It has been confirmed by DjayB6, the developer of unofficial PwnageTool bundles, that the just released iOS 4.3 final and public version can be jailbroken using existing version of PwnageTool and unofficial PwnageTool bundles without using Ramdisk Fixer utility.. This iOS 4.3 jailbreak using unofficial PwnageTool bundles is tethered. So you have to connect your iDevice with PC for successful reboot. Those users who rely on unlock, should not try this method of jailbreaking because ultrasn0w unlock tool is broken on iOS 4.3 due to ASLR.



Jailbreak iOS 4.3 Using PwnageTool [How To] :

Part 1: Download the Required Tools

Download the following tools before you start the iOS 4.3 jailbreak process:

Download latest iTunes 10.2.1 and install it on your Mac
Download PwnageTool to jailbreak iOS 4.3 
Download PwnageTool bundles to jailbreak iOS 4.3
Download iOS 4.3 
Download Tetheredboot

Part 2: Patching / Modifying PwnageTool using custom bundles

Since official PwnageTool doesn’t support iOS 4.3, we have to modify it using the custom PwnageTool bundles.

1) Right click on the PwnageTool which you download in Part 1 and then click on “Show Package Contents”.


2) Navigate to this path : /Contents/Resources/FirmwareBundles and put the bundle folder which you downloaded for your device in Part 1 in this location.

3) Close the folder.


Part 3: Creating Custom iOS 4.3 firmware

1) Launch iTunes 10.2.1.

2) Back up your iDevice.

3) Launch modified PwnageTool.

4) Now select your iPhone and click the blue arrow to continue.

5) Browse for IPSW file (iOS 4.3)  which you have already downloaded in Part 1. (Make it sure that IPSW file is placed on desktop)

6) Now press the Build button to cook the custom iOS 4.3 firmware and save it on your PC.



Part 4: Restoring iOS 4.3 Custom Firmware

Put your iDevice into DFU mode. PwnageTool bundle will help you in this process. Follow the onscreen instructions for this purpose.

1) Hold Power and Home buttons for 10 seconds
2) Now release the Power button but continue holding the Home button for 10 more seconds
3) You device should now be in DFU mode
4) After the iDevice is in DFU mode, launch iTunes and it will tell you it has found an iDevice in recovery mode. Press OK to continue.
5) To install the iOS 4.3 custom firmware, press the Alt/Option key and click on “Restore” in iTunes.

Now wait for few minutes until iTunes does its job. The iPhone will reboot after it has been restored successfully.

Part 5: Booting the iDevice in Tethered Boot

Since iOS 4.3 jailbreak is tethered, we will have to connect the device with PC and use a software“tetheredboot” to boot it into a tethered jailbroken state. Tetheredboot utility requires two files from iOS 4.3 to do its jobs. The names of those files are kernelcache.release.n90 and iBSS.n90ap.RELEASE.dfu


1) To get these files, change the extension of iOS 4.3 from .ipsw to .zip and extract it. You will find them under/Firmware/dfu/ folder.

2) Put all these files and tetheredboot utility into a new folder on desktop and name it “tetheredboot”.

Method 1 to Invoke Tethered Boot :

*Start terminal and run the following commands :

sudo -s

* Type your admin password and run:

/Users/d0mino/Desktop/tetheredboot/tetheredboot
/Users/d0mino/Desktop/tetheredboot/iBSS.n90ap.RELEASE.dfu
/Users/d0mino/Desktop/tetheredboot/kernelcache.release.n9
* Replace “d0mino” with the name of user on your Mac and “Desktop” with name of location where you placed the “tetheredboot” folder.

* When you are asked to put your iDevice into DFU mode, follow the same method you used in Part 5. After a short period of time you will see “Exiting libpois0n” in the terminal windows which indicates your iPhone, iPad, iPod Touch will be booted within few moments.

Method 2 to Invoke Tethered Boot :

* Put your device into DFU mode. Open the terminal and run the following commands.

cd /Users/username/Desktop/Tetherboot/
./tetheredboot iBSS.n90ap.RELEASE.dfu kernelcache.release.n90
Now, you have successfully jailbroken iOS 4.3 using PwnageTool bundle without using Ramdisk Fixer. The guide to unlock iOS 4.3 is here