tfp0 Bug Could Lead to iOS 13.3 – 13.3.1 Jailbreak for iPhone 11 Pro, iPhone XS

Thanks to the checkm8 bootrom exploit, we saw an iOS 13 jailbreak drop pretty soon after the release of the OS. As you can see from the steps above, the method to jailbreak your iPhone running iOS 13 is relatively more complicated than simply running the checkra1n jailbreak tool on macOS.

iOS 13.3 Jailbreak for iPhone 11 Pro MAC

iOS 13.3 Jailbreak for iPhone 11 Pro WINDOWS

However, the exploit only worked on iPhone 5s to iPhone X and was incompatible with newer iPhones and iPads.

The good news is that a new tfp0 bug has been discovered that could pave the way for an iOS 13.3.1 jailbreak for the iPhone 11 Pro and iPhone XS.

Discovered by @08Tc3wBB and validate by security researcher @RazMashat, the tfp0 exploit has been confirmed to work on A12 and A13 Bionic devices running iOS 13.3.

The teaser video posted by @08Tc3wBB does not reveal much — it only shows a forced crash of the Apple News app.

Nonetheless tfp0 exploit is an exciting prospect for jailbreak iOS 13.3 – 13.3.1

This is not the first tfp0 exploit that we have seen for iOS 13 or iPhone 11 Pro.

In fact, a tfp0 exploit for the iPhone 11 and iPhone 11 Pro was teased within days of the devices going on sale but that never translated into a real jailbreak tool.

The problem here is that there is still a lot of work that needs to be done before this tfp0 exploit could be use to jailbreak the iPhone 11 Pro or iPhone XS

There’s always hope that someone from the jailbreak community takes interest in this exploit and ends up building a jailbreak tool for newer iPhones, though this is something that only time will tell.

Update: @iBSparkes has posted a screenshot on Twitter confirming that he has been able to use the tfp0 bug to hack an A13 Bionic iPhone i.e. either the iPhone 11 or iPhone 11 Pro running iOS 13.3.

How to Jailbreak iOS 13.3 – 13.3.1 Using Ra1nUSB on a Windows PC

Step 1: Download Ra1nUSB for your Intel or AMD PC. Also, install etcher and proceed to create a bootable USB drive using the tool. Select the Ra1nUSB image file when prompted during the setup process.

Jailbreak iOS 13.3 – 13.3.1 Step 1

Step 2: Shut down your PC and boot into its BIOS by pressing the F10/F12 or DEL button during the startup process. In the BIOS, go ahead and disable the following features:

Step 2 Jailbreak iOS 13.3 – 13.3.1
  • VT-D
  • EL SerialPort
  • SecureBoot
  • Stack Network
  • Fastboot
  • Wake on LAN

While you are at it, enable the Virtualization option in the BIOS. Make sure to save the changes before exiting the BIOS.

Step 3: Plug in the bootable Ra1nUSB pen drive and then switch on your PC again. Make sure to boot off the pen drive instead of Windows. From Clover bootloader, select the Boot macOS Install from Ra1nUSB option.

Jailbreak iOS 13.3 – 13.3.1 Step 3

Wait for a few minutes as the pre-packaged macOS image boots on your PC. If you end up getting any error during the boot process, there’s not much you can do. You can try again but that’s unlikely to solve the problem.

Step 4: If Ra1nUSB manages to boot on your PC, you should see a macOS-like installer screen. You do not need to proceed with the installation of macOS. Instead, at the top, click Utilities followed by Terminal.

Step 5: Type “ra1nusb” in the Terminal window and press Enter. This should open the Checkra1n jailbreak tool which you can then use to jailbreak your iPhone or iPad running iOS 13 – iOS 13.3. You can follow this guide from Step 3 on how to use the Checkra1n jailbreak tool.

Jailbreak iOS 13.3 – 13.3.1 Step 4Step 5

Using Ra1nUSB: Things to Know

Jailbreak iOS 13.3.1
Jailbreak iOS 13.3.1
  • There are two different variants of Ra1nUSB, one for Intel PCs and another for AMD PCs.
  • For the entire process, you will need access to a USB drive with at least 8GB of free space.
  • The method requires you to change some settings in the BIOS of your computer.
  • There is a high probability that Ra1nUSB will simply not boot on your PC. There’s not much you can do to bypass this problem.
  • If everything works as intended, you can jailbreak iPhone 5s to iPhone X running iOS 12.3 – iOS 13.3. Selected iPad models are also compatible with the tool.
  • Mac users can check our article on how to use Checkra1n to jailbreak iOS 13 on iPhone and iPad.

If you are not comfortable with the steps mention above, I will strongly recommend you to avoid using Ra1nUSB. Instead, try to get hold of a Mac from your friend and simply run the checkra1n tool on it to jailbreak your iPhone.