Currently no one has really figured out what KNOX is. Some say it is a eFuse but there isn't any solid evidence. Even if it is a eFuse there must be some way to bypass it? We just need to knox for what it checks specifically.
Here are some facts:
Some people claim that they got their phone repaired by guarantee and it reset their KNOX counter from 1 to 0 without changing the motherboard.
SamFAIL can currently root your phone without tripping KNOX. The question is how?
KunkerLV said:
Currently no one has really figured out what KNOX is. Some say it is a eFuse but there isn't any solid evidence. Even if it is a eFuse there must be some way to bypass it? We just need to knox for what it checks specifically.
Here are some facts:
Some people claim that they got their phone repaired by guarantee and it reset their KNOX counter from 1 to 0 without changing the motherboard.
SamFAIL can currently root your phone without tripping KNOX. The question is how?
Click to expand...
Click to collapse
We actually know a lot of those answers already...Samsung doesn't exactly keep it all a secret . As per Google:
https://support.samsungknox.com/hc/...-a-Knox-Warranty-Bit-and-how-is-it-triggered-
sefrcoko said:
We actually know a lot of those answers already...Samsung doesn't exactly keep it all a secret . As per Google:
https://support.samsungknox.com/hc/...-a-Knox-Warranty-Bit-and-how-is-it-triggered-
Click to expand...
Click to collapse
Thanks didn't know such an article existed. So perhaps finding out how it detects if a non-knox kernel has been loaded and then bypass it that way.
Also do you have any idea how SamFAIL manages to keep knox 0x0?
KunkerLV said:
Thanks didn't know such an article existed. So perhaps finding out how it detects if a non-knox kernel has been loaded and then bypass it that way.
Also do you have any idea how SamFAIL manages to keep knox 0x0?
Click to expand...
Click to collapse
Hmm not sure... I suspect it has something to do with having a locked bootloader on those Snapdragon models, meaning root must be achieved differently (in a way that doesn't trip knox), but I really am just speculating here. There may be more detail in the SamFail thread, or someone else might be able to better explain. I have an Exynos model.
I think that the very reason for implementing something like knox is, SAFETY for the user/owner, many see knox as a restraint, something that does not allow them to fully tinker with their devices, at the end, anybody can root the device, knox indeed has nothing to do with it, just flags the fact that the device has been tampered, and no longer as secure as it was before, so, I think knox is a GOOD thing, and that anybody has achieved to return it to 0x0 once tripped, is excellent news, but that is my opinion
Sorry to say but it's unlikely you'll find a way to bypass Knox without tripping it. People much smarter than us have been trying ever since it came out.
In roms you can disable Knox & it will show 0x0 but it will still show tripped in download mode. SamFail doesn't trip Knox cause it's using an engineering bootloader that was leaked from Samsung. Since that engineering bootloader is not custom binary, it won't trip Knox. So until something similar is leaked for Exynos, root without trippin Knox is not possible. Well it's not root exactly, it's flashing custom recovery (like TWRP) is what trips Knox since it's custom binaries & you need TWRP to root.
Related
Will this ever happen?
I just got my new...used note 4. I have sim unlocked it. I'd like to wait a little while before rooting it to see if anyone creates a new root method which doesn't trip knox. I hate that I cant use titanim, or LMT, or even root explorer.
Any opinions... Should I just go and trip the Knox.. I do not need KNOX, but I read something in another post which said if knox is tripped then we might not be able to flash updated ROMS???
THe other reason for not tripping knox would be for resale value.
ilmar72 said:
Will this ever happen?
I just got my new...used note 4. I have sim unlocked it. I'd like to wait a little while before rooting it to see if anyone creates a new root method which doesn't trip knox. I hate that I cant use titanim, or LMT, or even root explorer.
Any opinions... Should I just go and trip the Knox.. I do not need KNOX, but I read something in another post which said if knox is tripped then we might not be able to flash updated ROMS???
THe other reason for not tripping knox would be for resale value.
Click to expand...
Click to collapse
If you're questioning whether you should root or not, then you shouldn't root. I don't regret tripping knox, I'm enjoying the phone much more now.
The question you should be asking yourself is. Is there anything I want that I can't do without a root?
By the time a method without tripping knox comes out (if ever), that resell value would have dropped substantially.
Hey where can I download your rom
Wrong section buddy
Well I just figured out tonight that LMT does work in this phone without root. At least the pie wheel does. I haven't tried any gestures yet.
So this makes me happy
Edit: I see this is nothing new. Lmt says root is needed for gestures and isas
theeze said:
If you're questioning whether you should root or not, then you shouldn't root. I don't regret tripping knox, I'm enjoying the phone much more now.
The question you should be asking yourself is. Is there anything I want that I can't do without a root?
By the time a method without tripping knox comes out (if ever), that resell value would have dropped substantially.
Click to expand...
Click to collapse
Good point. But is it true that we won't be able to flash new radios?
Hi everybody I just got an ATT S6 G920A with android 6.0.1. After checking i see there is no way to root the phone. And i think the only way is to go ahead and push the TWRP. This will trip knox and the eFUSE will be blown
The question is: what are the consequences besides losing the warranty?
I need to use my company exchange server on that phone. Will tripped Knox prevent me to access the emails?
Thanks!
ronniler said:
Hi everybody I just got an ATT S6 G920A with android 6.0.1. After checking i see there is no way to root the phone. And i think the only way is to go ahead and push the TWRP. This will trip knox and the eFUSE will be blown
The question is: what are the consequences besides losing the warranty?
I need to use my company exchange server on that phone. Will tripped Knox prevent me to access the emails?
Thanks!
Click to expand...
Click to collapse
You'll lose Samsung pay.
Not sure about exchange server, but my guess is that depends on security setting on the server.
Good luck.
Sent from my SAMSUNG-SM-G920A using Tapatalk
thanks dandrumheller
I did more investigation on how some companies (including mine) does this and after some documents from my own IT deparment i saw they were mentioning KNOX. So if KNOX is tripped, many of those in house apps to check email, store files, and conferencing probably will not work. So.... i can't trip the knox.....
I will have to wait for more developement to be done on ATT S6 6.0.1 in order to root it without tripping knox.... Probably it will NEVER happen since it has been more than a year since android 6 was released and there is no much out there :'(
I will keep my s4 that works like a charm!
dandrumheller said:
You'll lose Samsung pay.
Not sure about exchange server, but my guess is that depends on security setting on the server.
Good luck.
Sent from my SAMSUNG-SM-G920A using Tapatalk
Click to expand...
Click to collapse
It's possible to flash TWRP?
ronniler said:
Hi everybody I just got an ATT S6 G920A with android 6.0.1. After checking i see there is no way to root the phone. And i think the only way is to go ahead and push the TWRP. This will trip knox and the eFUSE will be blown
The question is: what are the consequences besides losing the warranty?
I need to use my company exchange server on that phone. Will tripped Knox prevent me to access the emails?
Thanks!
Click to expand...
Click to collapse
Yeah. You could very well brick your phone. The bootloader checks each partition.
And if it doesn't, I'm sure your company's MDM software will detect either an attempted root or the tripped Knox and remotely wipe your phone for violating policy.
LordNature said:
It's possible to flash TWRP?
Click to expand...
Click to collapse
Not that I know of, but it seemed like the poster I responded to thought he could do it. I was just commenting on the consequences of tripped Knox.
Is it possible to downgrade from 6.0.1 (PJ1) to 5.1.1(Oj7 I think)? In my case I would like to go back to 5.1 to get access to the tethered root and I don't care if Knox trips on my device.
dandrumheller said:
Not that I know of, but it seemed like the poster I responded to thought he could do it. I was just commenting on the consequences of tripped Knox.
Click to expand...
Click to collapse
That's what I thought. I'm currently still stuck on 5.0.1 with a locked boot loader and no custom ROM/kernel.
I'll just rely on my trusty KLWP to 'rice' my phone.
Hey im new to Samsung phones and got an S10+ preordered. Will I be able to flash TWRP and Magisk the day I get it or will it take some time? Also is there anything special about rooting Samsung phones?
Thank you for your answers!
I would not expect for immediately. Devs need to reverse engineer/hack their way around the firmware locks to attain root and keep the device bootable. Once they do that, the devices are ours. though I cannot imagine it would be too different from the 9 series with flash counters and such not.
Edit: Typos.
F0rbidN said:
Hey im new to Samsung phones and got an S10+ preordered. Will I be able to flash TWRP and Magisk the day I get it or will it take some time? Also is there anything special about rooting Samsung phones?
Thank you for your answers!
Click to expand...
Click to collapse
If it's the US snapdragon I highly doubt it but with exynos most likely and it will trip knox just like the Note 9.
Misterxtc said:
If it's the US snapdragon I highly doubt it but with exynos most likely and it will trip knox just like the Note 9.
Click to expand...
Click to collapse
I will get the exynos version. What are the disadvantages of triggering knox? Thank you for letting me know.
zerolock said:
I would not expect for immediately. Devs need to reverse engineer/hack their way around the firmware locks to attain root and keep the device bootable. Once they do that, the devices are ours. though I cannot imagine it would be too different from the 9 series with flash counters and such not.
