This thread should be totally in-bounds, as should all future "FRP bypassing as a hobby" threads I intend to do as the opportunities arise, for I will be the legal, legitimate owner of the devices I bypass. You see, I've been doing this since the "beginning", and have always been fascinated on how varied the FRP methods have been from the different manufacturers.. So anyhow, as I get new devices, I intentionally FRP lock them, then figure out a way around it. So yea, todays exercise is the Galaxy S8 Active (ATT - SM-G892A). I recently scored one for silly dirt cheap, and drove it like I stole it heh..
I made the mistake straight away of updating the software to the December 2018 rom, which as it turns out has pretty much all of the vulns patched (with the exception of ther HushSMS trick..) so I kinda shot myself in the foot right out of the gate. What one then has to do is downgrade from the G892AUCU3BRL1 rom to an earlier bootloader three rom. I managed to find JUST the AP tar from G892AUCS3BRG1. This allowed the exploitation of a emergency call trick, which kicks off the steps needed to bypass FRP.
So, from bit3 December G892AUCU3BRL1, you flash G892AUCS3BRG1 AP. Upon completion either manually drop to recovery mode (Vol+, Bixby, Power) and wipe\reset, or just let it boot and it will figure it out Then, the steps are as follows:
1) Connect to wifi.. Internet WILL be required
2) Enable Voice Assistant. Press two fingers down on screen and hold till it enables.
3) On "Start" screen, click Emergency Call
4) On dialer, enter 112 then dial
5) New screen pops up. Click the "+ add call" button
6) New screen appears. Click Contacts, Then Create Contact
7) Give contact a name (for saving purposes) then click view more down towards bottom of form
8) In the werb address field, enter a URL you want as a jump point, then click SAVE.
9) New screen appears with newly saved contact info. Click globe next to the URL you entered in step 8.
10) Presto! Your half way there. I'm sure you can figure out the rest
You can find the files I used here https mega.nz/#F!gTI0WQRI!z6MhcewJS3IhAbzFend4Zg
Related
Hi friends,
I have a HTC TATTOO I received a year ago and now I measured code my little brother played with it and put it to me
And he does not let me go with GMAIL account (password and email are correct)
Version 1.6
Please Help
I understand all of those words, just not in that order.
I think you may be referring to issue 3006 on pre-Eclair Android versions.
When you failed the pattern too many times it blocks and you have to put your Google account and password to unlock it, but the bug prevented it from unlocking, showing an 'Incorrect user/pass' message.
You need to do a factory reset to solve the problem. Follow these instructions:
1) With the phone turned off, press and hold the HOME and BACK buttons, and then briefly press the END CALL/POWER button.
2) Press the ENTER button to begin the reset process. (Otherwise, press the END CALL/POWER button to cancel.)
Mind that doing so will make you lose all your data (SMS, apps, etc). SD card will be fine thou.
I hope I have deciphered your post correctly. The truth is, it's a bit hard to understand. :S
I have a Google Galaxy Nexus bought unlocked from Google about two weeks ago.
A few hours ago, I seem to have unintentionally locked myself by setting both a PIN and PUK. I was not aware that I was setting anything more than a 4 digit PIN. Whatever a PUK might be, is not explained in the manual printout here in front of me.
I was presented with a numeric keypad screen that wanted me to set (reset?) both. Across the top of the screen I was getting a marquee saying I needed a min of 8 characters and below that, a field for PIN and a field for PUK (it would have nice to at least once be told what that acronym stands for).
Cancel only just turns off the screen (not the phone). Same with OK.
So, I did power off. But when I turned power back on I get that same screen and the phone is locked.
So, I read the manual again. No real help on how to have avoided this or how to get out of this trouble.
I searched the net. I found instructions somewhere that told me I could do a factory rest that would loose all data, etc. Since I have only had this phone for a short while and done little to customize it, I could live with that. My mail, calendar and photos are synched to my desktop.
So, I followed the instruction for factory reset (and took note that the manual with this expensive device is no help with this important function nor does it give me a phone number for support. Shame on someone for that decision.)
1. power off
2. hold volume button
3. hold power button
That returned a screen with a large Anroid character, plus a large right facing arrow containing the word "Start" in the arrow. Beneath the android it says "Downloading. Do not turn off target!!" The double exclamation marks suggest this is to be obeyed.
Another aside to whoever designed this thing. the first rule of communication is, "The effectiveness and efficiency of any message is 100% the responsibility of the sender." The corollary to that is, do not use jargon or technical terms unless you include a definition.
So, what or who is a "target?" Other than a set of concentric cirles and the name of the place my wife buys Martha Stewart sheets , I know no other target.
BTW - if I am supposed to touch the arrow to launch something (and perhaps turn off the target?) it's a waste. After 15 minutes of no action, I touched it. Nothing happened.
So now I have a screen that tells me to not do something, leaving me with the fear of doing anything at all. And even if I should do something, like touch the Start, nothing happens. Now close to 1/2 hour has passed and the "downloading" message is unchanged. WTF is it downloading? Anything at all?
Do I now own a warm paperweight whose enigmmatic screen will go dark in a few hours?
Or can I do something that actually works?
Thank you for your patience in reading this. The book Alice In Wonderland was shorter and much more interesting.
Any useful suggestion will be appreciated.
update on stuck reset
After the phone sat here onm desk for a few hours, with that same screen and warning (do not close target). I picked up the phone to move it to the side.
When i grabbed it, I accidentally squeezed the power button. That ascreen wnet away and then it blinked back to the screen tthat wants the PUK and PIN.
Any idea wht to do from here?
As I said at the start, I am willing to do a factory reset. Obviously I do not know how.
Advice, please?
Easy.
joehark said:
I have a Google Galaxy Nexus bought unlocked from Google about two weeks ago.
A few hours ago, I seem to have unintentionally locked myself by setting both a PIN and PUK. I was not aware that I was setting anything more than a 4 digit PIN. Whatever a PUK might be, is not explained in the manual printout here in front of me.
I was presented with a numeric keypad screen that wanted me to set (reset?) both. Across the top of the screen I was getting a marquee saying I needed a min of 8 characters and below that, a field for PIN and a field for PUK (it would have nice to at least once be told what that acronym stands for).
Cancel only just turns off the screen (not the phone). Same with OK.
So, I did power off. But when I turned power back on I get that same screen and the phone is locked.
So, I read the manual again. No real help on how to have avoided this or how to get out of this trouble.
I searched the net. I found instructions somewhere that told me I could do a factory rest that would loose all data, etc. Since I have only had this phone for a short while and done little to customize it, I could live with that. My mail, calendar and photos are synched to my desktop.
So, I followed the instruction for factory reset (and took note that the manual with this expensive device is no help with this important function nor does it give me a phone number for support. Shame on someone for that decision.)
1. power off
2. hold volume button
3. hold power button
That returned a screen with a large Anroid character, plus a large right facing arrow containing the word "Start" in the arrow. Beneath the android it says "Downloading. Do not turn off target!!" The double exclamation marks suggest this is to be obeyed.
Another aside to whoever designed this thing. the first rule of communication is, "The effectiveness and efficiency of any message is 100% the responsibility of the sender." The corollary to that is, do not use jargon or technical terms unless you include a definition.
So, what or who is a "target?" Other than a set of concentric cirles and the name of the place my wife buys Martha Stewart sheets , I know no other target.
BTW - if I am supposed to touch the arrow to launch something (and perhaps turn off the target?) it's a waste. After 15 minutes of no action, I touched it. Nothing happened.
So now I have a screen that tells me to not do something, leaving me with the fear of doing anything at all. And even if I should do something, like touch the Start, nothing happens. Now close to 1/2 hour has passed and the "downloading" message is unchanged. WTF is it downloading? Anything at all?
Do I now own a warm paperweight whose enigmmatic screen will go dark in a few hours?
Or can I do something that actually works?
Thank you for your patience in reading this. The book Alice In Wonderland was shorter and much more interesting.
Any useful suggestion will be appreciated.
Click to expand...
Click to collapse
Just go to the shop you got the SIM and they will unlock it for you with a new PUK code!
