Skip to main content

Dual Booting Android 2.2 Froyo on iPhone 3G

OK, so we had a couple of 3G iPhones laying around mostly doing nothing.  So I decided to make one a hacking platform by Jailbreaking it, and I also wanted to test out Android.   Here is how I made the device into a dual-boot device.

I started with a 3G iPhone running 4.0.1 (8A306).

Using the jailbreaking Instructions (using instructions from
- I Downloaded, installed, and opened iTunes on Windows.  I tried, but it didn't work with the iPhone image I had.  I wasn't sure if it was the image or iTunes, but most sites that I visited had references to iTunes 9, so just to be safe I uninstalled iTunes 10 and used iTunes 9.2, which I downloaded from

- I then download the iOS 4.0.1 firmware The file  I used was called iPhone3,1_4.0.1_8A306_Restore.ipsw.  This worked.  Here's the scoop:

             - When you run, if you have the correct firmware, you'll get this prompt:


        - I was then presented a menu, which I chose to install Cydia.
       - The trickiest part was the timing menu shown below.  Thank goodness they put a Back Button, as there was no way to read what I was supposed to do in the 2 seconds they gave me.


     And that was it, here's the final RedSn0w screen:


- As noted, the rest of the install took place on the iPhone, but here's a shot of it downloading:


- When it rebooted, it looked exactly like a normal iPhone, which surprised me.  It even  continued the app install that I was hung in the middle of on the real iPhone OS prior to using RedSn0w!  But Cydia was installed, so it must have worked.  

- When I ran Cydia, it said that it was reorganizing my applications...

- Cydia asked who I was, so of course I said hacker... 

,,, then it loaded apps, 

and presented a pop up stating that you can keep your old apps, or upgrade when apple does... if you want to make your life easier, Cydia can keep your old stuff.  I was going to check that box, but I got an Essengial Upgrade popup first.  When the power went away, I was back at the Cydia page, so I said "make my life easier."  

- It asked me if I wanted an essentials upgrade or a complete upgrade.   I didn't really look into it, but selected the complete upgrade.  It installed the Debian Package Manager.  

When it was done, it asked me to reboot the device. 

- iPhone Jailbroken!

Now was time to get Android working!!
Steps for dual-booting into Android 2.2 (Froyo) using LifeHacker's method 


- After I had a Jailbroken iPhone, I installed Bootlace from Cydia
   - I added as a source 
   - I went to the new repository and added the Bootlace Bootloader

- Ran Bootlace
   - It downloaded, prepared, and patched the kernel.  After it was done, it was nice 

enought to tell me that I needed to reboot my device.

- Installed iBoot
   - Open Bootlace, click OpeniBoot button, install

- Install Android
   - Tap iDroid button, and install. As LifeHacker said... this took quite a while.  I was 

glad my iPhone was plugged in, or the battery would have died.  I imagine this is because it 

has to download a 500MB Android image through the iPhone wireless... 

Usage tips:
- iPhone back button acts as Android Menu button
- Volume button doesn't work
- Tap Quickboot button in Bootlace to boot either into a shell, or Android

Here are some screenshots:


Yes, the screen is broken.   Look for me giving instructions on how to fix a broken screen soon.    


Popular posts from this blog

ADS-B plotting with Kali (and other SDR goodies)

Recently I wanted to try some Software Defined Radio stuff.   
I had a RTL-SDR, FM+DAB, DVB-T USB Stick Set with RTL2832U & R820T. that I got from:
But, even though this dongle would break out FM radio stations, and ATC frequencies (like the local Ground Control, tower, and even ATIS), which was cool, it wouldn't break out ADS-B.   
Thus, I bought a Vantech Green Mini RTL2832U R820T DVB-T SDR DAB FM USB DIGITAL TV Tuner Receiver RTL-SDR Project + DAB dongle Tuner MCX Input from Amazon, and tried this.  
This dongle was able to listen to the 1090MHz frequency required for ADS-B (as it goes from 25MHz to 1700MHz).  There were tons of Windows programs out there for breaking out and plotting ADS-B Mode S broadcasts, but not many for Linux.  
For Kali Linux, here's how I got it running and plotting planes around my home:
0) before you start, you should do an apt-get update to ensure you hav…

Beaglebone Black as a Wireless Intrusion Detection System (WIDS)

Recently I have been wanting a wireless IDS (WIDS) to detect nefarious wifi activity.  I also had a Beaglebone Black hanging around that I wanted to put to good use.   This seemed like a perfect match, and indeed it seems to be so!

I did some research on WIDSs, and although there is SUPPOSED to be several out there, nearly all that I seemed to find was commercial and Windows-based products, not something I could use myself.   
About the only exception to that rule was Kismet, so I decided to give that a try.  Kismet is supposed to work as a WIDS, and per its documentation should catch the following attacks:
Kismet supports the following alerts, where applicable the WVE (Wireless Vulnerability and Exploits, ID is included: AIRJACKSSID Fingerprint Deprecated The original 802.11 hacking tools, Airjack, set the initial SSID to 'airjack' when starting up. This alert is no longer relevant as the Airjac…

Temper Temperature monitor on a Beaglebone Black

Beaglebone Black as a temperature monitor:

Recently I wanted to monitor the temperature of my shed.  I thought I'd use a small computer such as a Raspberry Pi or a Beaglebone or Odroid.

My Raspberry Pi boxes were all in use, so I grabbed my Beaglebone, which was doing nothing.

I flashed it with the Debian9.32018-03-054GB SDIoTimage, but that seemed like it was running lots of bloatware and the ethernet interface wouldn't take a static IP with /etc/network/interfaces.

So I went with the Debian9.32018-01-284GB SDLXQTi image instead.  I still had the same problem, that lots of junk was running, and I couldn't configure my interface by modifying /etc/network/interfaces

So my first step was to get rid of all the bloatware.  If you're using a Raspberry Pi or something, you can skip this and just go to the second step below

STEP 1--Remove Blotatware from Beaglebone Black:

With some searching, I came across this post:…