WirusMOD Nethunter Kernel for Samsung Galaxy S20 FE 5G (Snapdragon) - Stock Android 10 & 11 & 12 & 13
Code:
I am not responsible for bricked devices.
If you going to flash it, you accepted it.
Of course your warranty is void.
Nethunter Features:
BadUSB
HID gadget keyboard/mouse
DriveDroid
USB WiFi, mac80211 (Monitor mode, packet capture, packet injection) [Compatibility List]
support rtl88xxau USB WiFi
support rtl8188eus USB WiFi
support rtl88x2bu USB WiFi
Ethernet
Bluetooth HCI USB support + Internal bluetooth support(carwhisperer does not work yet)
RTL-SDR DVB support
Monitor mode for buildin wifi card ( Qcacld-3.0 ) (No frame injection)
Enabled BT_RFCOMM
Support for extra file systems like CIFS, NFS, NTFS, F2FS
Extra:
Boeffla wakelock blocker v1.10
Wireguard
Docker support
Download: Android 13 releases start with v4.x
Latest version SM-G781X here.
Installation:
1. TWRP Backup your ROM
2. Flash Nethunter Kernel
3. Flash latest Magisk
4. Install busybox can be one from Magisk repository
5. Install Nethunter Store
6. Install NetHunter apk, NetHunter Terminal, NetHunter KeX from Nethunter Store
7. In NetHunter apk go to Kali Chroot Manager and install chroot.
7. Extract Nethunter_WirusMOD_r8q_vX.X_binaries.7z and binaries to folders:
Android 11 & 12 & 13 = Firmwares: /vendor/firmware_mnt/image/
Android 10 = Firmwares: /vendor/etc/firmware_mnt/image/
Firmwares: Give permissions to every file rw-r--r-- (if they aren't set)
hid-keyboard binary: system/xbin/ and give permissions to it rwxr-xr-x
8. Reboot
OLD: Loadable modules only for version 1.0:
Most of modules are integrated in kernel. Here are only two modules to load. Use they only if you need they.
Modules_Nethunter_WirusMOD_vX.X.7z
insmod 8188eu.ko - load module
rmmod 8188eu.ko - unload module
lsmod - list loaded modules
Another way to load modules is Module Loader
Copy modules to storage and choose modules which you want to load.
BUGs / Informations:
-If Safetynet Fix is installed can cause freeze at samsung flashy logo.
-If USB Arsenal setting HID function doesn't work try set it without ADB.
-In kernel are added binaries from Nethunter_WirusMOD_r8q_vX.X_binaries.7z(without modules) but they aren't copied automatically.
-airodump-ng can't self change channels for wlan0.
-If monitor mode for wlan0 doesn't work. Enable wifi connection > disable it -> enable monitor mode with Nethunter apk and try airodump wlan0
-Change channel in wlan0 monitor mode and frame capture:
iwpriv wlan0 setMonChan 36 2 - Setting channel 36
tcpdump -i wlan0 -w <tcpdump.pcap>
Docker Installation:
Every Commando execute in Termux app! More info here
pkg install root-repo
pkg install golang make cmake ndk-multilib tsu tmux docker
mkdir $TMPDIR/docker-build
cd $TMPDIR/docker-build
wget https://github.com/krallin/tini/archive/v0.19.0.tar.gz
tar xf v0.19.0.tar.gz
cd tini-0.19.0
mkdir build
cd build
cmake -DCMAKE_BUILD_TYPE=Release -DCMAKE_INSTALL_PREFIX=$PREFIX ..
make -j8
make install
ln -s $PREFIX/bin/tini-static $PREFIX/bin/docker-init
1. Run docker server
sudo dockerd --iptables=false
2. Test of those two containers work
sudo docker run hello-world
sudo docker run --network host --name nginx nginx:latest
#Go with browser to IP address of your smartphone with port 80. If you get nginx default page it works!