Hi there,
Is there anything I can do for a T-Mobile ZTE V768 gingerbread phone that doesn't enter recovery mode(it freezes) or download mode(it reboots),
and can't start because it has a pattern and it is locked for T-Mobile? The phone was sent to a friend here in Honduras from the USA. I have really tried to help this guy but have not met my goal yet.... Any ideas would be totally useful....
Regards and thanks in advance,
freakyhn said:
Hi there,
Is there anything I can do for a T-Mobile ZTE V768 gingerbread phone that doesn't enter recovery mode(it freezes) or download mode(it reboots),
and can't start because it has a pattern and it is locked for T-Mobile? The phone was sent to a friend here in Honduras from the USA. I have really tried to help this guy but have not met my goal yet.... Any ideas would be totally useful....
Regards and thanks in advance,
Click to expand...
Click to collapse
Hey dude hope this will help
A couple of weeks ago, the iPhone world discovered an exploit (not fixed) that allowed anyone to bypass the lockscreen and access the phone, messages, and even pictures.
Well, the bug has been caught in the GS3 world now, too. A few days ago, mobile enthusiast Terence Eden discovered a flaw that also allowed limited access to certain features of your Samsung Galaxy S3, and only in very certain circumstances. And it works no matter what protection you have enabled...Pattern Lock, PIN, Password, or Face Unlock.
Steps to Exploit #1
Lock your phone and turn the screen back on.
Go to Emergency Call.
Select the Emergency Contact icon on the bottom left.
When in the Emergency Contact screen, hit the Home button.
You will see a flash of your Home Screen (no matter what launcher you are using).
In that second when the Home Screen flashes, you can select an app/widget to execute.
The limitations with this exploit are that almost anything you select will run in the background, and you will be back at the lock screen. Where this exploit can be effective is if, let's say, you have a Direct Dial widget on your homescreen. In this case, someone can hit this widget, and the call will go through.
While this is something that should be fixed, it doesn't actually allow you to do much, so really, it's not all that scary. Unfortunately, the fun doesn't end there.
Yesterday, Sean McMillan of Full Disclosure opened up the initial exploit and discovered something much scarier. If successful, not only will this exploit open up the full contents and capabilities of your S3, but it will disable the lock screen completely until the phone is rebooted.
Steps to Exploit #2
Lock your phone and turn the screen back on.
Go to Emergency Call.
Select the Emergency Contact icon on the bottom left.
When in the Emergency Contact screen, hit the Home button.
Immediately after hitting Home, press the Power button.
If you did this correctly, the next time you press Power, your device will go directly to your homescreen.
This is obviously not good. Sean does note that you may need to do this multiple times to get it to work. Also, it doesn't matter what launcher you are using, or whether you are using a lockscreen replacement or not.
In the interest of full disclosure, I tried about 30 times, both with my rooted/modded phone, and with a bone-dry stock phone, and I couldn't replicate it.
But, just because I couldn't do it, doesn't mean it isn't real and dangerous. At this point, there has not been any word out of Samsung regarding this exploit, but I imagine a response and a patch will be on their way shortly.
Atif Naser
Hi all,
Just wondering if you Android pro's can tell me whether the G930F (Australian) can boot into maintenance mode?
My girlfriend bought one new on the way to the airport for her dream holiday in the USA mainly for the camera, then promptly forgot the swipe pass for the secure startup when she arrived home. USB debug is off, so I'm looking to get it back on. Got no problems with the FRP, she knows all the details for that, but it's just that the phone won't power on and connect to the network so we can do an account recovery. Or, at least get to a point where we can pull the photos off and then just do a hard reset.
If it's a no go on maintenance boot, would flashing the stock ROM back on get us past the swipe and at least to a point where we can actually recover the account from Google?
Just to be clear - the phone boots past the Samsung logo and then stays in "To start up your device, draw your pattern." and the option to go to an emergency call. We cant call the phone at this point, it just goes straight to voicemail.
Thanks heaps!
The 930F is the international model, Australia has no specific firmware or hardware differences so shouldn't have any reason not to be able to.
It sounds like you have the set to have the pattern required to start the device as opposed to just unlock it, and I'm not sure how early it kicks in preventing boot modes.
