iOS Restrictions Passcode Cracker

iOS Restrictions Passcode Cracker

iOS Restrictions Passcode Cracker works on all iDevices running iOS 7 – 11.

NB: With iOS 12, Apple moved the Restrictions Passcode into the Keychain, meaning this service is no longer effective against iDevices on iOS 12 and higher. I know, sad isn’t it?
Nothing for you to worry about, your new solution is Pinfinder, a small, downloadable freeware cross-platform utility that will recover your Restrictions Passcode from an iOS 12+ backup. Easy & effective.
Forgotten your iOS Restrictions Passcode? Yeah, so had I, on my 32GB iPod Touch A1421. What a PIA, there’s no remote recovery option for that one. Stink. What I needed was an iOS Restrictions Passcode Cracker to remove the Restrictions Passcode.
Without an iOS Restrictions Passcode Cracker, I was looking at a full iOS update/restore to rid the pesky forgotten code. The official word from Apple was not good –
If you forget your Restrictions passcode, you need to erase your device, then set it up as a new device to remove the Restrictions passcode. Restoring your device using a backup won’t remove the Restrictions passcode.(source:
I’d lose my jailbreak & be forever pissed that a simple 4-digit code beat me. shakes fist at sky You could train a monkey to find the passcode – eventually. End up with monkey spit all over your iDevice too, but that’s another story.
Look, recently Apple has shown that they can apply excellent security to protect their products (iCloud from iOS 7.1.2 on for example). Often though, they leave a hole so wide you can drive a truck through it. (rm /var/db/.applesetupdone anyone? Or resetpassword even?)
One of the repeated shortcomings of technology in general is to limit PIN passcodes to 4 digits – thereby reducing the possible target range to a maximum of 10,000 (0000 – 9999, your answer is somewhere in here.) This shortcoming affects your bank PIN, Android device, TV lock code, and Apple too. By itself, this is not secure protection.
Apple have no record of Restrictions Passcodes via the Apple ID mechanism, therefore the passcode data is on your device, right? Well obviously it is. Let’s find it. Where should you look? In an unencrypted iTunes backup, that’s what backups are for – storing data from a device.
It’s public knowledge that Apple obfuscate data  with the pbkdf2-hmac-sha1 encryption, leaving a string of garbled text that requires decryption to be of any use. So, the process is – find the string, copy it, crack the encryption, pr0fit!!
Let’s Get Cracking!
If you have a Jailbreaked device, and thus root-level access to the file system, search for, using either iFile from the device or a PC tool like iTools or iFunbox. Open the .plist, copy the RestrictionsPasswordKey data and RestrictionsPasswordSalt data then paste it into the relevant form boxes of the iOS Restrictions Passcode Cracker below.
If your iDevice is not JB’d, then you need to extract the string from an unencrypted iTunes backup. Windows users can find your backup folders here: – %SYSTEMDRIVE%/Users/*Your Username*/Appdata/Roaming/Apple Computer/MobileSync/Backup/Long Random Number/ and on Mac ~/Library/Application Support/MobileSync/Backup/
Inside the folders there’s a file named 398bc9c2aeeab4cb0c12ada0f52eea12cf14f40b – this contains the encrypted data string that we need. Copy that file name & use your OS Search function.
Found it? Good. Now open the file with a simple text editor (ie Notepad) to expose data that reads like this:

RestrictionsPasswordKey      M/p4734c8/SOXZnGgZot+BciAW0=
RestrictionsPasswordSalt     aSbUXg==

So the required data is:

Key: M/p4734c8/SOXZnGgZot+BciAW0=
Salt: aSbUXg==

The Magic:

Simply copy/paste the two strings into the relevant iOS Restrictions Passcode Cracker form boxes below. (Really, copy/paste – it’s too easy to make a mistake transcribing manually) Next, hit the blue Crack It button & wait til it iterates through the possibilities.

You can select your preferred range – if you know for sure that your lost passcode didn’t start with 00, for example, then enter 1000 in the Starting box.

NB: This is a private transaction. No data is transmitted from this page. All the work is done in your browser by Crypto.js

iOS Passcode Cracker

Pro Tip:

Use a very analog version of distributed computing to decimate the time required to crack your iOS Restrictions Passcode. Open 5 browser tabs with the iOS Restrictions Passcode Cracker loaded in each.  Set the Starting Passcodes at 0000 (default), 2000, 4000, 6000, 8000, then hit the blue button in each tab.

