turdus merula

Latest Release

Download File Version Date Hash

Download for macOS

Arch	OS / Variant	Download
x86_64, arm64 (Universal)	macOS 10.12 or later (Minimal)	.gz
	macOS 10.12 or later (Minimal)	.zst
	OSX 10.11 or later (Legacy)	.gz
	OSX 10.11 or later (Legacy)	.zst

v1.2

2026/01/08

Details

Variant	File	SHA-384 Hash
Minimal	.gz	`aa8f1aad620738db0fd04855cd9f3899c0b9c1245a664f6d9c604e213803f2e9aee6cea3d1eb17fee88885f9011edd53`
Minimal	.zst	`4bb31e67fe8d1b15d6d134b131cbaec88d95e04d8f13aa55d0509b9ea7d27982e6d747e849c11b806699bd49769b55da`
Legacy	.gz	`73269aeada35513dcb500cb8b3a1f5c29c5f29f6fa9e0bd4e04e4d0f83e60e13613fc2dd2b51567e22e58ae18ce488a3`
Legacy	.zst	`b57302634a3e49d331196cd74f9af5e31db41d40c51e7e4e4d90fce3ca9b12e2e4b916776c4c448002e93e9676d7894a`

Download for iOS

Arch	OS / Variant	Download
arm64	iOS 14 or later (rootful)	.deb
arm64	iOS 15 or later (rootless)	.deb

v1.2

2026/01/08

Details

Variant	File	SHA-384 Hash
rootful	.deb	`3abb03cfe8438ab736f8c917d1ff3d093d868bb707c8f50527dbc0bbce637e8c30365cdf7bfb2ab9181f199405e263e4`
rootless	.deb	`3c555717eb17d42b6253b4baaef6cb9e962b2462edcd8b80f26ea01acd37fbf5bd4213c0c120dcba112b8de5ef337855`

Download for Linux

Arch	Download
amd64	.gz
amd64	.zst
arm64	.gz
arm64	.zst

v1.2

2026/01/08

Details

Variant	File	SHA-384 Hash
amd64	.gz	`c8510841b01f4c0107fcbbbddf24a56514fcdf9b4fac27cb3487fc11835cb55a40d4f0ce1d16bd6489f77e509c84e3c0`
amd64	.zst	`912c04457136a68bd066f99149ce7f7b2d8ddaacb0ea71732d99840a596d3b51f3c2c16eae1a1ca9cbdfee9693b27f3d`
arm64	.gz	`e31b999745271166a64f28d0f565ce0546a912001e41ef9e12967fe93dc00e77ce8b3dbe677f6be09d3c00ab2fa6c195`
arm64	.zst	`012873b60cd4752e79b84d6726a480860a263a3f2adcdba38a45431ade83b481b35a98af3e7ed006ec0459d9bc82fe6f`

Looking for another version? See all releases >>

Changelog

v1.2
- turdusra1n
  - Rewritten the build system significantly
  - Improved logging for debugging
  - Added RA1N_ABORT_TIMEOUT environment variables
- turdus_merula
  - Added safety checks regarding file loading.
  - Added support for alternative bbfw
  - Added support for alternate URL for the ipsw.me API
  - Added support for iPadOS 18.7
v1.1
- sep_racer
  - Improved A9(X) exploit's success rate
  - Update sep_block version
- kpf
  - Fixed support for iOS 18.4+
- turdusra1n
  - Fixed sigcheck patch for A9X
  - Added option to exit after SEPROM exploit
  - Standardized shellcode for all devices
  - Added ciphertext saving feature for SEPROM exploit(s)
  - Added checkra1n mode for tethered iOS 12.0-14.8(.1) (unofficial)
  - Added palera1n compatibility mode for tethered iOS 15.0+ (unofficial)
  - Changed the current block to be saved in the block directory (the directory must exist).
  - Improved sigcheck patch flow
  - Improved the process of entering DFU mode from recovery mode
  - Improved payload build chain
  - Added missing cache cleaning to improve reliability of shellcode execution
  - Added softDFU mode detection and fixed to not run checkm8 when device is in softDFU mode (iBSS/LLB DFU mode).
  - Remove libirecovery dependency
  - macOS: Improved checkm8 success rate
  - Linux: New USB backend built from scratch
- turdus_merula
  - Added tethered support for 18.4-18.6
  - Added an experimental feature to bypass the check if the APTicket does not contain a StaticTrustCache/RestoreTrustCache in iOS 12.0-12.0.1.
  - Hiding unnecessary idevicerestore options
  - Disabled the option to save pte ciphertext block without using seprom_fwrace
  - Added a check to see if the IM4M (blob) and device ECID match
- pongoOS
  - Fix A9X early iOS 10 issue
v1.0.4
- turdusra1n
  - Mitigated a bug where the sigcheck patch was not applied correctly on A9X devices
v1.0.3
- turdusra1n
  - Fixed a bug where the sigcheck patch was not applied properly on A9/A9X devices
v1.0.2
- turdusra1n
  - Improved DFU helper
  - Added verbose boot mode
- turdus_merula
  - Fixed an issue where TSS request is not working properly on devices with SE Firmware
v1.0.1
- turdusra1n
  - Fixes an issue where A9 devices cannot be put into pwned DFU mode
v1.0.0
- Initial release

Known Issues

The program may get stuck before/after iBSS/iBEC/PongoOS transmission.
- This may be due to USB connection issues, if you encounter this, start over from the beginning.

Restoring to iOS 10 may result in your device getting stuck in recovery mode.
- Until a future update fixes the issue, restore to iOS 10.3.3 first before downgrading to your target version.

Restoring to iOS 9 from a higher version may result in a restore failure.
- If you encounter this issue, restore to iOS 10.0 - 10.2.1 first, then downgrade to iOS 9.

Restoring to a version that is too old using pre-installed blobs may fail.
- Perform a tethered downgrade first, then retry the untethered downgrade.

Restoring any device using pre-installed blobs from factory may not restore baseband correctly.
- Baseband features & activation may not work.
- Tethered restores may work fine.

For devices with a baseband chip, if Found non-customer FDR hashes. pops up during a restore, it's almost certain you'll have baseband issues.
- There is no fix for now.
- Workarounds might be developed in the future.

Some A9 devices on iOS 9 cannot be activated. Complain to Apple.

iOS 10 - 11 may fail to boot when restoring or tether booting, getting stuck on "recfg done".
- Solution: Force reboot and try again. In case your device panics instead of hanging, report the issue.

The latest baseband firmware for iPhone 7 Global (iPhone9,1 and iPhone9,2) & iPad Pro (A10X) Cellular is not compatible with iOS 10.