Set a nonce with nonce Enabler: Prometheus Guide

nonceWhether you recently have a jailbreak & you like to move to various firmware simply with Prometheus’ nonce enables method, so guys you must have to abide by Parts 1 & 2 of the guide.

Set a nonce with nonce Enabler

Whether you recently have no jailbreak, and you like to move just to various firmware just with Prometheus’ nonce collision process, skip Part 1 & perform just Part 2 of the guide.

However, just before you start to abide by the tips, read the complete guide (Parts 1 & 2) via at a time, & watch tihmstar’s two videos that outline the method visually. So this will also save your time & errors in the long run. You have to confirm that you have all the needed files ready just before you start. Similarly, these are listed in the opening article. So guys you have to be prepared in order to continue directly from Part 1 to Part 2 of the guide. We have both open, and also leave sufficient time in order to follow them one after each other.


Though this guide also able to use an upgrade just from iOS 9.3.3 to iOS 10.2 as an instance. But it is also able be used to move between any firmware in principle. Whether & just whether you meet the requirements. Well, whether you guys are using this guide for moving between various firmware, simply replace any mention of iOS 10.2 simply with the destination firmware that you like, & indications of iOS 10.2.1 with a recently signed firmware. So some instances of further possible Prometheus restores that would be iOS 10.2 > iOS 10.2, iOS 10.3 b1 > iOS 10.2, & iOS 9.1 > iOS 10.2.

Also read: Notifica: How To Change Your iPhone Notifica Banners/Widgets


  • Confirm that your device also has a jailbreak with tfp0. And that it is active. Whether on iOS 9.3.3, that just means re-jailbreaking simply with Luca’s JailbreakMe website. Users on previous firmware must have examine that their jailbreak also has tfp0. And possibly install a patch themselves whether it does not.
  • You have to here make a folder on your Desktop and name it nonceenabler.
  • Here you guys have to must download the nonceEnabler tool. And place it just into the folder on your desktop.
  • However, Copy the .shsh2 blob simply for the firmware that you like to move to. And paste it into the folder on desktop too.
  • At this step, you have to check the generator from your .shsh2 blob.

a) Whether blob was saved just without an appropriate nonce, so then the generator is also able to be found inside your blob file:

In order to get it, you have to rename your blob simply from .shsh2 to .plist. Next head to your .plist file in a text/plist editor of your choice (Well, guys I use TextEdit or TextWrangler). Now drop to the very bottom of the file & then there find the generator field. Simply you have to copy the generator value. Paste it somewhere safe for later. Rename your .plist file back to .shsh2.

Whether your blob also has no generator field in it, so then you probably have saved it with a specific nonce, so the guy must try Step 4) b).

Must read: Set up Hotmail On iPhone: How To Setup Hotmail account



b) Whether your blob was also saved with five specific nonces, however, that tihmstar offered on his blog:

Here the tihmstar has offered the generators just in the description section of his video guide, where you are able to also find them.

  • Here you have to head to the Terminal app from /Applications/Utilities, or through Spotlight
  • Now connect the device to the PC.
  • Well, type the SSH into your device by typing:


Here you have to restore YOUR_DEVICE_IP_ADDRESS_HERE just with your iOS device’s IP address.


  • Here you guys have to must enter your device’s root password whether prompted. Just by default, the password is alpine, but whether you abided by my SSH guide linked just above you should have changed it. And so should enter your new password instead.
  • At a time when your device is connected through SSH, leave the Terminal window just with SSH open and running, and then must minimise it.
  • Head to a second Terminal window
  • However, at the Terminal prompt, you have to must type cd. Then drag the nonceenabler folder simply from your desktop just onto the Terminal window, and hit Enter.
  • Here you have to type:

scp nonceEnabler root@YOUR_DEVICE_IP_ADDRESS_HERE:

Restore Your Device IP Address

Restore YOUR_DEVICE_IP_ADDRESS_HERE just with the IP address of the device. That you guys used to connect to it in Step 6. So please note the colon at the end of your device’s IP address.

  • Simply the Terminal should now display the nonce enables file being transferred to the device.
  • Here you guys have to Enter your device’s root password whether prompted. Simply just by default, the password is alpine. Whether you followed the guide you should have changed it. And so should enter your new password instead.
  • now you must return to your open SSH Terminal window, that you minimized in Step 8. However, the command prompt should read root#.
  •  Though at the prompt you have to enter the following command, in order to run nonceEnabler:


  • Now you should view the output as nonceEnabler attempts in order to patch the kernel. Whether it does not complete quickly, so then with just one line of “patching bytes at…”, Next it also has not worked. Whether guys many lines of patching visible, here you have to then try restarting your device and following Steps 4-15 once more until it works. (Remember to re-jailbreak after restaring whether you are on a semi-untethered jailbreak. And use a process with tfp0 turned on).
  • At a time when the output of Step 16 reads “done patching” just without printed too many lines of bytes, & simply without crashing, contineu to Step 19.
  • Thoigh now at the prompt, you should type:


Replace your Generator

Here must Replace YOUR_GENERATOR with the generator just from your own .shsh2 file, that you noted down in Step 4.


  • However, this should also set the generator simply in nvram. So that when we restart, the device that should generate the matching nonce. We are able to also then use our saved blob. Just because the nonce also saved in it will also match the nonce on the device. In order to check that the generator is savedin a right way just in nvram, ao then you must type the following command at the Terminal prompt:

nvram -p

The terminal will also print out all the start commands for the device. Confirm that you are able to also see boot-nonce simply in the list. And that it also has your generator value set.

  • Type the following command in Terminal:

nvram auto-boot=false

You are able to also now check this value is set rightly the exact way so then we did in the old step, just with nvram -p. You have to look for the auto-boot flag to be simply listed, with the value Wrong.


Don’t close the Terminal windows, reboot your iOS device, or disconnect your iOS device after Step 21!

Continue simply on to Part 2 of the guide & also use future restore!

Whether you do not like to use future restore now, so then you don’t prevent here! Abide by the section mentioned below to cancel the process.

Also see: Weather: The Best Free Weather Apps for the Mac

Whether you are not about to use future restore now, perform this!

  •  Simply at the Terminal prompt, you guys have to type:

nvram auto-boot=true

2) Now Type this:

nvram -p

Here you guys have to confirm the auto-boot flag is set back to true, on the other hand your device will not restart back to iOS, so it will then keep starting back to recovery.

3) So you have to now Type this :


However, this will restart your device simply back to iOS as usual. Simply you will have to go via this guide once more in the future whether you like to use future restore just with nonce enables.

Whethe you are recently not jailbroken & you like to move to a various firmware with Prometheus’ nonce collision procedure, skip the Part 1 & just go directly to Part 2 of the guide.

Also read the article: 19 Advantageous Mac Startup Keyboard shortcuts you should know

Set a nonce with nonce Enabler-Conclusion

Well, I hope that you guys will like the guide. If you face any problem or have any queries so then you can ask us in the comments section below.

Leave a Reply

Your email address will not be published. Required fields are marked *