tfp0 Bug Could Lead to iOS 13.3 – 13.3.1 Jailbreak for iPhone 11 Pro, iPhone XS

Thanks to the checkm8 bootrom exploit, we saw an iOS 13 jailbreak drop pretty soon after the release of the OS. As you can see from the steps above, the method to jailbreak your iPhone running iOS 13 is relatively more complicated than simply running the checkra1n jailbreak tool on macOS.

iOS 13.3 Jailbreak for iPhone 11 Pro MAC

iOS 13.3 Jailbreak for iPhone 11 Pro WINDOWS

However, the exploit only worked on iPhone 5s to iPhone X and was incompatible with newer iPhones and iPads.

The good news is that a new tfp0 bug has been discovered that could pave the way for an iOS 13.3.1 jailbreak for the iPhone 11 Pro and iPhone XS.

Discovered by @08Tc3wBB and validate by security researcher @RazMashat, the tfp0 exploit has been confirmed to work on A12 and A13 Bionic devices running iOS 13.3.

The teaser video posted by @08Tc3wBB does not reveal much — it only shows a forced crash of the Apple News app.

Nonetheless tfp0 exploit is an exciting prospect for jailbreak iOS 13.3 – 13.3.1

This is not the first tfp0 exploit that we have seen for iOS 13 or iPhone 11 Pro.

In fact, a tfp0 exploit for the iPhone 11 and iPhone 11 Pro was teased within days of the devices going on sale but that never translated into a real jailbreak tool.

The problem here is that there is still a lot of work that needs to be done before this tfp0 exploit could be use to jailbreak the iPhone 11 Pro or iPhone XS

There’s always hope that someone from the jailbreak community takes interest in this exploit and ends up building a jailbreak tool for newer iPhones, though this is something that only time will tell.

Update: @iBSparkes has posted a screenshot on Twitter confirming that he has been able to use the tfp0 bug to hack an A13 Bionic iPhone i.e. either the iPhone 11 or iPhone 11 Pro running iOS 13.3.

How to Jailbreak iOS 13.3 – 13.3.1 Using Ra1nUSB on a Windows PC

Step 1: Download Ra1nUSB for your Intel or AMD PC. Also, install etcher and proceed to create a bootable USB drive using the tool. Select the Ra1nUSB image file when prompted during the setup process.

Jailbreak iOS 13.3 – 13.3.1 Step 1

Step 2: Shut down your PC and boot into its BIOS by pressing the F10/F12 or DEL button during the startup process. In the BIOS, go ahead and disable the following features:

Step 2 Jailbreak iOS 13.3 – 13.3.1
  • VT-D
  • EL SerialPort
  • SecureBoot
  • Stack Network
  • Fastboot
  • Wake on LAN

While you are at it, enable the Virtualization option in the BIOS. Make sure to save the changes before exiting the BIOS.

Step 3: Plug in the bootable Ra1nUSB pen drive and then switch on your PC again. Make sure to boot off the pen drive instead of Windows. From Clover bootloader, select the Boot macOS Install from Ra1nUSB option.

Jailbreak iOS 13.3 – 13.3.1 Step 3

Wait for a few minutes as the pre-packaged macOS image boots on your PC. If you end up getting any error during the boot process, there’s not much you can do. You can try again but that’s unlikely to solve the problem.

Step 4: If Ra1nUSB manages to boot on your PC, you should see a macOS-like installer screen. You do not need to proceed with the installation of macOS. Instead, at the top, click Utilities followed by Terminal.

Step 5: Type “ra1nusb” in the Terminal window and press Enter. This should open the Checkra1n jailbreak tool which you can then use to jailbreak your iPhone or iPad running iOS 13 – iOS 13.3. You can follow this guide from Step 3 on how to use the Checkra1n jailbreak tool.

Jailbreak iOS 13.3 – 13.3.1 Step 4Step 5

Using Ra1nUSB: Things to Know

Jailbreak iOS 13.3.1
Jailbreak iOS 13.3.1
  • There are two different variants of Ra1nUSB, one for Intel PCs and another for AMD PCs.
  • For the entire process, you will need access to a USB drive with at least 8GB of free space.
  • The method requires you to change some settings in the BIOS of your computer.
  • There is a high probability that Ra1nUSB will simply not boot on your PC. There’s not much you can do to bypass this problem.
  • If everything works as intended, you can jailbreak iPhone 5s to iPhone X running iOS 12.3 – iOS 13.3. Selected iPad models are also compatible with the tool.
  • Mac users can check our article on how to use Checkra1n to jailbreak iOS 13 on iPhone and iPad.

If you are not comfortable with the steps mention above, I will strongly recommend you to avoid using Ra1nUSB. Instead, try to get hold of a Mac from your friend and simply run the checkra1n tool on it to jailbreak your iPhone.

Jailbreak iOS 12.4 – 12.4.1: [Chimera – unc0ver] How To, Download, and News

Apple unveiled iOS 12.4, the next major iOS software update for iPhone. IPad and iPod touch at WWDC 2018 in June, which includes several new features and improvements. Some of the new iOS 12.4 features include improved performance, Memoji which allows users to quickly turn themselves into an Animoji with a variety of customization options as well, improvements to the Photos app, Siri Shortcuts which will give automation workflows to users and lots more.

