Lock Screen security bypass - Unlock PIN/PASSWORD/PATTERN of Lockscren without wipe.

Lock Screen security bypass - Unlock PIN/PASSWORD/PATTERN of Lockscren without wipe. - Galaxy Note II Android Development

Lock Screen security bypass
As we know forgetting lockscreen password/Pattern is really painful. Normally you need to wipe data.
Here attached a flashable LockScreen_security_bypass.zip
Download and flash using CWM to bypass security lock on Lockscreen without wiping data.
If you have PIN/Password lock, it will disable it and reboot directly to unlock screen
If you have pattern lock, on rebooting you will fing pattern lock, but still it can be unlock by any pattern
Enjoy !
Here is Video guide. Thanks to @savadam

Something more
trying

Good work. It just makes onr think now easy it is to by pass security. Does this work on none rooted stock recovery? Is there any points of using password if it does. Anyway good work.
Sent from my GT-N7100 using XDA Premium 4 mobile app

Looks like it uses busybox in the script so I don't think it would work on a system without it. Which is most non rooted environment.
Sent from my GT-N7100 using Tapatalk 4

Another Epic Creation..!!
Respects..!! :good::good::good:

jamesd86 said:
Looks like it uses busybox in the script so I don't think it would work on a system without it. Which is most non rooted environment.
Sent from my GT-N7100 using Tapatalk 4
Click to expand...
Click to collapse
Can you give me logic why it needs and where you find busybox in my script?
I do believe it should work on non rooted device too(though i didn't test on non rooted), provided you have CWM. naturally it needs CWM to flash zip.

dr.ketan said:
Can you give me logic why it needs and where you find busybox in my script?
I do believe it should work on non rooted device too(though i didn't test on non rooted), provided you have CWM. naturally it needs CWM to flash zip.
Click to expand...
Click to collapse
run_program("/sbin/busybox",
It's in there like three times. I'm far from a dev but looks like it calls for busybox.
Sent from my GT-N7100 using Tapatalk 4

So can the password or pattern be set again?
Sent from my GT-N7100 using xda app-developers app

rocketmail.com said:
So can the password or pattern be set again?
Sent from my GT-N7100 using xda app-developers app
Click to expand...
Click to collapse
Yes, you can set it again.

jamesd86 said:
I'm far from a dev
Sent from my GT-N7100 using Tapatalk 4
Click to expand...
Click to collapse
Then why you not simply remove busybox, unroot and try to run script rather than making speculative statement.
You can ask here too. Indeed it should work without busybox and even root.

this will work with my tab 2 .10.1
my tab not root and have stock rom

You should have CWM installed to use this.
I have not tested but i don't think it may cause issue, as it just removes some files. if path on your device is different then it should not do anything, and if path is same as note2 then it will work.

dr.ketan said:
You should have CWM installed to use this.
I have not tested but i don't think it may cause issue, as it just removes some files. if path on your device is different then it should not do anything, and if path is same as note2 then it will work.
Click to expand...
Click to collapse
thank you for your replay
i try Hacking And Bypassing Android Password/PIN Lock
can u see this post
http://forum.xda-developers.com/showthread.php?t=2450365
check that please

Do this
adb devices
adb shell
cd data
cd system
rm passwork.key (for PIN and password)
rm gesture.key (for pattern)

dr.ketan said:
Do this
adb devices
adb shell
cd data
cd system
rm passwork.key (for PIN and password)
rm gesture.key (for pattern)
Click to expand...
Click to collapse
And you need debugging set to On to do this...
Sent from my GT-N7100 using Tapatalk 2

dr.ketan said:
Lock Screen security bypass
As we know forgetting lockscreen password/Pattern is really painful. Normally you need to wipe data.
Here attached a flashable LockScreen_security_bypass.zip
Download and flash using CWM to bypass security lock on Lockscreen without wiping data.
If you have PIN/Password lock, it will disable it and reboot directly to unlock screen
If you have pattern lock, on rebooting you will fing pattern lock, but still it can be unlock by any pattern
Enjoy !
Click to expand...
Click to collapse
I had tried almost every script to bypass lockscreen on my Note 2 (for testing purpose) but nothing showed the desired result. And today, I gave a shot to this script and it worked like a charm. Thank you dr.ketan for your efforts (Thank you pressed already ).

I'm now in India, trying to help a friend. His brother got locked out of the pattern lock, and I spent the past many hours searching for a way to correct it. I ended up on xda-deveopers, but posted in the developer's area by mistake. Between what I found elsewhere (not much), and in the discussion I posted here, everything eventually pointed to you, and this discussion. Thanks for sorting it out!!!!
The phone I am trying to fix is a Samsung Galaxy Y Duos S6102. From what I have read so far, I think your procedure should work on this phone. Any special considerations?
One last question. I've been coming to xda-developers for the past half year, but haven't yet actually tried to root any device, followed by installing any custom ROMs. I do intend to start doing this, but planned to do so on my own device, so if anything goes wrong, nobody else will be upset at/with me. Are there any discussions in xda-developers that will better help me understand how to do the things you mention? I think for most people here, all this is "simple stuff", but for me it's all new and unknown.
I've downloaded your attached zip file. Is there anything else I should download while I still have good internet access? Once I leave for my friend's home, the only tools I'll have access to are a new Windows-8 laptop, and a plug in device with a slow data card.
Thanks again, and I've already clicked on the <thanks> button.

I have not access to device you mentioned, but what I have seem on samsung most of device it remains seen. Though this script don't do anything other than removing files which having information about PW/key. So in fact location is different on your device this shouldn't do anything other than fail to unlock.
You need to get CWM for your device to run this script. It shouldn't difficult if you search on your device forum.

dr.ketan said:
Lock Screen security bypass
As we know forgetting lockscreen password/Pattern is really painful. Normally you need to wipe data.
Here attached a flashable LockScreen_security_bypass.zip
Download and flash using CWM to bypass security lock on Lockscreen without wiping data.
If you have PIN/Password lock, it will disable it and reboot directly to unlock screen
If you have pattern lock, on rebooting you will fing pattern lock, but still it can be unlock by any pattern
Enjoy !
Click to expand...
Click to collapse
Hi r ketan,
May i ask 1 question? Is it possible to flash with stock cwm? Stock cwm only able to flash update files. Can i jz rename it to update.zip n flash it? Tx for help n sharing!
---------- Post added at 08:27 PM ---------- Previous post was at 08:19 PM ----------
dr.ketan said:
Lock Screen security bypass
As we know forgetting lockscreen password/Pattern is really painful. Normally you need to wipe data.
Here attached a flashable LockScreen_security_bypass.zip
Download and flash using CWM to bypass security lock on Lockscreen without wiping data.
If you have PIN/Password lock, it will disable it and reboot directly to unlock screen
If you have pattern lock, on rebooting you will fing pattern lock, but still it can be unlock by any pattern
Enjoy !
Click to expand...
Click to collapse
ibraahim said:
And you need debugging set to On to do this...
Sent from my GT-N7100 using Tapatalk 2
Click to expand...
Click to collapse
Hi ibraahim,
Is that mean need device must be turn-on condition? Some users were stuck at unlock screen.

shiropetto said:
Hi r ketan,
May i ask 1 question? Is it possible to flash with stock cwm? Stock cwm only able to flash update files. Can i jz rename it to update.zip n flash it? Tx for help n sharing!
Is that mean need device must be turn-on condition? Some users were stuck at unlock screen.
Click to expand...
Click to collapse
-No it won't work with stock recovery
-If you are flashing with CWM USB debugging status have nothing to do.

Related

Clockworkmod Password

Hi All,
there's a way to protect cwm by a pass?

LOL no

No. Its called recovery for a reason
Sent from my M886

salas2324 said:
No. Its called recovery for a reason
Sent from my M886
Click to expand...
Click to collapse
What mean? if i wont to protect with password where the strange?

AleDB said:
What mean? if i wont to protect with password where the strange?
Click to expand...
Click to collapse
recovery shouldn't have a password or else you can't recovery your device if you forget password
Sent from my M886

Actually a recovery password would be great. We were discussing this over in the Anti-theft thread. If we had something like this similar to a BIOS password it would prevent anyone from wiping your device if it's stolen. Not sure why people are acting like the OP is an idiot for asking.
If there were a password for CWM you could still get into stock recovery and do a Factory Reset if you needed to, but it would be impossible for someone to wipe your system and remove more advanced anti-theft apps.

its called recovery for a reason, c'mon hahah

I had exactly the same thought yesterday .

+1 for that idea...........what if, i compile a new recovery, i would do this for security:
1.Create an online compiler that asks for the user to enter his/her phone's imei + a unique code & password and compile a unique recovery for his/her phone.
2.After compiling, i'm would give a flashable custom signed update.zip which will be used only when resetting the password.
3.If someone who stole the phone flashed a new recovery, imei & unique code would fail and cannot use any other recovery other than the one flashed already !!

balamu96m said:
+1 for that idea...........what if, i compile a new recovery, i would do this for security:
1.Create an online compiler that asks for the user to enter his/her phone's imei + a unique code & password and compile a unique recovery for his/her phone.
2.After compiling, i'm would give a flashable custom signed update.zip which will be used only when resetting the password.
3.If someone who stole the phone flashed a new recovery, imei & unique code would fail and cannot use any other recovery other than the one flashed already !!
Click to expand...
Click to collapse
If someone flash any other recovery, there is no way to protect the device - he can do everything. Anyway, it's a good idea. But instead of password I'd suggest a buttons combination. It's just less work (no need to create "recovery keyboard").

Indeed. I didn't think about that fact. Even on my phone only certain keyboard presses are recognized within recovery. Regardless, some way to protect the phone beyond what is available would be great.

cwm could integrate a keyboard password like google did with the encryption password. you do the phone presses to access, it begins to take you into recovery, then you are prompted to type in a password. same as if you were trying to access with odin.. seems like it would take a little extra effort but damn, accidents happen.
I have read a few people saying that most some phone thieves don't know what they are doing but hey, Google query: hack android phone.
There's nothing wrong with wanting to add even more security to our phones, call us paranoid.

Love the idea.. maybe with some kind of authenticator, like wow..?
Sent from my HTC Desire using xda app-developers app

W8 for other ideas
Sent from my GT-I9100 using xda app-developers app

maybe one of the developer can implement this idea in aroma installer.
Sent from my GT-I8150 using xda app-developers app

If you require password, and don't permit adb until successfully unlocked, you're starting to get secure.
You'd also need to remove root from regular boot, or prevent adb root access, and secure the system with a lock screen.
If the device has odin or similar, don't waste your time, as anyone determined will overwrite your recovery with an adb enabled one...

AleDB said:
Hi All,
there's a way to protect cwm by a pass?
Click to expand...
Click to collapse
+1 from me

pulser_g2 said:
If you require password, and don't permit adb until successfully unlocked, you're starting to get secure.
You'd also need to remove root from regular boot, or prevent adb root access, and secure the system with a lock screen.
If the device has odin or similar, don't waste your time, as anyone determined will overwrite your recovery with an adb enabled one...
Click to expand...
Click to collapse
i went on the google group android security and some one replied with a possible solution:
Code:
You'll have to implement this in the bootloader, which in most cases is
closed source, so roughly you'll have to:
- find the binary blob of the bootloader, probably in a factory image or
dump it from the device
- find the base address of the bootloader blob and disassemble it
properly (use IDA pro)
- find a place -big enough- where you can inject your own code for the
password prompt
- find a place in the early stages of device boot where you can place a
jump instruction and branch to your code, this should be right after the
bootloader code detects if the fastboot or odin button combinations are
pressed.
I'll suggest to write your code in C unless you are an arm assembly
guru, and try to make it the smallest possible... if the password is
correct, then it should jump back to the place right after where the
execution was interrupted with your initial jump and continue with the
normal bootloader process.
Also, I wouldn't do the tests by flashing your patched bootloader
directly into the phone (replacing the phone's stock bootloader), as a
small mistake in your patches can totally brick the device. To properly
test your patches, you'll need to find a way to place the bootloader in
RAM (from Android) and jump into it, and to do this you'll need to
disable interrupts, invalidate CPU caches, reset MMU, and continue
execution from physical address space where you've copied the bootloader
in RAM, this will simulate a reboot from bootloader but using your
patched one in RAM instead of the stock one in NAND, not an easy task I
guess... but if you have some progress, let us know :D
Cheers,
like with the encryption some script is ran that requires the password to be put in. since the code is already available could there be a way to just use that script and have detect if booting into recovery or odin?

password would be welcome in case my device were stolen, so anyone could make a fresh install independent of the ke or faceunlock, trackers, and everything i have

+1 for the idea... reason:
I know someone who's phone was factory reset by the police... yes, I live in Australia and what was done was illegal and he is taking legal action but once it's done, that's it, you lost everything on the device.
Password protecting recovery is a way to prevent those with enough know how to trigger a reset when you have no legal recourse not to hand over your belongings to another party on the street.
I know this is an edge case but one that has a precedent.