If I recall correct boot to recovery is vol up + home + power, boot to maintenance is vol up + power, and boot to download is vol down + home + power
Couldn't tell you if recovery or maintenance will let you pull data.
A factory reset within recovery might get past the pattern lock, but will wipe your photos.
A stock firmware flash in Odin should do it if recovery doesn't work, but also will wipe your photos.
Ah, I see. I appear to be able to get into Recovery and Download boots, but not maintenance. I'd seen that once you get into maintenance, you can turn on USB debugging from there, and I'd be all sorted. Hmmm.
That's a pity about the stock ROM flash, I thought that might be my best bet after maintenance boot.
Maintenance might be a snapdragon thing, googling it I can only see people doing it on the US model.
Oh right. Could I do anything like in this article -
Google "Physical Imaging Of A Samsung Galaxy S7 Smartphone Running Android 7.0" (sorry, I can't post outside links yet!)
- down to step 4? Is there an appropriate boot image available for the G930F?
Thanks heaps for the help so far!
Should be, every ROM zip I've seen has one in them. Not sure where you could get a stand alone stock one.
Ok, cool. Would the one found in this thread -
"ENGBOOT for S7 and S7 Edge (Qualcomm/Exynos) (Untested) (Still Seems Legit)"
- on these forums be ok? There's a file in the download labelled G930F_XXE1APBG_ENGROOT.tar (after extracting the .7z) that appears to be standalone. Is that what I'm after?
For reference, in Recovery boot, it tells me that the current PDA is G930FXXS1DQF6, and from that I can find that the CSC is G930FXSA1DQEF.
So she can't remember the pattern to unlock it? Or does it not boot properly despite entering the correct pattern? The S7 comes encrypted by default and the pattern is the key. No data is actually usable at the point it displays the pattern screen with the black background(because it can't actually access the wallpaper yet). If you can't get the pattern right all data currently on the device apart from the external SD(unless it's encrypted too) is lost It's a security feature, the only other way is a factory reset.
Yeah, black background is where we're at, and yeah, can't remember the pattern. So there's no way to get past that at all? Not even flashing the boot image?
Hmmm. Is there any way to reset the amount of attempts? We can at least keep trying different patterns that way.
JamesMudd said:
Yeah, black background is where we're at, and yeah, can't remember the pattern. So there's no way to get past that at all? Not even flashing the boot image?
Hmmm. Is there any way to reset the amount of attempts? We can at least keep trying different patterns that way.
Click to expand...
Click to collapse
NOTE: This is based on what I know. If anybody else has any ideas please don't hesitate to share!
Does it let you enter a backup password? She might have some ideas there?
Your best bet would maybe be a firmware reflash, but that's a very slim chance. So try that first(Remember to use HOME_CSC!). You can try flashing the boot image but beware, if the phone is full stock then the encryption system has some self-defence mechanisms that can permanently lock the data if unauthorized firmware is detected(or anything else suspicious like resetting the attempts). It technically *shouldn't* disable secure startup though; Remember, the whole point of encryption is to make it physically impossible to access data without the key, so it wouldn't be doing its job if you could just disable it at will. Samsung is also pretty anal about security these days.
Edit: Does she have a Samsung account? It might have backed the photos up already.
It was hot. I don't think the phone was necessarily feeling the heat like me... but... the way it was acting... maybe so?
The second to last day of my vacation at Walt Disney World (first time!), my S8+ started acting wonky. I tried to take pictures and the application wouldn't work right.
So, I rebooted.
Now, I'm staring at a screen with a textbox at the bottom of the screen and some text near it (I don't recall it verbatim) "Enter your emergency password".
What? What's an emergency password? Typing in the textbox, it was obvious that it wasn't a numeric-only textbox (for PINs) but it was alpha-numeric. I simply don't recall registering anything but a pin and my fingerprints.
Freaking out, I kept trying to restart and worked with the power and volume buttons.
All I continued to see was the Samsung logo.
Suddenly, I got a black screen with text telling me things were being erased. I then see a blue screen with an android bot telling me stuff was being erased.
After a bit, I was back at the language selection.
Gone. Pictures. Data. SSD... entire phone... fully erased. (Thankfully, a majority of my pictures were immediately put into Instagram... the lost pictures I used the phone's camera app because it works better than the Instagram camera).
