How To Get The Auth Token (Identifier) From An iPhone 4S Using Wireshark


This tutorial is based on a german article from the site Ketchup Mayo Senf. We take no credit for this tutorial. If you speak german, check out the original article as it is a little more detailed.

Please read the whole article before you start. Especially the part where you have to decrypt SSL encrypted packages is extremely tricky.

There is another way to get the Auth Token from an iPhone 4S without having to restore it: How To Get The Auth Token (Identifier) From An iPhone 4S Using Your Own DNS Server

What you need

  • iPhone 4S
  • Laptop or a Computer with Wi-Fi
  • WireShark

How To Get the Auth Token

  • First, you need an iPhone 4S reset to factory settings. To achieve this, you have to restore your iPhone 4S. (Note: If you wan’t to jailbreak your iPhone 4S and are still on iOS 5.0, you can’t do that as you will have to restore to iOS 5.0.1) It may also work if you simply disable and enable Siri again, although this is not confirmed.
  • After you restored your iPhone, go through the setup and stop before you can activate Siri. You have to be connected to the same network as your laptop or computer with WireShark is.
  • Start WireShark and start caputring from your Wi-Fi card.
  • Then click on “Activate Siri” on your iPhone 4S.
  • You should then see some SSL encrypted packages in WireShark. To learn how to decrypt them, click here.
  • In one of the packages, you will find a key that looks like this 2501C5A6-069D-3B12-A475-304A4CC83623
Follow us on Twitter of Like our Facebook page to get the latest news from our site:

Share this article


Leave a Reply

Your email address will not be published. Required fields are marked *