But despite the new iOS 12.4 features and improvements, there are still many reasons to jailbreak iOS 12.4 such as to install iFile, which gives access to the file system, tweaks like Message Customize that lets you customize each aspect of the Messages app, ability to lock apps and folders using Touch ID and lots more.

Apple has also released 6 updates for iOS 12 so far for bug fixes and improvements.

Can You Jailbreak iOS 12 – iOS 12.4.1?

You can jailbreak iOS 12.4 – 12.4.1 using unc0ver jailbreak and chimera jailbreak. Unc0ver jailbreak supports all iOS 12.4.1 compatible devices (A7 – A12/A12X including iPhone XS, iPhone XS Max. IPhone XR, and 2018 iPad Pro) on iOS 12 – iOS 12.2.

It was recently updated to jailbreak iOS 12.4, but it only supports A7-A11 devices, which means all iOS 12.4 devices except for iPhone XS, iPhone XS Max, iPhone XR, and 2018 iPad Pro.

Chimera jailbreak supports all iOS 12 compatible devices (A7 – A12/A12X including iPhone XS, iPhone XS Max, iPhone XR. And 2018 iPad Pro) on iOS 12 – iOS 12.1.2, and it also supports A7 – A11 devices on iOS 12.2 except for iPhone XS, iPhone XS Max, iPhone XR, and 2018 iPad Pro.

jailbreak iOS 12.4.1

You can also use Chimera jailbreak to jailbreak iOS 12.3 but it only supports some beta versions. It doesn’t support the public version of iOS 12.3, iOS 12.3.1, iOS 12.3.2 and iOS 12.4. Currently as Apple has patched the exploits that were used by the jailbreak tools.

We recommend using unc0ver jailbreak for iOS 12.4. As it comes with Cydia which makes it a lot easier to install jailbreak tweaks.

On August 26, 2019, Apple released iOS 12.4.1 to fix the vulnerability that was used to jailbreak iOS 12.4, so you can’t jailbreak iOS 12.4.1 using Unc0ver or Chimera jailbreak currently.

Download iOS 12.4 Jailbreak

You can download the latest version of Unc0ver jailbreak from Github hosted by pwn20wnd.

pwn20wnd.

You can download the latest version of Chimera jailbreak from here hosted by Electra team.

Before you try to jailbreak your iPhone or iPad using Unc0ver. It is extremely important that you ensure no iOS 12 OTA file has been downloaded and saved on your device. Make sure to delete it from Settings -> Storage and only then proceed to jailbreak your iPhone/iPad. If an OTA file is present, your device will end up in a respring or reboot loop.

How to Jailbreak iOS 124.1 on iPhone and iPad

If you need help then you can check our jailbreak guide for step-by-step instructions on how to jailbreak iOS 12 – iOS 12.4 using unc0ver jailbreak or this jailbreak guide for Chimera jailbreak.

After you have successfully jailbroken your iPhone, iPad or iPod touch using unc0ver jailbreak, check our posts for the complete list of compatible jailbreak tweaks for iOS 12 – iOS 12.4 our top jailbreak tweaks and the best Cydia repos and sources to customize your jailbroken iPhone, iPad or iPod touch and make the most of the jailbreak.

You can check our post for the best repos and sources for Sileo if you’ve used the Chimera Jailbreak.

As always, we will let you know as soon as we have any further updates. So don’t forget to signup for our free Daily newsletter so you don’t miss out on any jailbreak news.

unc0ver v3.5.6.ipa Release Add support for remounting the RootFS as read-write on A12-A12X devices running iOS 12.1.3-12.4

Undecimus-v3.5.6.ipa 40.5 MB

Source code(zip)

Source code(tar.gz)

Pwn20wnd’s unc0ver v3.5.6.ipa jailbreak has received lots of updates recently, mostly pertaining to bug fixes and stability improvements centric to the newfangled iOS 12.4 support that came by way of an updated Sock Puppet exploit under a week ago. But as you might’ve noticed, this didn’t initially include support for Apple’s latest handsets, such as the A12-A12X devices running iOS 12.1.3-12.4 variety.

Download Links unc0ver v3.5.6.ipa

Undecimus-v3.5.6.ipa

Source code(zip) Source code(tar.gz)

Pwn20wnd changed that Thursday afternoon, at least partially, with the launch of unc0ver versions 3.5.2 and Unc0verV_3.5.5. Both updates were announced via Twitter:

Chimera V_1.3.3 is Now Available – Jailbreak A7 – A11 is supported on 12.0 – 12.4, with A12 on 12.0 – 12.1.2

From what we can gather, unc0ver v3.5.4, unc0ver v3.5.4 was release first to add support for SSH with root shell for A12(X) devices; the update also addressed some minor bugs with other devices. Unc0ver v3.5.6 was released shortly after with more bug fixes and improvements for devices running iOS 11.

Citing the change logs on Pwn20wnd’s GitHub page, each update brings the following changes:

unc0ver v3.5.6 jailbreak was released for production with the following changes

Add support for remounting the RootFS as read-write on A12-A12X devices running iOS 12.1.3-12.4

Adds support for restoring the RootFS on A12-A12X devices running iOS 12.1.3-12.4

While these updates do add ‘partial’ support for A12-A12X devices, it’s worth noting that code injection still isn’t supported as of yet. Saurik doesn’t appear to have any plans to update Cydia Substrate for A12(X) devices, and so Pwn20wnd has been working exclusively on a Substitute-based alternative that plays nicely with Cydia on those devices. Unfortunately, there’s still no ETA for release as there’s still a lot more work to be done.

unc0ver v3.5.0 is incompatible with A12 as of right now, CoreTrust bypass is all we need for an A12/A12X jailbreak.

unc0ver v3.5.6 jailbreak
unc0ver v3.5.6 jailbreak

Given the circumstances, we really can’t recommend that anyone besides developers or power-users tinker with the ‘partial’ support on A12-A12X devices. It won’t feel as robust as a full iOS 12.1.3-12.4 jailbreak, and so we instead advise waiting for ‘full’ support when the time comes.

If you’d like to download the latest version of the unc0ver v3.5.6 jailbreak

unc0ver v3.5.6 jailbreak, then you can do so from Pwn20wnd’s GitHub page. You can also use our step-by-step tutorial if you’d like to be walked through the process of jailbreaking a compatible device.

, then you can do so from Pwn20wnd’s GitHub page. You can also use our step-by-step tutorial if you’d like to be walked through the process of jailbreaking a compatible device.

Chimera V_1.3.3 is Now Available – Jailbreak A7 – A11 is supported on 12.0 – 12.4, with A12 on 12.0 – 12.1.2

Download Chimera 1.3.3 – iOS 12 — 12.2 and 12.4

Install Chimera 1.3.3 (No PC) – iOS 12 – 12.2 and 12.4 via TweakBox

Download [Chimera V_1.3.3] corresponding to jailbreak of “iOS 11.0-12.2/ iOS 12.4” Just update, and iOS 12.4 jailbreak is also possible on A7/ A8X. In addition, since Exploit changes are include, stability improvement is also expecte. Originally brought to light via iHelp BR, the most recent iOS 13 beta includes some system files with some telling indicators. As evidenced by the below, iOS 13 beta 7 includes a screenshot of an iOS home screen. With the Calendar app showing Tuesday the 10th as the listed date. So Chimera Jailbreak is Not Available A12 – A12 Plus Running iOS 13 beta.

Download ChimeraTV 1.2.6 – tvOS 12 — 12.2Jailbreak Apple tvOS 12.4

Note: 12.1.3 – 12.3 and 12.4 only supported on A7 – A11 devices. All devices supported on 12.0 – 12.1.2.

Cydia Install For iOS 12.4-13
Note: Some 12.3 betas are compatible with Chimera. (Beta 6 is not compatible).

unc0ver v3.5.3 – Adds WIP partial support for Jailbreak A12-A12X devices on iOS 12.1.3, 12.1.4, 12.2 and 12.4

Download Chimera v1.3.3 Jailbreak

[Chimera v1.3.3] has been update, and the ipa file can be downloaded from chimera.sh . Install and use with Cydia Impactor as usual. 
In case of single installation, it is already reflected in “ Jailbreaks.fun ” etc., so it can be used from there.

Download ChimeraV_1.3.0 jailbreak for iOS 12.0 – 12.4 – iOS 13/ A12 Compatible

Chimera V_1.3.3 Jailbreak A7 - A11
Chimera V_1.3.3 Jailbreak A7 – A11

Also, if you have already jailbreak, you can also update (install) by using “ ReProvision ”. This method is recommend for those who have jailbreak iOS 12.4.

Update details

  • Adopt Exploit “SockPuppet 3.0” instead of SockPuppet 1.5 & SockPuppet 2.0
  • Compatible with iOS 12.4 jailbreak on A7 / A8X devices

Supported devices & versions

With this update, the supported device & version combinations are as follows. [IOS 12.0-12.2 / iOS 12.4 compatible]・ IPhone 5s, SE, 6, 6 Plus, 6s, 6s Plus, 7, 7 Plus, 8, 8 Plus, X 
・ iPod touch 6G, 7G 
・ iPad Air, Air 2, Pro 12.9, Pro 12.9 (2017), Pro 9.7, iPad 5, Pro 10.5, iPad 6 
, iPad mini 2, mini 3, mini 4 [IOS 12.0-12.1.2 support] IPhone XS, XS Max, XR 
・ iPad Pro 12.9 (2018), Pro 11 inch

The primary difference between Chimera and unc0ver is that the former utilizes Sileo. Substitute instead of Cydia and Cydia Substrate. That said, now that both tools support similar device and firmware combinations. It comes down to user preference as to what package manager and tweak injection method you prefer to use.

This update doesn’t appear to include any important bug fixes. And so those who are already happy jailbroken needn’t rush to download. And deploy the latest version of Chimera unless they really want to.

As always, you can download the latest version of Chimera from the Electra Team’s official website. And you can also follow our step-by-step tutorial regarding how to jailbreak with Chimera.