Don't have my laptop... so I don't have my password database, so I cannot get into ANY applications.
I know there are requirements for Microsoft Exchange, and other applications that require special security for being a device administrator... I'm not aware of Exchange requiring a password for the phone but... who knows? I didn't enter the password wrong too many times.... even as hot as it was I still used my print to unlock the phone.
Man, that is horrible. My condolences. If you can boot the phone into recovery mode (Hold down volume up, then the Bixby button & then the power button...all at once). Once in recovery, do a factory reset and you shouldn't have to enter that 'Emergency Password'. Unfortunately, everything is lost unless you ran a backup into the cloud or on your 'puter.
Sorry for the post if you've already reset the phone as it sounds like you might have since you mentioned the language screen.
TheBigEasy88 said:
Man, that is horrible. My condolences. If you can boot the phone into recovery mode (Hold down volume up, then the Bixby button & then the power button...all at once). Once in recovery, do a factory reset and you shouldn't have to enter that 'Emergency Password'. Unfortunately, everything is lost unless you ran a backup into the cloud or on your 'puter.
Sorry for the post if you've already reset the phone as it sounds like you might have since you mentioned the language screen.
Click to expand...
Click to collapse
Yeah I didn't have the choice -- the phone decided to reset to a fresh install point. Once I got back home I restored to a previous backup after trying everything I could to undelete stuff on my SDCARD.... but none of the software I tried would work... kudos Samsung... your deletion of my SDCARD was VERY complete...
Did you have the SDCard stand alone or merged with the internal storage? I'm surprised that got wiped also.
Chris Dickerson said:
It was hot. I don't think the phone was necessarily feeling the heat like me... but... the way it was acting... maybe so?
The second to last day of my vacation at Walt Disney World (first time!), my S8+ started acting wonky. I tried to take pictures and the application wouldn't work right.
So, I rebooted.
Now, I'm staring at a screen with a textbox at the bottom of the screen and some text near it (I don't recall it verbatim) "Enter your emergency password".
What? What's an emergency password? Typing in the textbox, it was obvious that it wasn't a numeric-only textbox (for PINs) but it was alpha-numeric. I simply don't recall registering anything but a pin and my fingerprints.
Freaking out, I kept trying to restart and worked with the power and volume buttons.
All I continued to see was the Samsung logo.
Suddenly, I got a black screen with text telling me things were being erased. I then see a blue screen with an android bot telling me stuff was being erased.
After a bit, I was back at the language selection.
Gone. Pictures. Data. SSD... entire phone... fully erased. (Thankfully, a majority of my pictures were immediately put into Instagram... the lost pictures I used the phone's camera app because it works better than the Instagram camera).
Don't have my laptop... so I don't have my password database, so I cannot get into ANY applications.
I know there are requirements for Microsoft Exchange, and other applications that require special security for being a device administrator... I'm not aware of Exchange requiring a password for the phone but... who knows? I didn't enter the password wrong too many times.... even as hot as it was I still used my print to unlock the phone.
Click to expand...
Click to collapse
The only reason I see for this to happen is if on the "lock Screen and Security", inside the "Secure Lock Settings" have enabled the "Auto factory reset".
Biometrics won't trigger a device wipe, they will only force the pin/password field on too many attempts.
You say Exchange. Is this a corporate account? Is there a possibility that someone remotely wiped your device? Log into OWA (the web interface of your Exchange), navigate to Options -> See All Options, then click the Phone tab and see if a wipe was sent to it. Because what you described sounds a lot like a remote wipe. (Though I've never seen the emergency password field.)
Also make sure that you're not violating your corporate policies. Granting admin access to the Exchange app gives your company full control over your device. They can see you accessing your email with it, and if you're doing something that you shouldn't be, they will wipe your device.
mcnascimento said:
The only reason I see for this to happen is if on the "lock Screen and Security", inside the "Secure Lock Settings" have enabled the "Auto factory reset".
Click to expand...
Click to collapse
No way of knowing but I don't recall ever setting that (I wouldn't).
something corrupted your ROM it sounds like, somehow!
if it was the red box that says like "enter password" I believe it is actually "default_password"