Your time saved is dependent on which tab finds the answer. If it’s the first tab, no time saved, sorry ’bout it. But if it’s the last tab & the answer is 9000, then you’ve only calculated 1000 passcodes to get to an answer that’s revealed after 9000 guesses in a single-iteration system. Quantified, at 4 attempts/sec, your answer is revealed in just over 4 minutes, whereas the single tab approach wont reveal the solution for well over half an hour yet.

Either way, soon enough, your iOS Restrictions Passcode will be revealed.  This is not a maybe solution, if you’ve entered the Key & Salt data correctly then this app will find the answer.

This page would not exist without the work of Hashcat and John The Ripper.  You want cracking skills? Go visit them.

Did you like that? It worked for you? Please leave a comment, tell me about it.

251 thoughts on “iOS Restrictions Passcode Cracker

  1. OMG…! Who on earth are you?? I have suffered with a restriction passcode for 10 years. When I’d get a new gadget it would install the same forgotten restriction passcode and I carried it to 3 iPads. It didn’t block me from doing anything but I couldn’t change it and had 3 attempts left. I found the file you suggested (file: 398bc…..).
    Mine was on my Windows laptop in: C:/>Documents and settings> user>Application Data> Apple Computer> MobileSync> Backup> 077e8c02981ffbbe78a664c9f28ef5fcba14ccf5
    This code cracker gave me the passcode in 3 minutes…Free at last! Thank you so so much 🤗

  2. Uhmmm…can you please help me where do i start with this i mean i cant understand much but where can i get the key and salt?

  3. OMG!!! I have the same exact phone and problem!!!! I need HELP. I also don’t have the app store or anything 🙁

  4. Hi all, many thanks to Megabyte 1024kb, this iOS cracker is a cracker, cracked my iPhone in under 4 mins, spent 4 days looking at Itunes, YouTube, relentless web know it all’s, resets, re-resets master resets, OMFG total waste of time, HERE is where you need to be, that is all..:)

  5. My mom put restrictions on my phone and now i dont have the app store or anything. I need to reset the password because she forgot it. What is one that will work on an iphone 6s?

    1. It’s not the hardware that’s relevant, it’s the firmware that your i6S is running.
      To find out, go Preferences / General / About then look in the list there for Version. If the version is 11 or under, then follow the instructions on this page. If you’re running 12, then grab the download from Pinfinder. Either way, you do need to use iTunes to do a full, unencrypted local backup.

  6. hi, I got the file from my IOS 11.3, but I can’t open it from the notepad, do we have another software to open the 398bc file??? I’m using win 10.

  7. Hi,
    I have the same issue, there is not a file named 398bc9c2aeeab4cb0c12ada0f52eea12cf14f40b.
    The iOS version of my iPhone6 is 10.3.3. iTune version is

  8. FYI this technique will no longer work for iOS 12 – Apple migrated the passcode (now called a “screen time” code) into the keychain – This is only stored in an encrypted backup, and needs a bit more effort to decrypt that keychain and then extract.

    I’ve update my free (and open source) program pinfinder to extract it for iOS 12; hopefully it helps some people:

    1. I suggest you try copy & paste the required data, the algorithm is correct, it does work. The only error possible is incorrect input.

      Failing that, you can copy paste the demo key & salt on this page to your iTunes backup then restore. Now your passcode is 0001

  9. hey! just wanted to thank you! worked on my old iPhone 5s! you my friend are a genius! much appreciated!

    Now … please tell me you have something like this for the lock screen passcode?
    I forgot my unlock code on my iPhone 6splus!

    I’ve held onto my old phones all these years just so I can get all the photos off the devices but have only just seen this and got into my 5s now I need to get into my 6splus

    it has a whole year of photos of my son when he was born up until he turned 1 and I don’t want to lose all those gorgeous photos and I have been looking for a year now on how to crack the passcode but have been unsuccessful with my hunt

    thank you again

    1. Were you using iCloud to backup Sarah? If so, you pix are available @

      If you weren’t using iCloud then I hope you backed up locally through iTunes on your computer, because there is no publically-accessible way through an iDevice screen lock code.

      You’re not going to save the actual photos on the phone. If you’ve backed up through either iCloud or iTunes, you can DFU wipe the phone then restore it from backup – which will return copies of all your baby snaps & everything else.

      If you didn’t backup your data at all, then this is your expensive lesson that many of us learn, hopefully just once.

      Backup all your data all the time. Storage is cheap, data loss is expensive. Backup, backup, backup.

  10. legend! it worked on my old 5s! you are a genius!
    now … got something like this that will work to crack my unlock passcode on my 6sPlus? I forgot my passcode to get into the phone 🙁 not happy jan! please help meeeee

    1. You’ve forgotten the screen lock code on your 6S Plus? There’s no published method for cracking that, & the existing commercial applications (GrayKey) are expensive ($US15k) & limited to law enforcement purchasers. All of which is no help to you.

      Do you have an existing back up for that phone? Like, did you connect it to iTunes & tell it to backup locally?

    1. Thats because you’ve already created an encrypted backup on that computer. Apple assume that you’re only going to want to continue with encrypted backups so they lock the option.

      I’m not certain of the way to change this in iTunes. It could be as simple as moving your encrypted backup folder out of the iTunes storage folder. Another workaround is to download my favourite iTunes substitute, iTools, & backup with that. 3uTools or iMazing are two other apparently capable iTunes replacements although I haven’t tried them personally.

      Let me know how you get on!

  11. Amazing, works well, thanks go out to you and the people who helped you, you really saved me from formatting and manually putting 120gig worth of data back manually, pheeeewwww.

  12. Hey, will it’s still work with others devises such as ipads or iPods? My brother somehow locked himself out of many things with restrictions so I wasn’t hoping to see if it could crack the code for his iPod.

    1. I miss just wondering because I felt bad when he told me and I feel bad now for searching online and getting nothing 😓

  13. I have Iphone 6 plus with iOS 11.4, not JB’d. In the folder you mentioned above I can not find the file named “398bc9c2aeeab4cb0c12ada0f52eea12cf14f40b”
    Any help please?
    Thank you in advance!

    1. Have you actually backed the iPhone up locally? Is there a MobileSync\Backup folder full of other stuff? I suspect that’s the reason for no 398bc9c2aeeab4cb0c12ada0f52eea12cf14f40 file.

      1. Of course i backed up the iPhone using iTunes and i have locally MobileSync\Backup folder full of other stuff, but I do not have file 398bc9c2aeeab4cb0c12ada0f52eea12cf14f40 ?

        1. Hmm, ok, I’d like to have a look at this. A basic way would be for you to screenshot that folder & email me the image.

          The more effective way would be through an AnyDesk remote desktop connection – AnyDesk is free, secure & real easy to use.

          You’re about 10 hours behind my clock here, so your 8pm is 10am for me. I’m good for connecting around then.

  14. Hi,
    I lost my access people of my spare 4S (iOS9.3.5) for two years already, reached to your page is such a encouragement and hope to me,

    However, when I finally put in the correct commands,
    It showed as 0001 was my access pw n which is not…another 5mins lock…

    I tested with my 5S (11.4), the password cracker just skipped my correct access pw…

    Is there anyway to solve this out?

    1. If you copy/paste the Key & Salt data correctly, then this utility will give you the correct answer. Apple use 1 algorithm to encrypt the Restrictions Passcode on all iDevices, every single one. Yours is no different.

      If this cracker works on one iDevice (it obviously does) then it works on all of them.

  15. It got the wrong passcode for me. However it seems reliable. It said my restrictions passcode was 4921, but when I put it in it doesn’t work 🙁

    1. There’s an error in your input then Adam, check your data & try again. You see, the thing is that it can’t work for some & not for others. It’ll work.

  16. Awesome! Worked great for my wife’s iPhone running 10.3.3 when she somehow enabled restrictions but didn’t remember the restrictions pin. Thanks a ton!!!

    1. I’ve got an iPhone SE here, I’ll update the iOS & check the passcode recovery today.
      OK Don, I’ve just run a Restrictions Passcode recovery on 10.3.2 – data recovered from backup was:
      Key – lyRr+z1GX1SlnLFrkSQHwHBL2HU=
      Salt – x2TdPg==
      For which the Passcode Cracker returned the correct response – 1024

      I suggest that you might want to read the instructions again, or try copy/paste the Key/Salt data instead of typing it in.

      1. it not working,my iphone is ios 10.3.2
        can you check for me please?

        1. Is the data you’ve entered copy/paste Joni? I’m running a check myself now, but by far the most recurrent cause of failure is that the Key or Salt has been transcribed incorrectly. Lower L for upper i, zero for upper o, that type of thing. If the input isn’t true, no calculation will reveal the correct answer.

          You can however cheat. Take the example Key / Salt data I provide in the instructions, paste that over your existing Key / Salt pair in your backup, then save that file. Now wipe & restore your I device. Unlock your Restrictions Passcode with 0001.

  17. Hi, I’m having trouble cracking the password of my Ipod Touch A1367 with iOS 6.1.6. I can’t find any file named 398bc9c… I placed the restriction on my iPhone 6 and made the back up, then tried again and I did find the file, so I guess the obstacle is iOS 6.1.6. Can you help me retrieve my restriction password or do you know of anyone who can?

  18. It worked for me! Iphone 4 ios 7–I had 10 failed attempts, one more and the phone would have been wiped clean! Thank you!!!

    1. Hi James – I’ve just successfully completed a passcode recovery on an iPhone 6S running 10.2.1. Maybe try it again & if you still can’t make it work then post another comment detailing the steps & we’ll see what can be done to help.
      (PS: You can always replace your existing key with M/p4734c8/SOXZnGgZot+BciAW0= & salt with aSbUXg== and then restore to your iDevice. Use 0001 to unlock)

  19. How can it be possible that I have a password protected backup to which I remember the password. But when I connect my 5 and try to turn off the password protection it says wrong password, BUT when I backup from this copy using another phone – it takes the password no problem and starts the process! How do I turn off the password protection for my connected 5?

    1. Probably the simplest way Bill is to do a full wipe/restore process. You could try it first by just doing a standard wipe – Preferences / General / Reset / Erase All Content & Settings then restoring from your local backup. If it chokes on that, put your iPhone into DFU mode first then connect to iTunes which will install a fresh OS & then do your restore from backup.

      PS: What is it with you & iPhone passwords?

  20. Excuse me . I find encrypt iphone backup and its selected so i try to unselect and it ask me passcode of backup which passcode I’ve to write iCloud, iPhone unlocking passcode. Idk I try both of them but passcode is wrong can you help me

    1. So you don’t know your Restrictions passcode or your Encrypted Backup passcode? You need to use a computer that has already had iTunes contact with your iPhone, a computer that “knows” your iDevice. I’m pretty sure you’ll be able to switch the Encryption option off without passcode then. If you haven’t got that, then I’d say you’re staring down the barrel of a full wipe & reset. If you’ve been using iCloud to backup, most of your data will return.

  21. Hello i want to hack restriction passcode and followed your instructions and I’m opening the file with notepad and I can’t understand what is written in there I can’t find any word smth like RestrictionsPasswordKey M/p4734c8/SOXZnGgZot+BciAW0=
    RestrictionsPasswordSalt aSbUXg== please help me asap. Btw I don’t understand what is encrypted and unencrypted explain me that also please

    1. If your file is written in plain English, it’s not encrypted. If, however, it’s garbled – full of odd characters & utterly unreadable then it’s encrypted. The easy way to tell is the window pane in iTunes where you define Local or iCloud backup. There’s an Encrypt Backup option there. If it’s selected, then you need to unselect it and re-run your backup.

  22. It worked!
    I’m pretty excited. My dad forgot the restrictions passcode, and now that I’m 17 I convinced him to take it off my iPod. He had forgotten it, and I thought I would be stuck with a restricted device, or have to completely reset it. The passcode ended up being something so random that I’m not surprised he couldn’t remember it.

    1. Try connecting your iDevice to your computer, fire up iTunes & back your device up locally, not to iCloud. (Make sure the Encrypt Backup option is NOT checked.)

      That’ll create the MobileSync folder & all it’s contents.

    1. Yes, read this page & follow the instructions. That’ll have you sorted in no time. (It doesn’t matter who set the password, the iDevice has no knowledge of that. The important thing is that the password is lost & needs to be recovered.)

  23. no, not that time. But I have the computer that was synced with the phone. So I need the way to get my screen passcode using my restrictions code which I remember.

        1. Wow, 5.0.1, really? from back in the golden days of jailbreaking. Ok, what’s your iDevice again Bill? iPhone 4?

        2. There’s a way through this, somehow. I haven’t had an iDevice for over a year now so I need to find some time to think it through. I’ll get back to you. The old iOS helps though.

        3. Yeah Bill, because you’ve got your original computer that the iPhone synced with, it should do a local backup without needing the screen to be unlocked.

          Because it’s not an encrypted backup you’ll be taking, it won’t bring your security options with the backup – no passwords, no keychain etc.

          Then, after it’s backed up to your computer (check the backup folder for size to be sure), you can go through the process of saving your shsh blobs & re-installing your existing iOS (I think that’s available to you) – if you want to be bothered with such an effort to get a well-outdated OS back on board.

          Look at ih8sn0w’s excellent tools iReb, iFaith & Sn0wbreeze to achieve that work, on You can trust his products too, the man is an iOS guru.

