I am ultra noob, so can anyone take a look at the following link for me.
And post a detailed guide.
https://www.pentestpartners.com/security-blog/cracking-android-passwords-a-how-to/
Thanks
P.S. I need this for my own phone and not for illegal stuff.
If your phone's Android is rooted
&
If your phone can get accessed by means of ADB
then
you can open Android's SQLite database named /data/system/locksettings.db via ADB
Code:
adb devices
adb shell
mount -t auto -o rw,remount /data/system
sqlite3 /data/system/locksettings.db
and do the database query as mentioned in the article linked to.
@jwoegerbauer this is what it shows
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
Some things to mention.
1.My phone is locked.
2.By default it goes to USB tethering mode upon connecting to my PC(I changed the setting in DEV mode)
3. It is rooted
4. It has orange fox recovery installed
5. Again I am a noob right now (won't remain that way for too long) and need a tutorial of some kind to do this successfully.
6. I do not know SQL and so how to use it either, and for that matter Hashcat too.
The blog still remains difficult for me.
Thanks again
Line
Code:
mount -t auto -o rw,remount /data/system
should read as
Code:
mount -t auto -o rw,remount /data
Nothing
I see today is not my best day.
This should work
Code:
adb devices
adb shell
su -c 'mount -t auto -o rw,remount /data'
sqlite3 /data/system/locksettings.db
Still not working @jwoegerbauer
Is there any other way such as doing all this in recovery mode or using terminal in orange fox
or adb sidelode or something.
sa1 said:
View attachment 5307221
Click to expand...
Click to collapse
My guess is that your phone 's Android isn't properly rooted.
@jwoegerbauer what does properly rooted mean. All apps that require root works properly.
SubwayChamp said : If you are in Android 10 system can't be mounted the suggested way, you also said that device is locked but is rooted (?). Orange Fox recovery has inbuilt an add-on feature that can do that.
Here : https://forum.xda-developers.com/t/help-thread-ask-any-question-noob-friendly.2257421/post-85003273
sa1 said:
@jwoegerbauer what does properly rooted mean. All apps that require root works properly.
Click to expand...
Click to collapse
It's not interesting here whether apps that require root work or not. In your case it is only important whether SU-binary can be found by the system.
Anyway:
Some newer Android builds require the following additional ADB commands to be run first to disable Android's AVB-lock
Code:
adb root
adb disable-verity
adb reboot
adb wait-for-device
Try this. Then run commands as listed above.
FYI: I no longer participate this thread. Have a nice day.
This is what it shows
Related
Thanks to Harry_m!
The project is hosted on google-codes:
http://code.google.com/p/android-wifi-tether/
(Screenshot available)
http://forum.xda-developers.com/showthread.php?t=486767
Can one of the admins remove my tether sticky and make this thread a sticky...
Thanks
wow...thx to all involved in this -- looks great
Cool little app. Just installed and it works great. Wish there was an easy way to change the SSID.
Remove old
i installed this the other day and this is great.
Works 100% perfect.
the only question is how do i remove the old Tether1.6
I have been looking around but i cant figure out how to uninstall/remove the old setup
Thanks again
Great job. Open source ftw
Awesome ap and well done. Thanks!!!
To echo memphis, will installing this conflict in any way with tether 1.6? Does this overwrite Tether 1.6?
working flawlessly
now, if only T mobile would roll out 3g in my market
q1 2009, my foot
I just deleted tether 1.6 from my sd & installed this tether and it works flawlessly, no conflicts at all.
Awesome. Tethering can't get easier than this.
This is brilliant. Getting the best transfer speeds for any tethering program yet. Getting about 1200kbps over 3g!
yes thats work great man good job
Mine doesnt work
Mine does not work
"Your Phone is currently in an unknown state - try to reboot"
"Configuring iptables...
Could not open socke to kernel:
Operation not permitted
Starting dnsmasq ...
dnsmasq: failed to bind DHCP server socket:
Permission denied
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
Now because I'm a neat freak, I have to ask:
How does one go about "uninstalling" the tetherv1.6 package?
