ipwndfu

ipwndfu is an open-source Python tool for jailbreaking older iOS devices, meaning it modifies the software restrictions Apple builds into iPhones and iPads to allow running unauthorized software. The tool connects to an iOS device over USB and is designed to run on Mac or Linux, but not inside a virtual machine.

The most notable component is checkm8, described in the README as a permanent, unpatchable bootrom exploit affecting hundreds of millions of iOS devices. A bootrom is the first code a device runs when powered on, baked directly into the hardware chip. Because it cannot be updated through software patches, devices with the affected chips remain exploitable regardless of which iOS version they run. The README notes checkm8 is intended for security researchers rather than general users, and does not include the full jailbreak app ecosystem by itself. It allows dumping the device's SecureROM code, decrypting firmware keybags, and enabling JTAG debugging access by demoting the device.

The tool also includes several older exploits for earlier iPhone generations: alloc8 for the iPhone 3GS with new bootrom, limera1n for slightly newer chips, and SHAtter for another chip family. These allow putting older devices into what is called Pwned DFU Mode, enabling the ability to downgrade to older firmware versions or install custom software. A jailbreak guide for the iPhone 3GS is included in the repository.

The README includes a clear disclaimer that this software is in beta and could potentially brick a device. No warranty is provided. Users are advised to back up data before running it. No compilation is required to use the tool as distributed, though an ARM toolchain is needed if you want to modify the included assembly code. Credits are given to several well-known jailbreak researchers including geohot, pod2g, and posixninja.