Circumventing Passcode Protection (Firmware v1.0.2–1.1.4)
The iPhone uses two types of locks: a SIM lock and an OS-level passcode. When the passcode is active, the iPhone cannot be synced or accessed
The SIM lock can be bypassed by simply removing or replacing the protected SIM card. This section shows how to bypass the OS-level passcode. The forensic toolkit cannot be installed while either form of protections is active.
The procedures in this section disable the passcode by issuing raw commands to the iPhone to load a specially crafted RAM disk. This custom RAM disk moves the configuration file for passcode protection safely out of the way. When the iPhone boots, it will see that this configuration file is missing and fail over to its default mode of operation, which doesn’t require a passcode. Neat, huh?
Automated Bypass
Newer versions of iLiberty+ support a “Bypass Passcode” feature integrated right into the software. To use this, the device will need to be placed into a clean recovery state:
Cleanly power the device down by holding the Power button until the “Slide to Power Off” slider appears. Slide this to power off the device.
After the device is powered down, press and briefly hold the Power button, then immediately release it when the iPhone appears to be powering on.
After releasing the Power button, press and hold both the Power and Home buttons until the device again power cycles and the restore logo is displayed.
After the device is in recovery mode, make sure it is connected ...