Checkra1n jailbreak is a new generation jailbreaking tool based on axi0mX’s permanent unpatchable bootrom vulnerability checkm8. The program can jailbreak all iOS devices from A5 to A11, including iOS 12.3 and iOS 14. Checkra1n is a jailbreak tool for Mac and Linux.
Checkra1n is the ultimate jailbreak tool, supporting all versions of iOS devices from the iPhone 4S (A5 processor) through the iPhone 8 and iPhone X. (A11 chip). All of the gadgets listed can be jailbroken for the rest of their lives. This includes all current iOS versions as well as future releases.
Checkra1n jailbreak is compatible with all A5 through A11 devices. Checkra1n Jailbreak is only compatible with the most recent smartphones, including the iPhone 11 Pro, iPhone 11, iPhone 11 Pro Max, iPhone XR, iPhone XS Max, iPhone XS, and iPhone XS Max. Install the Cydia software on the most recent iOS 14 version.
checkra1n compatibility (devices supported):
- A5 – iPad 2, iPhone 4S, iPad Mini (1st generation)
- A5X – iPad (3rd generation)
- A6 – iPhone 5, iPhone 5C
- A6X – iPad (4th generation)
- A7 – iPhone 5S, iPad Air, iPad Mini 2, iPad Mini 3
- A8 – Phone 6, iPhone 6 Plus, iPad mini 4
- A8X – iPad Air 2
- A9 – iPhone 6S, iPhone 6S Plus, iPhone SE, iPad (2017) 5th Generation
- A9X – iPad Pro (12.9 in.) 1st generation, iPad Pro (9.7 in.)
- A10 – iPhone 7 and iPhone 7 Plus, iPad (2018, 6th generation), iPad (2019, 7th generation) (iOS 14 not supported)
- A10X – iPad Pro 10.5″ (2017), iPad Pro 12.9″ 2nd Gen (2017)
- A11 – iPhone 8, iPhone 8 Plus, and iPhone X
Checkm8 is a tethered iOS exploit tool that needs your iPhone to boot after each reset. It is the main component of the checkra1n jailbreak tool, and it is a lifetime jailbreak exploit that Apple cannot patch with iOS upgrades. This problem was only addressed in the most recent hardware update.
What more can you do with the Checkm8 exploit? Checkm8 supports dual-booting (device may boot to Android) and will work with all future iOS versions published by Apple. To jailbreak, you’ll need a computer.
Also susceptible to the checkm8 vulnerability are the first-generation Apple Watch, as well as Series 1, 2, and 3. The checkra1n Tool can also circumvent jailbreak detection and in-app DRM methods. Recently, it was announced that checkra1n now supports Apple TV (1st, 2nd, 3rd, and 4th generation) on tvOS 13.
The new jailbreak tool was made possible by jailbreak community members such as ih8sn0w, jonseals, pshycotea, qwertyoruiop, nullpixel, xerub, siguza, aregp, axi0mx, and more. You may use checkra1n Jailbreak to install any package management (Cydia, Zebra, Sileo, etc.).
checkra1n Jailbreak makes use of Cydia Substrate, the sophisticated code modification platform that powers Cydia. Substrate makes it simple to alter applications without requiring the source code. You may install modifications, hacks, libraries, and applications from so-called repositories using the Cydia package manager.
Apple included a new mitigation to SEPOS for A10 and above devices (excluding Apple TVs and iBridge) in iOS 14: if the device was booted from DFU mode and the Secure Enclave gets a request to decrypt user data, it would panic the device.
Checkra1n can get control of the Secure Enclave on A10 and A10X using the newly reported blackbird vulnerability and deactivate this mitigation. Support for A10 and A10X devices is in the works and will be available in the next weeks.
iOS 14 jailbreak compatible devices include:
- iPhone 6s, 6s Plus, and SE
- iPad 5th generation
- iPad Air 2
- iPad mini 4
- iPad Pro 1st generation
- Apple TV 4 and 4K
- iBridge T2
How to Install Checkra1n
You are just a few clicks away from obtaining the checkra1n jailbreak tool for Mac and Linux (Windows versions are not available yet). Download the unpatched jailbreak exploit using our instructions. This jailbreak tool for iOS 13 and iOS 14 is completely safe to use and will not cause any lasting alterations to your device.
macOS checkra1n
As an early beta sample, this software should not be installed on a main device. We highly advise you to proceed with care. Download the most recent checkra1n version.
- Get checkra1n for macOS.
- Navigate to the checkra1n.dmg file.
- Place checkra1n in the Applications folder.
- Launch the checkra1n app.
testra1n for Linux
- Download for Linux (CLI, x86_64)
- Download for Linux (CLI, arm)
- Download for Linux (CLI, arm64)
- Download for Linux (CLI, i486)
Find out more about how to use checkra1n Linux.
If you reboot the device without first doing a checkra1n, it will return to stock iOS and you will be unable to utilize any third-party software installed until you enter DFU and checkra1n the device again.
iOS 14 Jailbreak Instructions
Checkra1n is a semi-tethered jailbreak utility that starts the jailbreak using a PC. You are one step closer to jailbreaking the system if you possess a compatible iDevice and can connect it to a PC or Mac.
- Install checkra1n.
- Unzip the dmg file.
- Transfer the application to the Application folder.
- Launch the checkra1n application.
- Use a USB cord to connect your iPhone to your PC or Mac.
- Tap Start to begin jailbreaking your smartphone.
- The Recovery Mode will be activated by checkra1n.
- Put your iDevice into DFU mode (the screen must remain dark).
