To pass SafetyNet... #1397
Comments
|
HiddenCore fakes SafetyNet. |
|
So what you are saying is that you actually don't need to fake props Edit: You have to use custom DroidGuard. |
|
Nope, I say you should not use HiddenCore because actual apps that use SafetyNet will not work. |
|
I did run into that trap already... |
|
You are right, and it annoys me -,- |
|
@C9Glax hello there, could you help me with the issue? I have almost the same story as you, but can't pass SafetyNet. Can you contact me please? |
Same situation with POCO X3 pro, crdroid 7.13 (and any custom rom (microg lineageos, arrowOS, with magisk canary (with zygisk) or stable (riru), , If anyone can advise I would appreciate. |
|
The whole SafetyNet concept itself is a GMS based attestation. Remember that we're spoofing GMScore to be able to utilize their services. CTS is a security layer where it's been updated, improvised, & gets security vulnerabilities fixed on each monthly Android update. That's why even if you successfully attempt to do that, it'll probably fail back eventually. |
|
Thank you very much for your answer, and sorry for the late response. Now I'm understand the mechanism. :) |
|
Latest microG GmsCore pass SafetyNet. |
|
Still fails for me. Using Lineage for microG on a OnePlus 8T + Magisk v24 (Zygisk enabled) Screenshot
|
|
OP8T is rather new; are you even able to pass safetynet with real gapps with an unlocked bootloader? |
|
If the bootloader is unlocked the one that compile the ROM must include the patch to hide it (or use Magisk to hide it, probably there is a module for it). Try to test with this app: |
|
@Atemu Yes I think so, I haven't used Gapps in a while. I tried https://github.com/kdrag0n/safetynet-fix/ and now it looks like this
With the other app
I can try backing up my stuff and see if I get safetynet with an unlocked bootloader + stock ROM + Magisk |
|
@D3SOX: You problem is specific to your phone, not general; so please open a separate issue to avoid confusion. |
|
@D3SOX Installing MagiskHide Props Config and setting a certified device fingerprint should make SafetyNet pass the CTS profile match. (This applies to all devices that pass the basic integrity check, but not the CTS profile match.) |
I tried that already setting it to the OnePlus 8T fingerprint, which one did you use? And should I have both SafetyNet Fix and Hide Props Config enabled at the same time? I had only one at a time enabled while testing it. |
|
@D3SOX Yes, I need both packages at the same time to pass SafetyNet. I used the fingerprint that matched my device model, so I would expect the OnePlus 8T fingerprint to work for you. |
|
@parcelcat Thank you. Now microG is good but the other app still complains Screenshots
Is there an app I can try that requires SafetyNet to run? |
|
I would like to make work on my poco x3 pro as in the past the following app: https://play.google.com/store/apps/details?id=hu.otpbank.mobile&hl=en&gl=US you can test registration not need to start the program. At the beginning you will fail to start the app if the phone is not compliant. If you will see the logon screen you passed :) |
|
I think that there is some issue with the latest version of SafetyNet Helper Sample. I currently use this to test: |
|
@ale5000-git This app says I'm good to go 🎉 |
|
@ale5000-git Yes, that is likely because the developer revoked his key after it has been used in this repository (#1644). So the app need to be updated. |
|
Glad it worked! For anyone who is looking for a SafetyNet testing app, I recommend YASNAC because it is ad-free and open source: https://play.google.com/store/apps/details?id=rikka.safetynetchecker |
Wow is it really true? Tell me if it's DroidGuard or GMSCore itself...😅 |
|
https://github.com/microg/GmsCore/releases/tag/v0.2.23.214816 No need for |
|
Dears, With the latest microg+magisk v24 (zygisk enforce list)+magisk hide props everything working pretty well :) Thank you for all! :) |
|
So I am a little stuck...
When I run YASNAC, the basic integrity passes but I am told that the CTS profile does not match. Any idea how I could fix that? Thank you :) |
Try installing MagiskHideProps and Universal SafetyNet Fix. I pass everything in YASNAC with them. |
|
To be more precise, you need to use MagiskHideProps to get a google-blessed device fingerprint. You won't pass CTS with a custom rom fingerprint. In my case, I USF didn't actually do anything; I only needed to change my fingerprint. |
That worked! Thanks for the hint, everything is passing now as it should. |
|
Some points to consider:
Some other points which are false:
|
|
Hi, |
How did you install microg ?
is outdated. Dev dropped it & you have to use something like Pixel Props. |
I installed microg via apk download from the official site. OK I will use Pixel Props. |
You need to systemize it. Microg have issues on userspace side. Or better flash any of the 2 bundles I suggested above. |
How can I systemize microg? Pixel Props does not support S8+. Edit: I solved, thank you. I installed microG, magisk, universal satefyNet Fix and microG Installer. |
and others
I was able to pass SafetyNet basic and cts with Magisk installed (Only Basic Eval, not Hardware attested).
Setup:
Device: Xiaomi Mi 9T (Europe)
ROM: ArrowOS (11, no GAPPS)
Other software: MicroG, Magisk
Steps to reproduce:
2. Install MicroG (Core, Proxy, Store and DroidHelper) (from F-Droid)MagiskHide Props Config6. Install kdrag0n Universal SafetyNet Fix with Magisk8. In a terminal-emulator use(su) propsand replace the fingerprint with one that matches your security fix. (e.g. Android Q/R, just use a Google Pixel)Finally a step that requires a bit more attention:
/system/priv-app/DroidGuard/DroidGuard.apkwith the downloaded apk.Enjoy, and tell me if it works for you.
The text was updated successfully, but these errors were encountered: