On 32-bit devices running iOS 9, the kernel is not encrypted in a way that prevents runtime patching (unlike KPP on 64-bit devices). The exploit performs the following actions:
The community tool is called , available via legacy archives (not the default Cydia repos). Installation is tricky:
: A modern tool that provides a full untether for iOS 7.0 through 9.3.6 on 32-bit hardware. It can be installed directly on the device via Safari-based installers like Jailbreaks.app .
That safety net is worth the extra tap of "Kickstart."
, meaning you must "kickstart" the jailbreak using an app on the device every time it reboots. Requirements: A 32-bit device (A5 or A6 chip) running iOS 9.3.5 or 9.3.6. Installation: Usually installed via a computer using a tool like Sideloadly or occasionally through no-computer websites like jailbreaks.app Install the Phœnix app and trust its profile in Settings > General > Device Management Open Phœnix and tap Prepare for Jailbreak The device will reboot, and Cydia should appear. 2. Achieving an Untethered Setup (Downgrading)
For anyone still using devices on iOS 9.x today, weigh the benefits of customization and extended device life against those risks. If you pursue jailbreaking, prioritize thorough guides from trusted community developers, avoid shady repositories, and keep a tested backup plan for recovery.
your firmware. iOS 9.3.6 itself does not have a public untethered exploit, but older versions it can move to do. Downgrade to iOS 8.4.1 or 6.1.3: