[ROOT][Guide]Bypassing Android Password/Pattern/Face/PI (Lollipop-Marshmallow) - Android Software/Hacking General [Developers Only]

INSTRUCTIONS:
1. Connect phone to computer
2. Open a terminal/cmd window on computer
3. Type:
Code:
adb devices
adb shell
cd data/system
rm locksettings.db
rm locksettings.db-shm
Reboot, and boom! Removed

i dont have twrp then?

sohamsen said:
i dont have twrp then?
Click to expand...
Click to collapse
Fixed the guide, thanks for catching that!

Honestly Annoying said:
Fixed the guide, thanks for catching that!
Click to expand...
Click to collapse
nice guide
---------- Post added at 09:36 AM ---------- Previous post was at 09:35 AM ----------
what about 4.4.4 or less?

And for Non-Rooted devices.?
Sent from my SM-N930F using Tapatalk

Related

Automated NAND Recovery :)

Hi guys just made a Noob friendly or Lazy friendly Nand Recovery script!
which makes the nand recovery process easy
this script is made to run on linux especially Ubuntu! and windows
make sure you are in recovery and mounted /system
just extract the zip files into a folder
and if you get error like 'not enough space' just format /system
For Ubuntu: In Terminal
Code:
chmod 777 runme
./runme
For Windows:
Code:
just run runme_windows.bat
thats it!!
Change Log:
Code:
v1- Initial Release!
v2- Fixed bugs with Windows version! :P
Great work...
Sent from my HTC Explorer A310e using Tapatalk 2
thekoolanie said:
Great work...
Sent from my HTC Explorer A310e using Tapatalk 2
Click to expand...
Click to collapse
will it works on philz recovery?
memontalha said:
will it works on philz recovery?
Click to expand...
Click to collapse
may be yes .. just mount /system and give it a try!
Super Work...
Sent from my HTC Explorer A310e using Tapatalk 2
ateeq72 said:
Hi guys just made a Noob friendly or Lazy friendly Nand Recovery script!
which makes the nand recovery process easy
this script is made to run on linux especially Ubuntu! and windows
make sure you are in recovery and mounted /system
just extract the zip files into a folder
and if you get error like 'not enough space' just format /system
For Ubuntu: In Terminal
Code:
chmod 777 runme
./runme
For Windows:
Code:
just run runme_windows.bat
thats it!!
Click to expand...
Click to collapse
On recovery or fast boot????
Code:
Thanking Someone is good thing
xactor said:
On recovery or fast boot????
Code:
Thanking Someone is good thing
Click to expand...
Click to collapse
Recovery bro please read the OP properly...
Sent from my HTC Explorer A310e using XDA Premium 4 mobile app
ateeq72 said:
Hi guys just made a Noob friendly or Lazy friendly Nand Recovery script!
which makes the nand recovery process easy
this script is made to run on linux especially Ubuntu! and windows
make sure you are in recovery and mounted /system
just extract the zip files into a folder
and if you get error like 'not enough space' just format /system
For Ubuntu: In Terminal
Code:
chmod 777 runme
./runme
For Windows:
Code:
just run runme_windows.bat
thats it!!
Click to expand...
Click to collapse
Thanks man you saved my day
Thank you so much bro,Very useful :good:
thank you for your bat,
ateeq72 said:
Hi guys just made a Noob friendly or Lazy friendly Nand Recovery script!
which makes the nand recovery process easy
this script is made to run on linux especially Ubuntu! and windows
make sure you are in recovery and mounted /system
just extract the zip files into a folder
and if you get error like 'not enough space' just format /system
For Ubuntu: In Terminal
Code:
chmod 777 runme
./runme
For Windows:
Code:
just run runme_windows.bat
thats it!!
Change Log:
Code:
v1- Initial Release!
v2- Fixed bugs with Windows version! :P
Click to expand...
Click to collapse
great work
THANKS A MILLION OR A TRILLION TIMEs i was not able to boot on any sense rom but now after using ur method it worked and booted in 5mins
recovery not done....i tried many times..
still more than 70 mb used...
Try older method
hit thanks if it helped
send from my HTC explorer from earth
---------- Post added at 11:04 PM ---------- Previous post was at 11:03 PM ----------
Try older method
hit thanks if it helped
sent from my HTC explorer
Thanks man......best and easiest method I found
Thanks helped
What recovery do you have?
In twrp recovery it says device not found...
great work buddy in btw which recovery u used??
bro how to flash i can flash through recovery ? isnt if so is it just flashing the zip?? is it
---------- Post added at 05:39 PM ---------- Previous post was at 05:26 PM ----------
maksuperlink said:
Thanks man......best and easiest method I found
Click to expand...
Click to collapse
u did from recovery? will u xplain how?

[Root] RockMyMoto (Yes, even the first OTA)

This will void your warranty, like all root exploits. Use this at your own risk. Do not take OTAs on rooted devices unless you know what you are doing, as it may cause a bootloop or a soft brick.
RockMyMoto is designed for MotoXs that have recieved the Camera update, patching PwnMyMoto. If you are unsure of your firmware, try PwnMyMoto first.
First step is to install Cydia Impactor, by Saurik. http://www.cydiaimpactor.com/ This is required. You will also need adb installed and working, and be comfortable with the command line. Your phone must be on the same network as your PC.
Figure out the ip address of your phone:
adb shell getprop dhcp.wlan0.ipaddress
Click to expand...
Click to collapse
unzip RockMyMoto-{version}.zip and push the exploit and su to /sdcard/:
adb push su /sdcard/
adb push RockMyMoto.jar /sdcard/
Click to expand...
Click to collapse
Run Impactor and select "# start telnetd as system on port 2222", then hit start.
Once the process is complete, run telnet:
telnet {your phone's ipaddress} 2222
Click to expand...
Click to collapse
Run the exploit through telnet
dalvikvm -cp /sdcard/RockMyMoto.jar RockMyMoto
Click to expand...
Click to collapse
The exploit will tell you to use adb to reboot:
adb reboot
Click to expand...
Click to collapse
Run the exploit through telnet for the second time, it will reboot on it's own:
dalvikvm -cp /sdcard/RockMyMoto.jar RockMyMoto
Click to expand...
Click to collapse
Run the exploit through telnet for the third time, it will not reboot:
dalvikvm -cp /sdcard/RockMyMoto.jar RockMyMoto
Click to expand...
Click to collapse
Wait 0-60 seconds, for su to install, then install SuperSu from the market.
Enjoy!
Known issues:
If you have AP isolation mode enabled in your AP (aka WiFi router) you won't be able to connect to your phone via telnet, disable isolation.
Windows users having trouble see here
Amazing! Trying now...
You are the man!!!!!!!!!!
Sent from my XT1060 using Tapatalk
Doing this now. Wonderful job jcase.
Edit: It works.
OMG It worked like a charm! Thank you jcase!!!
one thing though
adb push RockMyMoto-1.0.zip /sdcard/
Click to expand...
Click to collapse
should have been
adb push RockMyMoto.jar /sdcard/
which should have been extracted with su from the zip.
Okay. I have never rooted like this before. Adb = command prompt? Do I need the SDK? Or just the rockmymoto and the other program?
Sent from my XT1060 using Tapatalk
holyevilcow said:
OMG It worked like a charm! Thank you jcase!!!
one thing though
should have been
adb push RockMyMoto.jar /sdcard/
which should have been extracted with su from the zip.
Click to expand...
Click to collapse
Thanks, fixed
Quick question, does this method force us to reboot recovery for system r/w like pwnmymoto?
d4mi3n said:
Quick question, does this method force us to reboot recovery for system r/w like pwnmymoto?
Click to expand...
Click to collapse
yes it does
Works on windows perfectly. AWESOME WORK !
You never cease to amaze. Nice work bro,
Thanks a ton
Sent from my Nexus 7 using Tapatalk
Major Kudoos to Jcase and saurik. Up and running like a boss.
Thanks jcase! Followed your steps and worked like a charm.
Sent from my XT1058 using XDA Premium 4 mobile app
I haven't taken the update so could I just unfreeze apps, unroot, uninstall root apps, take the update, then run this? I don't want to RSD a third time today.
Sent from my Moto Ghost
Thanks bro, amazing work as usual!
Sent from my XT1058 using XDA Premium 4 mobile app
---------- Post added at 03:22 AM ---------- Previous post was at 03:13 AM ----------
Also if anyone is not by a PC you can just type getprop and whatever command to get the info you need using terminal emulator. Just don't type adb shell before getprop. And just typing getprop in terminal emulator will list your whole build.prop or you can just type getprop ro.secure & hit enter & that will tell you whether your s-off or not by listing a 0 or a 1. That was just a example if you just want to find out just 1 line like jcase first command to get your ipaddress. You would just type getprop dhcp.wlan0.ipaddress & hit enter & terminal emulator will list your sensitive data if your not by a PC
Sent from my XT1058 using XDA Premium 4 mobile app
thanks bro! worked beautifully
does anyone know of a way to get the native tethering working after rooting this way on a camera updated vz moto x? thanks
edit: this works: http://forum.xda-developers.com/showthread.php?t=2443562
Quote:
adb push su /sdcard/
adb push RockMyMoto.zip /sdcard/
When I do this step I get an error about no such directory. Please help
---------- Post added at 02:48 AM ---------- Previous post was at 02:38 AM ----------
Now says "read only file system"
---------- Post added at 03:09 AM ---------- Previous post was at 02:48 AM ----------
Okay got past that.
Know saying telnet is not reconized as command
---------- Post added at 03:50 AM ---------- Previous post was at 03:09 AM ----------
Okay I finally got it!! Yay Root!
When I try the telnet action, I get an error that the 'link failed File exists'. If I try to proceed to the next step, same error. My router is an Asus router and I made sure Isolation was unchecked, and there was a setting for telnet (never used this before) and I tried both on and off for that one.
Anybody have a clue how I can get through this?
Thanks!

Screen locked, forgot pattern. (and great battery!)

I gave my precious O1 to my sister. She set up pattern lock, went to camp without a phone and after 9 days she forgot it. Oh, and battery was on 15% after 9 days. WTF. Any flashable zips to remove it? (Yes, I should've googled it, but I just wanted you to know about wonderful battery life)
go to recovery mode
ashirviskas said:
I gave my precious O1 to my sister. She set up pattern lock, went to camp without a phone and after 9 days she forgot it. Oh, and battery was on 15% after 9 days. WTF. Any flashable zips to remove it? (Yes, I should've googled it, but I just wanted you to know about wonderful battery life)
Click to expand...
Click to collapse
go to recovery mode and wipe data
---------- Post added at 05:26 PM ---------- Previous post was at 05:25 PM ----------
or use factory reset
rsbuttar7 said:
go to recovery mode and wipe data
---------- Post added at 05:26 PM ---------- Previous post was at 05:25 PM ----------
or use factory reset
Click to expand...
Click to collapse
Pfffft...
Code:
adb devices
adb shell
cd data/system
su
rm *.key
No need for stupid wiping
Source
ok
ashirviskas said:
Pfffft...
Code:
adb devices
adb shell
cd data/system
su
rm *.key
No need for stupid wiping
Click to expand...
Click to collapse
ok thats fine if u gt sumthing better den dat

Z5 Rooting & Recovery Boot Mode (UK Xperia Z5 E6653)