Before you jailbreak, get into DFU Mode:
- Keep the iDevice in Normal or Recovery Mode, and connect in the USB cord (do not use a USB extension cable).
- Hold the HOME button (or the Volume Down button on iPhone 7/7p), then the POWER button, until the screen goes black.
- After around 10 seconds, release the POWER button, but maintain holding the HOME button (iPhone7/7p press Volume Down button instead) for about 5 seconds.
Steps to enter DFU Mode on an iPhone 8, iPhone 8 Plus:
- Insert an original USB cable, then quickly push the Volume “+” and Volume “-” buttons while holding the Power button.
- When the iDevice shuts off, press the Volume “-” button for 5 seconds, then release the Power button until it says “success”.
- Wait for the device to enter jailbroken mode.
Lunch checkra1n loader from the home screen
Install Cydia to have access to tweaks.
Set the nonce using checkm8-nonce-setter.
checkm8-nonce-setter is a nonce setter for devices that are compatible with checkra1n’s checkm8 exploit. The iOS version is irrelevant. You may set your nonce and downgrade if your device is compatible with checkm8 Plus Linus Henze’s Signature Check Remover. This script is exclusively for macOS.
To begin the script, use the Terminal app and follow the on-screen instructions. After establishing the nonce, you may utilize the SHSH you used throughout the process to futurerestore iOS 13 to an unsigned version.
Nonce is a signing mechanism that uses the baseband signing ticket, the APTicket, and SEP to randomize Apple’s cryptographic signature hash blobs (SHSH blobs) (Secure Enclave). When you restore the device, a random string of letters and numbers is produced each time.
The nonce (e.g., 0x532fd02xd15k30) transmitted to Apple serves to request a blob (or APTicket) for the firmware to be restored. If the device nonce and the APTicket match, you may restore even an unsigned IPSW system file. On iOS, there are just a few nonce generators accessible.
CheckNonceGUI, a graphical interface for Checkm8 Nonce Setter, is another option. The app is compatible with the iPhone 5s, iPhone 7/7 Plus, iPhone X, iPad Mini 2, iPad Mini 3, iPad Air, iPad 6th Generation, iPad 7th Generation, and iPod Touch 7th Generation.
How to use checkra1n from the command line (CLI)
Kim Jong Cracks wrote checkra1n in nano, and it can also be launched from the console using the command line. There are four command arguments available: -h (for Help), -d (for Demote), -V (Verbose Boot), -s (Enter Safe-Mode), and -s (Enter Safe-Mode) (run as daemon).
- Launch the Terminal software on Mac OS.
- Navigate to /Applications/checkra1n.app/Contents/MacOS/checkra1n – MacOS.
- The software will now operate as a daemon while waiting for the DFU device.
The biggest benefit of utilizing checkra1n CLI (the command-line interface) is the ability to jailbreak the most recent iOS system versions. When the GUI (graphical user interface) tells you that this version is not supported, use CLI to jailbreak nevertheless. iOS 14 is the most recent version supported.
How to Get Rid of Checkra1n
The newest version of the checkra1n software makes it simple to uninstall the jailbreak from your device. Installing checkra1n loaders on your iOS device enables you to install Cydia. There is also the option to Restore the system. When you choose this option, you will be able to remove jailbreak files as well as any modifications performed to the operating system without losing any data. This will restart your iPhone.
Update jailbreak to the most recent iOS version
The safest approach to update iOS on a jailbroken smartphone is to restore the system to the condition it was in before you jailbroke it. This option is accessible from the home screen through the Loader app (the same one you used to install Cydia). It is also critical to preserve all modifications and settings from the checkra1n jailbreak so that they may be restored after re-jailbreaking the latest iOS version.
- Download and install the Batchomatic tweak to backup all tweaks, programs, and settings.
- Create a.deb file with iOS jailbreak settings.
- Upload the.deb file to any Cloud provider.
- Launch the Loader app and choose Restore System.
- Select System General Software Update.
- Install the most recent version of iOS.
- Use checkra1n to jailbreak your smartphone.
Step 8: Transfer the.deb file to your device and install it using Filza.
Questions and Answers
What exactly is checkm8?
checkm8 (pronounced “checkmate”) is an unpatched bootrom attack that affects hundreds of millions of iOS devices. Most iPhone and iPad versions are susceptible, ranging from the iPhone 4S (A5 chip) through the iPhone 8 and iPhone X. (A11 chip).
How does checkrain function?
To put your device into DFU mode, use the checkra1n app and follow the instructions. Hax occurs automatically from that point on, and the device boots into jailbroken mode. Your smartphone will resume in stock iOS mode.
Can I SSH into my iPad?
Only on localhost does checkrain install an SSH server on port 44. You may use iproxy through USB to expose it on your local system.
When will checkra1n Windows support be available?
It will take time to develop a kernel driver to support Windows (which is a pretty sophisticated piece of code). Rest assured, the staff is hard at work on it. There is no release date given, and the checkra1n Windows version might take a long time to arrive.
Why is it difficult to enter DFU mode?
USB-C Lightning cables (particularly those that arrived with an iPhone box) seem to be physically incapable of entering DFU mode. Please try a USB-A cable instead, or maybe third-party cables have a better chance of functioning.
Can I alternate between the unc0ver and checkra1n jailbreaks?
If you are using unc0ver and want to test out the checkra1n jailbreak without losing your customizations, create an empty file at /.mount rw and run the checkra1n jailbreak safely. Switch between checkra1n and unc0ver if you first jailbroke the device using unc0ver and produced that file.
pic by – kubadownload