsw's from Pwnagetool or Sn0wbreeze work. I've even tried using the pwn feature from your program and restore from osx, linux, windows and none of them worked. And the only phone I've ever been able to downgrade is my 3G and 3GS. iTunes versions don't make a difference towards this issue. What do I need to do?

I get this error when typing the command ./ipwndfu -x and ./ipwndfu -p How do i fix this?

My iPhone 3GS is a New BR on iOS 3.1 after downgrading with 24Kpwn, my mac is running MacOS Sierra 10.12.4

./ipwndfu -p

./ipwndfu -x

Hi, I'm trying to downgrade my iPhone 3GS to iPhone OS 3.1.3. I made a custom 3.1.3 firmware using PwnageTool. I was able to put the device into pwned dfu mode and restore to the custom firmware successfully. When I went to install Alloc8 and boot by typing ./ipwndfu -x into Terminal, the process fails on Dumping NOR, at any random step. I've tried multiple times, sometimes it gets to stage 4 and fails, sometimes it fails on the first stage with the error "The device has no langid". I've pasted the output I'm getting from the terminal. Any ideas on how to solve this? I'm using Mac OS X 10.9 Mavericks. Thank you so much.

Tims-Mac:ipwndfu-master Janiszewski$ sudo ./ipwndfu -x Installing alloc8 exploit to NOR. Dumping NOR, part 1/8. Dumping NOR, part 2/8. Traceback (most recent call last): File "./ipwndfu", line 532, in nor = device.nor_dump(saveBackup=True) File "./ipwndfu", line 297, in nor_dump (retval, received) = self.execute(struct.pack('<6I', read, bdev, self.config.load_address + 8, i * NOR_PART_SIZE, 0, NOR_PART_SIZE), NOR_PART_SIZE) File "./ipwndfu", line 242, in execute assert self.identifier == device.serial_number File "/Users/Janiszewski/Desktop/ipwndfu-master/usb/core.py", line 830, in serial_number self._serial_number = util.get_string(self, self.iSerialNumber) File "/Users/Janiszewski/Desktop/ipwndfu-master/usb/util.py", line 314, in get_string raise ValueError("The device has no langid") ValueError: The device has no langid

I am getting this error Traceback (most recent call last): File "./ipwndfu", line 48, in device = dfu.acquire_device() File "/Users/jayden/Documents/checkm8exploit/ipwndfu/dfu.py", line 16, in acquire_device for device in usb.core.find(find_all=True, idVendor=0x5AC, idProduct=0x1227, backend=backend): File "/Users/jayden/Documents/checkm8exploit/ipwndfu/usb/core.py", line 1263, in find raise NoBackendError('No backend available') usb.core.NoBackendError: No backend available when running ipwndfu -p on macOS i've never gotten this error before and it just appeared when I went to try the exploit.

Legacy print statements are syntax errors in Python 3 but print() function works as expected in both Python 2 and Python 3. There are 93 days until Python 2 end of life.

Last login: Sun Aug 28 20:54:25 on ttys000
jonahdecker@Jonahs-MBP ~ % cd ipwndfu-master      
jonahdecker@Jonahs-MBP ipwndfu-master % sudo python2 ipwndfu -p
Password:
Traceback (most recent call last):
  File "ipwndfu", line 48, in <module>
    device = dfu.acquire_device()
  File "/Users/jonahdecker/ipwndfu-master/dfu.py", line 16, in acquire_device
    for device in usb.core.find(find_all=True, idVendor=0x5AC, idProduct=0x1227, backend=backend):
  File "/Users/jonahdecker/ipwndfu-master/usb/core.py", line 1263, in find
    raise NoBackendError('No backend available')
usb.core.NoBackendError: No backend available
jonahdecker@Jonahs-MBP ipwndfu-master % 

Bypass is working, but.. Error: "unable to connect to itunes store" Logged in through Settings - iTunes and the App Store, not through iCloud.

Problem in IC-Info.sisv file need paid software for fix this problem to download from Appstore..

I have been trying to use ipwndfu to downgrade my new bootrom iPhone 3GS to iOS 3.1.3. I have followed the steps in the guide for creating and restoring to the custom IPSW, then putting the device in pwned DFU mode and installing the alloc8 exploit to NOR, but the iPhone just re-enters DFU mode when trying to boot. My iPhone is a 2009 Week 40 model and I was able to downgrade it to iOS 3.1.3 a year ago using this tool, so I know it's possible, but for some reason it no longer works. I read online this could be caused by a restore error or a faulty IPSW, so I tried remaking the IPSW with pwnagetool and sn0wbreeze multiple times with different settings, but it gives the same result. Since ipwndfu hasn't been updated recently, I tried running it on different versions of macOS and on linux, but nothing has helped. I though maybe it had to do with iOS 3.1.3, so I tried restoring to iOS 5.1.1 instead. However, I still have the same problem where the alloc8 exploit installs just fine but the iPhone still doesn't boot. Is anyone else experiencing this? If so, were you able to fix it?