Morning All,
I've been looking around for a stock Lollipop 5.1.1 Rom for the Xperia Z5 but haven't come across one yet, are there preferred site to browse for stock roms?
Also, is anyone aware of how to boot into recovery mode? Does a stock Sony Rom for Lollipop have it enabled?
http://developer.sonymobile.com/201...for-a-range-of-unlocked-xperia-devices-video/
Could you call *#*#2673#*#* in dial app?
If it doesn't blocked by security, we can enable non-secure ADB thanks to new app in Z5 system.
Does anyone know if someone working on a root method
AndroPlus said:
Could you call *#*#2673#*#* in dial app?
If it doesn't blocked by security, we can enable non-secure ADB thanks to new app in Z5 system.
Click to expand...
Click to collapse
Hello AndroPlus, sorry if this is noob question but could you explain what is it non secure adb and for what exactly it is useful? I tried dial that number and i was able to get into core settings menu with option switch non secure adb on but im still not sure what does it mean exactly and google is pretty silent about this as i can't find any informations about it
Sent from my E6653 using XDA Free mobile app
flakac said:
Hello AndroPlus, sorry if this is noob question but could you explain what is it non secure adb and for what exactly it is useful? I tried dial that number and i was able to get into core settings menu with option switch non secure adb on but im still not sure what does it mean exactly and google is pretty silent about this as i can't find any informations about it
Sent from my E6653 using XDA Free mobile app
Click to expand...
Click to collapse
You can use # (root) in adb shell if non secure adb is enabled.
We have to find how to disable dm-verity and ric to mod system partition, though...
AndroPlus said:
You can use # (root) in adb shell if non secure adb is enabled.
We have to find how to disable dm-verity and ric to mod system partition, though...
Click to expand...
Click to collapse
Nice,that's interesting, I owned every single Xperia Z and red alot about rooting on each single model but never heard about non secure adb.
But now I am huge fan of non secure adb,i hope someone will find how to disable ric!
Sent from my E6653 using XDA Free mobile app
AndroPlus said:
You can use # (root) in adb shell if non secure adb is enabled.
We have to find how to disable dm-verity and ric to mod system partition, though...
Click to expand...
Click to collapse
Does that mean you can backup TA partition in adb shell using dd command?
shoey63 said:
Does that mean you can backup TA partition in adb shell using dd command?
Click to expand...
Click to collapse
Yes, if it works.
Sometimes security feature blocks root to do any actions (they are stronger than root...), so someone should try it first.
shoey63 said:
Does that mean you can backup TA partition in adb shell using dd command?
Click to expand...
Click to collapse
Could anyone with a Z5 or Z5 Compact try this, please?
I'd love to know before buying one.
non-secure ADB works on my Z5 (sim-free UK).
What is the command to backup partitions?
okgnew said:
non-secure ADB works on my Z5 (sim-free UK).
What is the command to backup partitions?
Click to expand...
Click to collapse
Code:
dd if=/dev/block/platform/msm_sdcc.1/by-name/TA of=/sdcard/TA.img
hm. it does not work.
I get 'permissions denied'
okgnew said:
hm. it does not work.
I get 'permissions denied'
Click to expand...
Click to collapse
If you type
Code:
id
, what do you get?
[email protected]:/ $ id
id
uid=2000(shell) gid=2000(shell) groups=1004(input),1007(log),1011(adb),1015(sdcard_rw),1026(drmrpc),1028(sdcard_r),2993(
trimarea),3001(net_bt_admin),3002(net_bt),3003(inet),3006(net_bw_stats) context=u:r:shell:s0
---------- Post added at 09:48 PM ---------- Previous post was at 09:47 PM ----------
[email protected]:/ $ dd if=/dev/block/platform/msm_sdcc.1/by-name/TA of=/sdcard/TA.img
v/block/platform/msm_sdcc.1/by-name/TA of=/sdcard/TA.img <
dd: /dev/block/platform/msm_sdcc.1/by-name/TA: Permission denied
---------- Post added at 09:49 PM ---------- Previous post was at 09:48 PM ----------
W:\>adb push hosts /data/data
failed to copy 'hosts' to '/data/data/hosts': Permission denied
okgnew said:
[email protected]:/ $ id
id
uid=2000(shell) gid=2000(shell) groups=1004(input),1007(log),1011(adb),1015(sdcard_rw),1026(drmrpc),1028(sdcard_r),2993(
trimarea),3001(net_bt_admin),3002(net_bt),3003(inet),3006(net_bw_stats) context=u:r:shell:s0
---------- Post added at 09:48 PM ---------- Previous post was at 09:47 PM ----------
[email protected]:/ $ dd if=/dev/block/platform/msm_sdcc.1/by-name/TA of=/sdcard/TA.img
v/block/platform/msm_sdcc.1/by-name/TA of=/sdcard/TA.img <
dd: /dev/block/platform/msm_sdcc.1/by-name/TA: Permission denied
---------- Post added at 09:49 PM ---------- Previous post was at 09:48 PM ----------
W:\>adb push hosts /data/data
failed to copy 'hosts' to '/data/data/hosts': Permission denied
Click to expand...
Click to collapse
You are not root, you are shell user.
You are using secure ADB.
I run 'adb root' but it did not change anything
And 'su' returns 'command not found'
After unsecuring ADB is it possible to push su and busybox via ADB with a computer
Thekjp95 said:
After unsecuring ADB is it possible to push su and busybox via ADB with a computer
Click to expand...
Click to collapse
Not that I could see. I tried a few commands which didn't work but even if you did dm-verity would have to be disabled otherwise the system would bootloop
Sent from my E6653 using Tapatalk
@DooMLoRD will you be willing to do work on the z5