  24. I remember my restrictions code but I can’t remember my screen lock passcode. Can I use it somehow to remind me a screen lock one?

    1. Sorry Bill, that’s a whole other implementation. The screen code isn’t, as far as I’m aware, available in such a manner.

      You’ve got me thinking though…

        1. Well Bill, you can just put your iPhone into Recovery or DFU mode & reinstall iOS through iTunes. Choose a new screen security code & try your hardest not to forget it.

  25. Hi, great tool but it didn’t work for me. My key is ruIBezCrx1PA11Su0rtccFPX2RU= and the salt is1yFP/w==

    1. Did you copy/paste the Key & Salt? Or type it in? Because there’s not room for failed results, input correct Key & Salt, iterate through the possibilities, ka-ching.

      Anyway, see my reply to msoulz above for the alternative solution.

      1. Hello again, I originally typed it in but made a mistake. After I copied and pasted the info, it worked perfectly. THANK YOU very much for your help!

  26. Sorry, I forgot to say thanks!! Didn’t work for me but I appreciate that you put this out there.

    1. I emailed msoulz with the alternative workaround for this issue – replacing his Key & Salt data in his backup with the demo data in this post, saving the file then restoring the iPhone from backup & using 0001 as the passcode. It works.

  27. Interesting – it gave me the passcode that I thought it was, and have been entering all along, and it still didn’t work. Must be a phone issue.

  28. I look after a bunch of iPads and the restrictions code on a number was unknown (lost in history and staff change). Took a while to locate the right file but when i did the cracker sorted the problem. Saved me a heap of rebuilds…. big thanks!

    1. No, I leave performance enhancement in users hands. If you want the answer 5x faster, open 5 tabs & set the start correspondingly.

      Not the worst idea I’ve ever heard though, maybe I might find time for this

  29. Thank you so much, you were very helpful and aft several attempts I could finally solve the problem!!!

    Congratulations also for being so good.


    1. Yeah, there is. Read the instructions written on this page, iFile is only even briefly mentioned, it’s certainly not imperative to the recovery.

  30. hello 1024kb,
    i just left the message to you that i’ve tried long time but it just didn’t work on my iphone.But now it worked!!! i used chrome before but it didn’t show anything. i change to ie and it starts running and i finally found my code! Really really really thank you so much to create this magical cracker!!!!!!

    1. This was my bad, I didn’t check everything everywhere on the site after a WordPress update a few days before. User comments like this one alerted me to the problem – which is now solved.

  31. Dear 1024kb
    i’ve read the article and comments that this magical code worked on their iphone, but i’ve tried and waited, it doesn’t show any pins… don’t know which part is wrong:(
    RetrictionPasswordKey is: 5g3MCwnUAIjaV4M65n0sS7hM+KE=
    RestrictionPasswordSalt is: e+ZLGw==
    I will be glad hearing back from you.

  32. Thanks, worked like a charm! I was contemplating erasing my content and starting from scratch until, it asked me for the restrictions password and i found your page!


    Was unable to download the starboy (explicit) song due to restrictions. You guys helped a lot!!! and loved the message that went ‘ahem! your passcode is xxxx”

    God bless you!

  34. Hi Ive tried 2 different site this is my third attempt. Its not working….
    RetrictionPasswordKey is: 5072F8NSDONbOQ9+sxudb5Q6K4Y=
    RestrictionPasswordSalt is: AeDJlw==

    Please help when you can.

    1. Try this:

      Edit your backup file to Key: M/p4734c8/SOXZnGgZot+BciAW0= & Salt: aSbUXg== save & restore your device from backup.

      Now your restrictions passcode is 0001

  35. Awesome. Took a few hours, but finally got there. It was my daughter’s iPhone and we have no idea who entered the passcode. First we needed to de-encrypt a backup. The password ended up being the icloud password with a lowercase first letter. We never entered that. After getting to the using iPhone Backup Extractor, you managed to crack the passcode in a few minutes. No one recognized the passcode, so it was probably entered accidentally.

  36. This is amazing. To speed things up I opened multiple tabs and ran them simultaneously. First tab was 0000 through 0999. Second was 1000 through 1999 and so on. Thought that might help save time

  37. Wow! This is great! Apple advised me to reinstall the iPhone as a new one…….with losing of all the data. You are my heroes with this solution.
    The code was very strange. I never entered that code in my iPhone.

    1. You don’t need to figure it out Mandy. The automated process here will do that for you.

      You tried 100 times? Wow. There’s 10,000 possible combinations between 0000 & 9999. Enter the required information then leave the cracker to work it out for you. It might take a wee while but it will get the answer.