I have to chime in here just to emphasize how amazing this app is. It includes security and it's free! I can't see this app getting any better than it already is!!!
Many thanks to the developer for this amazing app =)
netbums said:
Mine does not work
"Your Phone is currently in an unknown state - try to reboot"
"Configuring iptables...
Could not open socke to kernel:
Operation not permitted
Starting dnsmasq ...
dnsmasq: failed to bind DHCP server socket:
Permission denied
Click to expand...
Click to collapse
Are you using a mod to run application from sd-card? If yes, this might be the problem ...
Take a look here:
http://forum.xda-developers.com/showthread.php?p=3388491#post3388491
and here:
http://forum.xda-developers.com/showthread.php?p=3389170#post3389170
Harry
echoing others, is it necessary to uninstall tether1.6, and if so how? thx
rjlan82 said:
echoing others, is it necessary to uninstall tether1.6, and if so how? thx
Click to expand...
Click to collapse
You can just leave it, or manually delete each of the files...
From a terminal session (adb shell or terminal on the phone) type:
su
rm /data/local/dnsmasq.conf
rm /data/local/dnsmasq.conf-secure
rm /data/local/dnsmasq.leases
rm /data/local/tiwlan.ini
rm /data/local/bin/tether
rm /data/local/bin/iptables
rm /data/local/bin/dnsmasq
There ya go...
works great! thanks
parrothd said:
You can just leave it, or manually delete each of the files...
From a terminal session (adb shell or terminal on the phone) type:
su
rm /data/local/dnsmasq.conf
rm /data/local/dnsmasq.conf-secure
rm /data/local/dnsmasq.leases
rm /data/local/tiwlan.ini
rm /data/local/bin/tether
rm /data/local/bin/iptables
rm /data/local/bin/dnsmasq
There ya go...
Click to expand...
Click to collapse
I still see dnsmasq.pid in that folder. Should I delete? (I also see bin and tmp, don't think those should be deleted correct?)
-----
Nevermind, bin is a folder. Which is now empty. tmp is also an empty folder. The question remains, what to do w/ dnsmasq.pid? It's not hurting anything so far, so I'm not touching.
I just rooted the phone (I know this because I installed a screen shot app and it works) and I'm trying to copy a private app that is free off of my phone onto my computer. But, I cannot figure it out. Could someone please give me step-by-step instructions. I would really appreciate this.
It sounds like you have completed this process:
http://forum.xda-developers.com/showthread.php?t=581577
But read it and make sure you complete the last step to flash the recovery rom.
www.androidspin.com/downloads...roc-v1.2.3.img
He kind of botched the last command instead of:
adb shell flash_image recovery recovery-RA-heroc-v1.2.3.img
it should be:
adb shell
cd /sdcard/
su
flash_image recovery recovery-RA-heroc-v1.2.3.img
Once you make sure this is done, turn of your phone and then hold Home button and press end button. This should load the recovery, choose Nandroid Backup once you are done backing up you will want to flash Modaco's 1.1 rom. More information can be found here:
http://forum.xda-developers.com/showthread.php?t=581846
Once this is done connect your phone to your pc, and open command prompt.
type in:
cd "the directory where the sdk is" \tools
then type:
If you are using appstosd with ext2 and fat32 partitioned sdcard:
adb pull /system/sd/app app
If you are using just fat32, no appstosd:
adb pull /data/app app
this will put all your apps into a directory named app in your \tools folder on your pc.
for private apps just replace app with app-private
alternatively, you can move apps one at a time with the command:
leave out " ".
adb pull /system/sd/app/"appname" "appname"
This will place the file directly into your tools directory. Hope this helps.
Yep, thats what I did. But I didn't flash the recovery rom. If I do that will it erase all my applicastion that I have installed? I didn't want to do that because the app I want to backup was free when I downloaded it but now it's not.
Ok, so I followed all the instructions above and go the in MoDaCo rom flashed. Then, when I tried to pull the apps off the sdcard I get a permissions denied error.
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
Thanks.
Now I have a new problem. It says "adb: not found". Now what?
Thanks for being so helpful everyone.
adb is a command that is run outside of the shell
for example your prompt would still be at
c:\android-sdk-windows\tools>adb pull /data/app-private (location)
you can't use adb inside of adb shell
Ah, I didn't know adb had to be run outside of the shell.
Now it says there aren't any files in app-private but I know there are two in there.
Not sure if anyone has gotten one of these yet but I have been given one for some work so thought I would share my progress with it.
About
http://www.ippea.com/
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
Table of Contents
How to Root
How to Root
The iPPea comes with busybox built-in into the image. So unlike other devices we don’t have to compile/download busybox and deploy it - full access to all the busybox tools is available by default.
But what makes rooting really easy the iPPea has ro.secure off. This means that a simple adb connection is enough to grant root access - all that we have to do is install a su binary.
Unfortunately, the busybox su requires too much baggage of the traditional Linux system - notably /etc/passwd, /etc/groups and friends to work. Since this is a MIPS system and Superuser.apk is contains an ARM binary, that approach cannot work either. In addition, compiling su-binary from Superuser.apk requires the entire AOSP tree, which is too much work and network bandwidth for us. So, we will use a portable C implementation of su instead.
This step does require you to plug in the iPPea into a computer with ADB, so be prepared to do so. You will also need this prebuilt portable MIPS Android su binary.
Now that you have the ‘su’ binary handy as well as your iPPea detected in adb (adb devices, you may need to chown it to make it visible), here we go:
Code:
adb push su /dev/
adb shell
# now we are on the iPPea
busybox mount -o remount,rw /system
busybox mv /dev/su /system/bin/su
busybox chmod 4755 /system/bin/su
busybox mount -o remount,ro /system
exit
# now we are back to our computer
adb reboot # to reboot
Credits to: Compdigitec
Useful Links + more Info
Here you will find useful links for the ippea and places to find more information
Change log
09/02/2012
Started thread
Added how to root
For Non-Rooted Devices and Rooted Devices
Here is a summary on how to get mounting points without rooting or extracting recovery.img.
The different procedures only needs to have adb shell or terminal emulator.. I will explain using adb shell through pc.
After establishing adb connection to your device, you can choose any of the following procedures to get your mounting points:
#1
Code:
adb shell
cat /proc/mounts
This will give you info about device, the mount point, the file system type, and how it is mounted.
Limitation: This method, however, will not give you all mounting points.!!!
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
#2
Code:
adb shell
cat /proc/partitions
This is more neat, it will give you info about ALL dev blocks and their names (not the familiar name!), and block size
Limitation: Needs from you to figure out which block belong to which partition name.!!
#3
Code:
adb shell
ls -al /dev/block/platform/[B][COLOR="Blue"]dw_mmc[/COLOR][/B]/by-name
This one is the command that I like on non-rooted device..! It will give you info about the dev block names WITH their familiar names (i.e, boot, recovery, system... etc) :laugh:
This command is not universal between devices, and you will need to gather its pieces (/dev/block/platform/dw_mmc/by-name).
How?
- In your device, use any explorer that can get you to the device root (personally I use ES Explorer, by pressing on "/" on navigation bar).
- Go to "/dev/block/platform/" folder
- Here you will see some files and folders, we need to open folders and search for the folder called "by-name" inside one of them; in my situation it was "dw_mmc" folder which has the folder "by-name" inside it.
- At the end, my targeted piece info will be (/dev/block/platform/dw_mmc/by-name)
- Now open adb shell and put the command..
***
For Rooted Devices Only
There are different ways to get mounting points in rooted device (including the non-rooted devices way), but the easiest way to get all device mounting points is to push parted binary to /system/bin folder and run it.
Code:
adb remount
adb shell "su" "" "mount -o remount,rw /system"
adb push parted /system/bin/parted
adb shell
chmod 755 /system/bin/parted
parted /dev/block/[B][COLOR="Blue"]mmcblk0[/COLOR][/B]
print
Here, your mounting points will start with /dev/block/mmcblk0p* where (*) is the number shown in the table above for each partition.
example:
The preload partition mounting point will be mmcblk0p12
The modem partition mounting point will be mmcblk0p8
The system partition mounting point will be mmcblk0p9
The Kernel partition mounting point will be mmcblk0p5
and so on
Don't forget to "quit" the parted action after grasping your device mounting points.