Cant delete a Malware app with root permission

I can't delete following malware app with root permission.
com.android.provider.down3-1.apk
com.google.model.mi-1.apk
com.google.fk.json.slo.apk
It shows an error:rm failed for com.hola.launcher-1.apk, Operation not permitted
Can any help me out?
This is a malware that changed the immutable attrib
---------- Post added at 11:44 PM ---------- Previous post was at 11:40 PM ----------
svprm said:
I can't delete following malware app with root permission.
com.android.provider.down3-1.apk
com.google.model.mi-1.apk
com.google.fk.json.slo.apk
It shows an error:rm failed for com.hola.launcher-1.apk, Operation not permitted
Can any help me out?
Click to expand...
Click to collapse
You need busybox installed.
Try this commands:
chattr -AacdDijsStu *.apk
rm "your package name"
This time it will get removed without error
Enjoy
Bithacker01 said:
---------- Post added at 11:44 PM ---------- Previous post was at 11:40 PM ----------
You need busybox installed.
Try this commands:
chattr -AacdDijsStu *.apk
rm "your package name"
This time it will get removed without error
Enjoy
Click to expand...
Click to collapse
thanks bro.
It worked.
thanks Bithacker it worked. thank a lot
I have problem to remove "com.aiwozhh.ph.cz.apk" on my Android even I followed the below;
(Try this commands:
chattr -AacdDijsStu *.apk
rm "your package name" )
the error msg is "Operation not permitted".
Pls help!!!!!!!!!!
Thanks,
Piseth
Bithacker01 said:
---------- Post added at 11:44 PM ---------- Previous post was at 11:40 PM ----------
You need busybox installed.
Try this commands:
chattr -AacdDijsStu *.apk
rm "your package name"
This time it will get removed without error
Enjoy
Click to expand...
Click to collapse
Can this be done using terminal emulator?
Wil53664 said:
Can this be done using terminal emulator?
Click to expand...
Click to collapse
Yes, You can use any terminal emulator.
---------- Post added at 09:30 AM ---------- Previous post was at 09:23 AM ----------
Lim Piseth said:
I have problem to remove "com.aiwozhh.ph.cz.apk" on my Android even I followed the below;
(Try this commands:
chattr -AacdDijsStu *.apk
rm "your package name" )
the error msg is "Operation not permitted".
Pls help!!!!!!!!!!
Thanks,
Piseth
Click to expand...
Click to collapse
You need to have root access.
Try rooting your device, use Kingroot App
Then, try these commands
su
chattr -AacdDijsStu *.apk
rm "your package name"
How can I delete the su file from the /system/bin and /system/xbin I keep getting operation not permitted
Lim Piseth said:
I have problem to remove "com.aiwozhh.ph.cz.apk" on my Android even I followed the below;
(Try this commands:
chattr -AacdDijsStu *.apk
rm "your package name" )
the error msg is "Operation not permitted".
Pls help!!!!!!!!!!
Thanks,
Piseth
Click to expand...
Click to collapse
U can try with titanium backup once
If it doesn't work, reboot the phone, freeze the app fast when it boots and then try to uninstall it with titanium
It worked for me once
---------- Post added at 06:00 AM ---------- Previous post was at 05:58 AM ----------
Lim Piseth said:
I have problem to remove "com.aiwozhh.ph.cz.apk" on my Android even I followed the below;
(Try this commands:
chattr -AacdDijsStu *.apk
rm "your package name" )
the error msg is "Operation not permitted".
Pls help!!!!!!!!!!
Thanks,
Piseth
Click to expand...
Click to collapse
Firstly, root ur phone
If it's rooted
Fir type SU and enter
Then try to do whatever u want
Hey! I've been following this problem because I have the same situation, I have a malware named:
VPN
net.qwe.vpn
ad.apk
And I am using this method you just explain BUT the terminal emulator says No such file Not found something like that, there is anything else for me to do? How the freaking hell can I find the real name of this thing? Or what can i do in the emulator in order to be able to find it... Please help
MissSofy said:
Hey! I've been following this problem because I have the same situation, I have a malware named:
VPN
net.qwe.vpn
ad.apk
And I am using this method you just explain BUT the terminal emulator says No such file Not found something like that, there is anything else for me to do? How the freaking hell can I find the real name of this thing? Or what can i do in the emulator in order to be able to find it... Please help
Click to expand...
Click to collapse
did u write the package name?
Yes, I did, I even tried on the three names one by one, correct me If im wrong, I wrote this:
su
chattr -AacdDijsStu ad.apk
rm ad.apk
And it appear a line saying No file in directory or something about not finding it. Then I tried the other name:
su
chattr -AacdDijsStu net.qwe.vpn
rm net.qwe.vpn
And nothing... could you please tell me if what i wrote was correct? Or write it in the correct way with the name included
---------- Post added at 07:05 PM ---------- Previous post was at 06:26 PM ----------
Nevermind... I just found out I delete the virus previously . I did so much stuff with the cellphone, I think what got rid of it was a "Format" I applied with the PC. Because I plugged in my cellphone and my laptop, browse its files and find the malware, and I try to delete it but it say that I was not allowed, so I just select the cellphone and did a "quick format" you know? That thing you do with the USB Flash drive, and i did, and later I found this website and I tried what you said and on the screen appear a message saying not found.... I just right now check the system apps with root brower and I cannot find the malware, even with my ikarus antivirus! Im so happy! Thank you anyways this is such a helpfull blog... Im still going to run some scans though, to really make sure the malware is gone for good! thanks again

Categories

Resources