  38. THANK YOU!!!!! I wish I would have found this site a LONG time ago…..I’ve spent hours trying to find a way to recover my restrictions passcode! Your instructions were right on and I have no IT experience. I’m not even sure why I picked that password either?!

    1. I got busy with that code cracker when I needed a solution myself. Don’t worry about no IT experience, you’ve just had one.

  39. I have used this website about 6 times, and 5 out of the 6 times it worked! The only time it didnt work is when I accidently thoight an 0 was a O. You sir, are amazing.

  40. Thanks so much! I don’t know why Apple doesn’t have a password reset, but this was a lifesaver. One of my kids must have changed the password, because after seeing it I have no idea where it came from. Thank you, thank you, thank you!

  41. Oh man, I was so frustrated that I have been backing up and restoring my iPhone for three devices now and then suddenly noticed this restrictions password that I had forgotten from 2012. I tried to guess, but to no avail. I figured Apple would help. I talked to a Apple agent who said that he could not help. That is a seriously stupid legacy thing. If you can unlock your phone and prove you are over 18 why the heck could they not help you recover the password? I expressed my frustration and was so frustrated that I would have to do a factory restore and then add back all my apps from a stupid list and then memorize and reset every setting to they way I had it. Stubbornly I did a search for “iOS restrictions password crack and this was the 2nd item on the list. THANK YOU SOOO MUCH for building this. You are saving huge amounts of people’s time so they could be just enjoying life:-)

  42. Oh hey, I’ve had this problem for bloody ages! My friend told me about your site and boom! my iPhone is de-restricted!

    Thanks man!

  43. someone help me ! I wait until 9999 but it don’t show the PIN 🙁
    key : V2bLcmSSKokd2IZrlyWKqOLxv6Q=
    salt : kKD4kg==

    1. Someone help me…. please. Didn’t anyone teach you manners?

      You didn’t hit the PayPal button – there isn’t one. So you’re asking for a favour, not purchasing anyone’s time.

      I’m running your Key/Salt now, have been for 12 hours or so.

    1. Thanks for the kind words. Glad it helped you. I’ll update the text to include iOS 10. & be back here next year to add iOS 11.

      Or better yet, I’ll code it in. Something that counts the days from 15/9/2006 then divides by 365, rounds to nearest whole number then prints the array from 7. Seems legit.

  44. Worked like a charm on iOS 9.3.2 and Windows 10. Instead of sifting through 2204 files, I simply searched for a file starting with 398bc9* 🙂 Thanks again. Lifesaver! Did you marry Katy yet?

  45. wow. magic. worked perfectly. Its been 3yrs i’ve been trying to figure my damn restriction password. absolutely marvelled. excellent.

  46. Thanks for this I spent hours trying to figure out how to find this site. It is currently running but I know it will work. Gets my stepson out of trouble with his mom for setting the code.

  47. This is hilarious, i’ve been searching for a way to crack this for hours, wasted almost a whole day.
    Many thanks my friend.
    I can’t stop laughing.

  48. You are the bomb!!!! with your page and iphone backup extractor We fixed my husbands phone!!! Thank you so so so very much!!!!!!!

    1. Where are you looking, Dimo? Mac or PC? I take it you can’t find the iTunes backup folder that contains the file holding the key/salt data?

        1. Then my best guess is that you’ve got backups for several iDevices there & you’re looking in the wrong folder. If the iDevice has a Restrictions Passcode lock, the corresponding 398bc9c… file will be created during backup.

          If looking in the other folders proves fruitless, maybe try clearing the main Backup location by moving all the existing individual backup folders to a temporary location, then run your iTunes backup procedure again. I think you’ll find it then.

  49. Hi i keep on getting no result
    Password Key: 1q3IL+48mFXZtbeBOZA4gdq1Ips=
    Password Salt: xwg7MQ==

      1. I have the iPhone 6s running the newest software.
        I typed the key and salts in and the mistake was a zero instead of an O in the key.
        After fixing this it worked perfectly! Thank you!

  50. Tanks i mistyped the passcode while setting it (i’m not used to the ipad’s touch screens).
    you saved me. Thank you a lot

  51. This website is awesome, but I recommend to add the full path on windows itunes backup for the restrictionspasscode.plist

  52. Lifesaver. Thank you. I’ve been working on this for what seems like forever. I could not find the 398bc9c2aeeab4cb0c12ada0f52eea12cf14f40b file and have no idea why. I double checked the file location, backup dates, etc. What I ended up doing was using the iPhone Backup Extractor to generate all of the plist files from my backup. Then I found the file and used Xcode (Mac property list editor) to read it. I entered the salt and key into your program and it did not find the key. Then I realized the key and salt were not in the right format, so I used text editor to open the plist file instead. This finally produced the proper key and salt, I put it into your form, and viola, I finally have my long lost password. You also helped me realize that my initial backup was not working because I had it encrypted. Thanks again for the help.