#Internet in docker containers
sudo ip route add default via <Gateway> dev wlan0
sudo ip rule add from all lookup main pref 30000
BUGs / Informations:
- option to forward ports from docker network to host does not work ( e.q. -p 0.0.0.0:80:3000) you need to use Host mode "--network host"
- Not every container for arm64 works with android. e.q official gitea can not bind port 3000. (I made special version of gitea with fix more info here)
Docker Screens:
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
Screens:
Credits:
Samsung for Kernel Source
Nethunter creators for the best portable penetration testing tool.
afaneh92 for TWRP and multidisabler
jesec for unlock guide
XDA:DevDB Information
[KERNEL] Nethunter for Galaxy S20 FE 5G (Snapdragon)
Contributors
Svirusx
Source Code: https://github.com/Svirusx/Nethunter-Kernel-S20_FE_5G
Kernel Special Features:
Version Information
Status: Beta
Created 2020-12-21
Last Updated 2022-12-10
2022.12.10 - v4.0
Initial release for Android 13 (G781BXXU4GVK6)
Added Internal bluetooth support(carwhisperer does not work yet)
2022.04.20 - v3.1
Added rtl88x2bu support
2022.01.18 - v3.0
Initial release for Android 12
2021.09.11 - v2.5
Added kernel module to support Docker
2021.07.14 - v2.4
Update Samsung kernel source to G781BXXU3CUE3
2021.05.24 - v2.3
Update Samsung kernel source to G781BXXU3CUD6
2021.05.13 - v2.2
Update Samsung kernel source to G781BXXU2CUD1
2021.01.27 - v2.1
Back to v2.1 Enabling Samsung MTP break some of usb attacks
Update used llvm toolchain ship to 10.0.
2021.01.20 - v2.1
Update used llvm toolchain ship to 10.0.
2021.01.14 - v2.0
Initial release for Android 11
2021.01.03 - v1.2
Enabled BT_RFCOMM and BT_RFCOMM_TTY
2020.12.23 - v1.1
rtl8188eus integrated in kernel
Disable loadable modules support.
2020.12.21 - v1.0
Initial release
reserved
Any chance of aosp for s20 fe?
Doctor-Z said:
Any chance of aosp for s20 fe?
Click to expand...
Click to collapse
For now i try add more features to s20 fe 5g, maybe in future i make Nethunter kernel too for s20 fe.
Hello. Is Qualcomm wifi firmwares supports injections ? (deauth, attacks...) Needs patch for injections ?
I am using Sony Xperia Z5 Compact and it uses Broadcomm 43455 firmware. I patched via NexMon, and monitor mode injections works well.
TRKARTAL said:
Hello. Is Qualcomm wifi firmwares supports injections ? (deauth, attacks...) Needs patch for injections ?
I am using Sony Xperia Z5 Compact and it uses Broadcomm 43455 firmware. I patched via NexMon, and monitor mode injections works well.
Click to expand...
Click to collapse
This depends which version of driver "Qcacld" is installed in kernel. Qcacld-2.0 support injections, Qcacld-3.0 does not support. Qcacld driver is open source there is possible to get injection with Qcacld-3.0 when someone make patch for it or codeaurora release support for injection.
Svirusx said:
This depends which version of driver "Qcacld" is installed in kernel. Qcacld-2.0 support injections, Qcacld-3.0 does not support. Qcacld driver is open source there is possible to get injection with Qcacld-3.0 when someone make patch for it or codeaurora release support for injection.
Click to expand...
Click to collapse
Is your applied wlan0 (internal) injection patch this right:
Apply injection patch · Svirusx/[email protected]
Nethunter Kernel for Samsung Galaxy S20 FE 5G - r8q -G781X (Snapdragon) - Apply injection patch · Svirusx/[email protected]
github.com
TRKARTAL said:
Is your applied wlan0 (internal) injection patch this right:
Apply injection patch · Svirusx/[email protected]
Nethunter Kernel for Samsung Galaxy S20 FE 5G - r8q -G781X (Snapdragon) - Apply injection patch · Svirusx/[email protected]
github.com
Click to expand...
Click to collapse
This injection patch is for USB wifi cards not for wlan0
Svirusx said:
This injection patch is for USB wifi cards not for wlan0
Click to expand...
Click to collapse
I cant see wlan0 injections patch. Which is patch commit ?
i have flashed R11 version and now i have a bootloop
Edit: My qualcomm secure boot is on, maybe it is my fault
Edit 2: Now its booting fine
Will this only work on unlocked variants of the S20 FE or can this work with say...the AT&T version?
Also can this do HID attacks through Rucky or just the Nethunter app?
markmn123 said:
Will this only work on unlocked variants of the S20 FE or can this work with say...the AT&T version?
Also can this do HID attacks through Rucky or just the Nethunter app?
Click to expand...
Click to collapse
This kernel work only with S20 FE 5G, i haven't S20 FE which is Exynos based to create kernel. This kernel normally would work to every S20 FE 5G which are codenumber r8q. Of course before trying make backup. I have only EU version of this phone.
Rucky works fine but you need to enable HID what is integrated in Nethunter app. If you can search in code maybe it is possible to enable it without Nethunter but i use Nethunter thats why i didn't tried extract it.
Svirusx said:
This kernel work only with S20 FE 5G, i haven't S20 FE which is Exynos based to create kernel. This kernel normally would work to every S20 FE 5G which are codenumber r8q. Of course before trying make backup. I have only EU version of this phone.
Rucky works fine but you need to enable HID what is integrated in Nethunter app. If you can search in code maybe it is possible to enable it without Nethunter but i use Nethunter thats why i didn't tried extract it.
Click to expand...
Click to collapse
can you make nethunter kernel for Samsung a30s sm-a307fn
it's about hid function, that i face errors when enable it
and didn't face anything when left it
i can build the kernel and currently i have one of my own in my aforementioned device
but the problem that i don't have enough experience in C language to fix this annoying problem
so it would be great, if you fired an official nehtunter kernel for this device
Mr.robin_ho_Od said:
can you make nethunter kernel for Samsung a30s sm-a307fn
it's about hid function, that i face errors when enable it
and didn't face anything when left it
i can build the kernel and currently i have one of my own in my aforementioned device
but the problem that i don't have enough experience in C language to fix this annoying problem
so it would be great, if you fired an official nehtunter kernel for this device
Click to expand...
Click to collapse
In kernel 4.x hid patch isn't needed see info here. You need only binaries like here but you can too use nethunter kernel builder.
Svirusx said:
In kernel 4.x hid patch isn't needed see info here. You need only binaries like here but you can too use nethunter kernel builder.
Click to expand...
Click to collapse
i'm already have it in anykernel file
i was just mean, that i face problem when enable hid function option in kernel control
and was tried anything from patch to search about problem, so if u can build it and fired it to a30s device will be great.
Mr.robin_ho_Od said:
i'm already have it in anykernel file
i was just mean, that i face problem when enable hid function option in kernel control
and was tried anything from patch to search about problem, so if u can build it and fired it to a30s device will be great.
Click to expand...
Click to collapse
Have you tried to enable HID function in Nethunter -> USB Arsenal but with ADB Disable?
When i try enable HID with ADB Enabled it won't work everytime sometime i must enable another modes before HID + ADB works.
Look too at my kernel source maybe you need something yet to enable ?
Svirusx said:
Have you tried to enable HID function in Nethunter -> USB Arsenal but with ADB Disable?
When i try enable HID with ADB Enabled it won't work everytime sometime i must enable another modes before HID + ADB works.
Look too at my kernel source maybe you need something yet to enable ?
Click to expand...
Click to collapse
Bro, i'm talking about hid functhion option, that i face problem when enable it
and can't fix the error, so how i can active it from nethunter app if it not enabled in kernel??
please if u can build it to me, i will be very thankful to you
that's my kernel source: https://github.com/MrRob0-X/exynos7885-a30s.git
it'll be great too if you fired it on xda
so that everyone who has the same device can benefit.
Mr.robin_ho_Od said:
Bro, i'm talking about hid functhion option, that i face problem when enable it
and can't fix the error, so how i can active it from nethunter app if it not enabled in kernel??
please if u can build it to me, i will be very thankful to you
that's my kernel source: https://github.com/MrRob0-X/exynos7885-a30s.git
it'll be great too if you fired it on xda
so that everyone who has the same device can benefit.
Click to expand...
Click to collapse
I don't have time to support and further maintain Nethunter kernels for smartphones which i don't have. I can only try little help you but... This source code is without any commits for nethunter. It looks like raw copy of samsung source which directly isn't compilable without toolchains.