N.B:
- You may need to run first:
Code:
adb shell
cat /proc/partitions
to know what is the initial name for your device partition.. In the example above, it was mmcblk0.
- Also to be able to do adb push to /system partition, you will need adbd insecure installed in your device (Check this thread for that app), or to push it manually by any root explorer and then fix permissions to 755.
***
Pre-made ScriptsWindows users
Here is a script I wrote for both non-rooted (way #3) and rooted devices for windows users.
Just extract the content in any folder and run the script that you want ("Non-Rooted and Rooted.cmd" or "Rooted Only.cmd")
Don't forget to install adbd insecure in rooted device in order to use Rooted Only.cmd script.
Linux users
As same, here is a script I wrote for both non-rooted (way #3) and rooted devices for linux users.
Just extract the content in any folder and run the script that you want ("non-rooted" or "rooted")
Don't forget to install adbd insecure in rooted device in order to use rooted script.
N.B: The linux scripts are tested with cygwin emulator on windows machine.. So needs feedback on actual machine.!!
Cheers
reserved
Thank you, I go to try.
Linux script added to OP
Thanks
Thank you You are the best one
Hi I have some problem with flash two lenovos type A390t. System has crashed and says after boot failure decryption and recovery not working. Only what i can do is that I get with volume down+power button to safemode and then throw adb reboot into bootloader (after reboot shows fastboodmode) and here with command "fastboot flash" is say send okay and on writing is doing someting but hours is a long time it seems that he cand find a way where to flash. A attached picture
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
With Spflash tools is notworking because when I connect it to the phone in hardware shows just unknown device( I have all mtk driver, and try everything), it seems that here is bad preloader in mobile or missing here. I spend a lot of hour and nothing. Thank you, have a good day
Did somebody know how to manually flash recovery in adb not in fastboot? I found some codes like this:
adb remount
adb shell
adb push c:\flash_image /system/bin/flash_image
adb shell chmod 0755 /system/bin/flash_image
adb push c:\recovery.img /system/bin/
adb shell
flash_image recovery /system/bin/Recovery.img
rm /system/bin/recovery.img
reboot recovery
But it always said failed to copypermission denied(yes I try first "su" in shell then "mount -o rw,remount /system") and still get the same error permission denied
I try also MTK Droid tools and you see there is no participations blocks
NicromCz said:
Hi I have some problem with flash two lenovos type A390t. System has crashed and says after boot failure decryption and recovery not working. Only what i can do is that I get with volume down+power button to safemode and then throw adb reboot into bootloader (after reboot shows fastboodmode) and here with command "fastboot flash" is say send okay and on writing is doing someting but hours is a long time it seems that he cand find a way where to flash. A attached picture
With Spflash tools is notworking because when I connect it to the phone in hardware shows just unknown device( I have all mtk driver, and try everything), it seems that here is bad preloader in mobile or missing here. I spend a lot of hour and nothing. Thank you, have a good day
Click to expand...
Click to collapse
NicromCz said:
Did somebody know how to manually flash recovery in adb not in fastboot? I found some codes like this:
adb remount
adb shell
adb push c:\flash_image /system/bin/flash_image
adb shell chmod 0755 /system/bin/flash_image
adb push c:\recovery.img /system/bin/
adb shell
flash_image recovery /system/bin/Recovery.img
rm /system/bin/recovery.img
reboot recovery
But it always said failed to copypermission denied(yes I try first "su" in shell then "mount -o rw,remount /system") and still get the same error permission denied
I try also MTK Droid tools and you see there is no participations blocks
Click to expand...
Click to collapse
Greetings,
Thank you for using XDA Assist.
There are no spcific forums for your device model so please ask your questions here:
[Ask Any Question][Newbie Friendly]
You'll receive expert advice there.
Good luck!