    1. Really? There’s only one possibility causing the error then. You see, if the algorithm employed here works with any iDevice Restrictions Passcode, it’ll work with them all. There’s nothing so special about your iPod Touch that will cause this solution to fail. There must be an input error somewhere.

      Do you have backups for more than 1 iDevice stored on your computer? That may be the cause right there, decrypting the wrong hash.

  53. It is not working i tried copying it down and conecting it to my ipod(ios 9.2.1) but it did not work

  54. I am sorry
    i read it
    but i am chinese my english is poor
    i don’t know how to crack the encryption so sad T-T

    1. iTunes
      See the image above – taken from iTunes. Make sure your backup settings match the settings you see there – backup to your PC, encryption NOT selected.
      After backup has run, track down your key & salt, come back here, pr0fit!

      1. I really appreciate your
        The original question here

        I find my password

        Thank you again

  55. can I ask one question
    I open the file it also garbled
    I don’t know how to open it in english?
    DO you have article to teach how to open it ?
    thank you very much

    1. Yes, there’s an article on this page. I’m picking your iTunes backup was done with the encryption option selected. Redo the backup, this time with encryption turned off. Grab your key & salt, come back here, pr0fit.

  56. I also followed all the steps you provided and the file stated to contain the restriction pass code salt and key was missing

    1. You found the backup itself alright, just missing the key & salt file? Are you sure you looked in the correct device backup folder? Have a look in any other folders in the backup folder, see what you can find.

      ‘Cos if there’s no key & salt reference, then there’s no Restrictions Passcode been set. Digital data is like that, just is.

  57. sorry for the miscommunication. I recently backed up my ipad mini 2 on itunes on a windows computer.

  58. Everything was running smoothly until i couldn’t find the 398bc9c2aeeab4cb0c12ada0f52eea12cf14f40b file. :O please help i’m really frustrated about this >:C

  59. my key is 251CD2BDE1A882E4023652B08DB9F21B3AEE823B
    and salt is 2F43DA50

    And i am unable to find password.

    Please help

    1. There’s something wrong with your input data. That Salt derives a key with the last character being =

      It’s also very strange to see a Key consisting of numbers & upper case letters only, with no lower case & no special characters. How did you extract the data? From a jailbroken iDevice, PC iTunes backup or Mac iTunes backup?

  60. The actually backup with pc do not work and there is only one in iCloud. Can I find the code in iCloud too???

    1. Doreen, your local PC backup has the Encrypt option selected. The advantage of this is that it retains your passwords in the protected backup & restores them along with the rest of your data.

      Of course the encryption obfuscates the two vital data chunks that you need to crack your Restrictions passcode. So your workaround is to do a fresh backup through iTunes (or, my preference, iTools) but this time, ensure that the Encrypt option is deselected. Run your backup, find your hash & salt, come back here, pr0fit!

      1. Nor iTools neither iTunes wants to back up???? Telling me that IPad is locked and I should put in code first. Have an idea what I could do???

        1. Doreen, do you have a 4-digit screen lock on your iPad? You can’t access any actual iPad functions?

          This is not a lock screen bypass. It’s a solution for a forgotten Restrictions code, set from further inside the iPad. You need access past the lock screen to make use of this solution.

        2. Yes, a Four digit lock screen. And this one I forgot. Do you have any idea what I could do??? Thank you!

        3. Yes, I do. You can do a DFU reinstall which will wipe all your existing data from the iPad & upgrade it to the latest iOS – 9.2.1 I think.

          On completion of the reinstall, you will need to activate the device by providing the Apple ID username & password that the device is currently associated with. In rare cases this is not necessary, confirm it by going to & entering the serial number from the back of your iPad.

          DFU is best achieved while connected to your PC. Turn the iPad off, then back on. Keep holding the power button. When you see the Apple logo, press & hold the Home button also. The logo will disappear, leaving a blank screen. Release the power button. Count 3 seconds. Release Home button.

          Now start iTunes, which will identify the device attached & download the correct .ipsw file before doing the full, fresh reinstall.

  61. I can not find my backup on my Windows 10 pc at all ???? And an old one gave me just weird letters in Word. Can you help me please?