Look at another kernels for your smartphone maybe they have build scripts or maybe you can use they as base for nethunter kernel?
This thread is for Samsung Galaxy S20 FE 5G This is my last answer for a30s here. If you have any further questions i can answer only in priv.
Svirusx said:
I don't have time to support and further maintain Nethunter kernels for smartphones which i don't have. I can only try little help you but... This source code is without any commits for nethunter. It looks like raw copy of samsung source which directly isn't compilable without toolchains.
Look at another kernels for your smartphone maybe they have build scripts or maybe you can use they as base for nethunter kernel?
This thread is for Samsung Galaxy S20 FE 5G This is my last answer for a30s here. If you have any further questions i can answer only in priv.
Click to expand...
Click to collapse
ok.
Official AOSP for Huawei (ane) - LeaOS-PHH (android 12.1 version)
LeaOS is a project which based on AOSP with phhusson's Treble GSI patches. I have added my personnals patches for Huawei devices : Encryption, Signal Strengh, Speed Boot, Assisted GPS, NFC, Media App, Default Sound, MediaScanner fixes etc..)
Changelog :
LeaOS-PHH Jul 2022 version
Jul 2022 SPL
Build with last android aosp source (12.1.0_r11) and v415 phh
Fix MediaScanner crash and no default sound (ringtone, alarms..)
Fix all selinux denied
Add dynamic root
Add option in TrebleApp to collect adb log and create txt file in sdcard
Include specific properties for ANE-LX1
Installation
Download file : “LeaOS-A12-20220724-iceows-google-ane.7z" or "LeaOS-A12-20220724-iceows-ane.7z" and extract img file
Flash system image : fastboot flash system <drag system.img here>
Reboot and setup phone with android first start assistant *
* Do not set pin code with google apps version
Source Code:
https://github.com/Iceows
ROM OS Version: Android 12.1
ROM Kernel: Linux 4.9.x
ROM Firmware Required: EMUI 9
Based On: PHH AOSP v415
Credits:
PHH
And all the others who tested my patches and helped me improve this ROM
Support Group
reserved
Is Bluetooth pairing bug fixed for our device in this version?
luka_bubi said:
Is Bluetooth pairing bug fixed for our device in this version?
Click to expand...
Click to collapse
This probably won't help under [A12] GSI, but have you tried bluetooth manager apk? (google play or f-droid)
-Alf- said:
This probably won't help under [A12] GSI, but have you tried bluetooth manager apk? (google play or f-droid)
Click to expand...
Click to collapse
You can solve the problem with this app
Bluetooth Force Pin Pair (Conn - Apps on Google Play
Solve some Bluetooth pairing connect problems such as: Get the error wrong pin..
play.google.com
luka_bubi said:
Is Bluetooth pairing bug fixed for our device in this version?
Click to expand...
Click to collapse
Pairing bug is only with code pin bluetooth device. You can use an app to fix it, see my Alf response
Root don't work for me, i don't know why.. Safetynet don't work too.. Any solutions ?
Dual SIM don't work on custom roms?
I too could not get root to work (in order to remove root) and as consequence pass Safetynet also. I have tried with LeaOS - AOSP and LeaOS - Lineage ROM. As recommended in this comment I went with Pixel experience, but did not like it so I returned to @AndyYan LineageOS ROM.
AndyYan pass safetynet ? And for root you want a root rom or a non root rom ?
Pixel pass safetynet and Netflix stock playstore work fine with my patch for drm.wide (preavs)
As long as there is a clean ROM with no extra stuff that I have to remove then I do not need root. In most ROMs I need to became root to remove root and be able to pass SafetyNet.
As far as AndyYans ROMs go they do not pass Safetynet completely, just enough to fool my banking apps to work normally. That is good enough for me for my normal daily use of this phone.
luka_bubi said:
As long as there is a clean ROM with no extra stuff that I have to remove then I do not need root. In most ROMs I need to became root to remove root and be able to pass SafetyNet.
As far as AndyYans ROMs go they do not pass Safetynet completely, just enough to fool my banking apps to work normally. That is good enough for me for my normal daily use of this phone.
Click to expand...
Click to collapse
Ok so just securize ROM. I have already made a twrp patch to do this job, but not publish for the moment
Hello, I would like to ask if this gsi can be used for hi6250 models?Because the gsi of Android12L that I brushed several phh before can't boot ...
altairfr-huawei - Browse /LeaOS-A13 at SourceForge.net
sourceforge.net
is this for p20lite?
how do i know wich Rom meant for lx1?
lucsol said:
altairfr-huawei - Browse /LeaOS-A13 at SourceForge.net
sourceforge.net
is this for p20lite?
how do i know wich Rom meant for lx1?
Click to expand...
Click to collapse
For the moment this version not boot on ane-lx1. Boot only with mi 10 phone
Hello,
i want to ask if there's possiblity to compile RTL8812BU driver to Poco X3 Pro device on Android 11 on Original Stock.
First, the kernel must be built with support for otg and external wifi adapters. I'm not sure that the stock kernel can do this. Need to check. Secondly, the kernel must have firmware for a specific wifi chip model. This is not a problem, there is a magisk module that adds support:
GitHub - rithvikvibhu/nh-magisk-wifi-firmware: This Magisk module adds the required firmware for external wireless adapters to be used with NetHunter.
This Magisk module adds the required firmware for external wireless adapters to be used with NetHunter. - GitHub - rithvikvibhu/nh-magisk-wifi-firmware: This Magisk module adds the required firmwar...
github.com
* Your warranty is now void.
* Im not responsible for anything that may happen to your phone by installing any custom ROMs and/or kernels.
* You do it at your own risk and take the responsibility upon yourself and you are not to blame me or XDA and its respected developers.
SpiderBlood Kernel for Pixel 3/3XLFeatures:
Atheros adapters suppport
Realtek adapters support (including 88XXAU and 8188EUS)
Ralink adapters support
Bluetooth USB adapters support
Internal bluetooth support
Ethernet adapters support
SDR support
Injection
HID
USB Arsenal
blu_spark kernel features that you can find here
NetHunter supported wireless cards: https://www.kali.org/docs/nethunter/wireless-cards/
Tested wireless cards: AWUS1900, WN722N v3
Supported android version: 13 (Stock ROM)
Kernel base source: https://github.com/engstk/pxl4a
Installation steps
First we need to remove encryption from our phone, pixel 4a is a slot device so we need to flash this in TWRP and format data (Advanced -> format data -> yes)
Next we need to do initial setup, skip pattern lock, install magisk app (magisk is already installed after flashing DSE NEO, but the app is missing) magisk app
Our device have Read-Only filesystem so we need to flash this in TWRP, and use default options
Now we can flash kernel in TWRP
If you want to use latest nethunter terminal app that is based on neoterm instead of crappy nh terminal you need to build terminal and nethunter apps in android studio and install them on your phone
Navigate to nethunter chroot manager now, and install full kalifs
Download firmware files from here, go to root shell and enter
Code:
mount -o rw,remount /
and copy all files inside firmware folder to /vendor/firmware. You can use any root expoler app or copy it using terminal
That's it! You have working nethunter device with all features supported now!
Trying this now
Hi! This kernel only work in stock roms? Can use it in RiceDroid custom rom?
Marcia8246 said:
Hi! This kernel only work in stock roms? Can use it in RiceDroid custom rom?
Click to expand...
Click to collapse
It's based on stock kernel source, so probably it won't work, but you can try it as your ROM kernel source can be based on stock source too
cr4sh-lab said:
It's based on stock kernel source, so probably it won't work, but you can try it as your ROM kernel source can be based on stock source too
Click to expand...
Click to collapse
Working great! Thank you
It works like a charm thank you! I've been banging my head against the wall trying to get external adapters working for what seems like forever and it's finally happened
Thank you for your hard work and well done!
Can you also include Ralink mt7601u (TL-WN727N)
Hritik utekar said:
Can you also include Ralink mt7601u (TL-WN727N)
Click to expand...
Click to collapse
Hi, if this chipset is supported by Kali nethunter patches, then it should work, but if it's not I can't do it. If you really want to get this chipset working you can try to manually add driver support and build kernel with it for yourself
Check your telegram @cr4sh-lab