  62. Great app! I went to the Apple store and they couldn’t help me. This process found it within minutes. Extremely grateful!

  63. I don’t have a computer so I can’t do any if this can u tell a way I can get into whatever u r talking about without a computer or iCloud

    1. Oh boy, there’s just so much wrong with this comment.
      Uhmm, you do have access to a computer, right? (Because you likely used one to post here)
      If you don’t, it’s highly likely that a friend or family member has a computer & would be willing to assist you during this fairly quick process – 15 minutes should get your iDevice backed up so you can find the 2 codes necessary for this hack.
      Other than that, I’m sorry, we’re talking electronic files here, you do need a computer to read them. Having found this method and knowing it works, I haven’t actually bothered to create an alternative solution.

  64. Thanks a million! I had lost my passcode for about 18-24months. Just decided to push through looking for solution and your site was the final key! I was foxed initially as missed out a character at the beginning so it was useful to know that the key is 28 characters and salt 8 characters also I used the free edition of the iPhone back up extractor to get the file before I found your site – could only extract the .plist file but no further. Now I have the code. Thank you.

  65. I’ve spent 2 days on this and finally found your site. Thanks a lot buddy; worked like a dream…

  66. My Goodness i had to wait till 9129 but thank you so much for this!!!!!!! Have been locked out for almost a year now 🙁

  67. This is all that pops up using wordpad:

    )™{YŠ•÷‘`õ; ”رk¡«B} %…ðó.n}Nä!òð{ƒRÃô9×5.”ÛÍÁŽ-oçÖÙ%j_^-/Èõ `¤m 6^QãLäÅ2 3MYÔ¯ý/Ââ¥MT’« ŸÊ…Œ%¯UÏ{®‘½YÄy*
    ,­ý ªet¦Å½o?b°Eá>KTâösǝ¿»6Èç¨É(Ç·‹êð¬x~ýú×ñÆl=þ!¹£t¡oÓ0WvÁfïQÐ_ÛU㯎øh¬üùSÖRboÀH7+GK¹ÇxËT©É)^N„Q|çü·²4^Žš

    1. or this in note pad:


    2. No wonder you’re not getting the right response. That’s nothing like a correctly-formatted key or salt. You’re opening from an iTunes backup, yeah? Try backing up again, this time don’t password-protect the backup. Now hunt the Key & Salt, you’ll find them a lot less complicated this time.

      Once you have Key & Salt in the same format as indicated in my post above, paste them into my decoder. This time you should be successful.



    1. Are you sure? I ask because it’s not a matter of if, it’s when – math is like that. So long as you’ve entered the key & the salt correctly, this page WILL return the correct answer, see Jack’s post below above.

  68. Wow, thanks. I didn’t actually think this would work. You saved my further frustration. Looking back, I don’t even know why I chose that passcode.

  69. LMFAOOOO!!! I am such an idiot. It was an O not a 0 in the “5105” in the key. It totally still works. I was sitting here thinking that Apple wised up and changed the hash algorithm.

  70. I tried this method with my phone. I put in the key and salt properly. I double and triple checked. It just wont work. It keeps going all the way through the 9999. The key is MVLpDTuaZB8AusJhiy5105fTozw= and the salt is KYNKRA==

  71. Thanks a lot for this great little tool! I was at first skeptical, having run through 9000+ numbers, but it pulled through with the correct code. So now I’ve fixed my phone.

    Sincerest thanks to the creator

  72. Fantastic, it worked! You can also find the key and salt in an iTunes backup, which are saved in ~/Library/Application Support/MobileSync/Backup. If you change to this directory in terminal, you can find what you need with this command:

    grep -r -i -C5 -H “restrictionsPassword” *

    Unbelievable how you can’t reset this password…

  73. Hi

    This site worked great for me as well. Thanks a lot!
    Spent a lot of time searching for a solution and trying different codes on the phone until I eventually found your site. Cracking took a while because my code was 8xxx. However, compared to the time spent before, this was negligible.

    thanks again,

  74. Thanks for this tool
    its very important and powerful thing to do
    but there is solution easier with this tool to know passcode .
    its you change manually the line of restrictionpasswordkey in the source file to
    and salt to
    and result of this is the passcode changed to 0000
    tested with ios 8.1 and edited with ifile

  75. Hello

    Just to say thanks – and a very big thanks – I recovered a forgotten Restrictions password via this site.

    Keep up the good work.



make a comment...

This site uses Akismet to reduce spam. Learn how your comment data is processed.