Edit: Typos.
Click to expand...
Click to collapse
Will I have to do a factory reset in order to root my device?
F0rbidN said:
I will get the exynos version. What are the disadvantages of triggering knox? Thank you for letting me know.
Click to expand...
Click to collapse
You will loose Samsung Pay, secure folders and banking apps probably won't work. There is more but that's all that comes to mind right now. Uninstalling root and flashing everything to stock won't fix the lost apps either, it's permanent. I think it will reset your phone too.
Root
Banking apps will work once able to flash Magisk, simply using a system-less root method will allow for work arounds such as Magisk hide etc. which will definitely allow for such apps to work. Exactly as has been seen for the past few generations of devices using Magisk! Anyway... on another note, yes bootloader will very likely be unlockable on Exynos variants allowing for TWRP and custom rom installation but highly unlikely on Snapdragon variants.
Misterxtc said:
You will loose Samsung Pay, secure folders and banking apps probably won't work. There is more but that's all that comes to mind right now. Uninstalling root and flashing everything to stock won't fix the lost apps either, it's permanent. I think it will reset your phone too.
Click to expand...
Click to collapse
Are you sure about permanent block ?!
A0_o said:
Are you sure about permanent block ?!
Click to expand...
Click to collapse
Yes because the past root methods trip knox and blow a efuse witch is not reversible. Unless a different root method is discovered this phone will be no different. As the post says above there are some workarounds but that is not a guarantee. Some apps can not be fooled.
Misterxtc said:
Yes because the past root methods trip knox and blow a efuse witch is not reversible. Unless a different root method is discovered this phone will be no different. As the post says above there are some workarounds but that is not a guarantee. Some apps can not be fooled.
Click to expand...
Click to collapse
i have read about some way to root without trip kNox but you have to dont use magisk or xposed just you got an access to system files.
Wish SuperUser root XDA god 'Chainfire' hadn't retired!
A0_o said:
i have read about some way to root without trip kNox but you have to dont use magisk or xposed just you got an access to system files.
Click to expand...
Click to collapse
Are you talking about sig. spoofing like Firegapps and stuff?
I'm waiting for anyone who has enough guts to try, all I really want is v4a.
This is the last galaxy I buy I think, prolly go one plus next time. But yea this is a waiting game. I'm waiting for someone to bribe the dev's to prenstall v4a for us in an ota update. Hey be a great April fools joke ....heh
G'day XDA Developers.
I would love to root my Samsung Galaxy S10 then install a custom recovery (TWRP) then flash a custom rom (LinageOS) how ever I trip Knox when ever I attempt to do these things. So I was wondering how do you go about disabling Knox?
After some Googeling I found this site https://www.progeeksblog.com/how-to-disable-samsung-knox/ How ever these methods require you to first root your phone but rooting triggers Knox.
So I am at a loss here I am running stock android rom until I figure out how to bypass Knox.
OzGreatAndTerrible said:
G'day XDA Developers.
I would love to root my Samsung Galaxy S10 then install a custom recovery (TWRP) then flash a custom rom (LinageOS) how ever I trip Knox when ever I attempt to do these things. So I was wondering how do you go about disabling Knox?
After some Googeling I found this site https://www.progeeksblog.com/how-to-disable-samsung-knox/ How ever these methods require you to first root your phone but rooting triggers Knox.
So I am at a loss here I am running stock android rom until I figure out how to bypass Knox.
Click to expand...
Click to collapse
you cant completely block knox...
unlocking bl and flashing modified firmeare wil trip knox.. u cant reset knox flag either
Update: You can disable Knox by using Multidisabler: https://forum.xda-developers.com/ga...ynos/g97xf-multi-disabler-encryption-t3919714
OzGreatAndTerrible said:
Update: You can disable Knox by using Multidisabler: https://forum.xda-developers.com/ga...ynos/g97xf-multi-disabler-encryption-t3919714
Click to expand...
Click to collapse
thats always been around lolol.. but regardless ur post was more about not tripping knox which ur knox is in fact tripped so "disabling" knox doesnt change anything really.. also, that zip doesnt really disable knox.. it disables verification, defex, force encryption etc.
Actually it says that it disables vault keeper which is supposed to replace Knox but any way yea your right my post was more about flashing anything trips knox so how are you supposed to get around that.
OzGreatAndTerrible said:
Actually it says that it disables vault keeper which is supposed to replace Knox but any way yea your right my post was more about flashing anything trips knox so how are you supposed to get around that.
Click to expand...
Click to collapse
vaultkeeper is not to replace knox.. samsung bases all their security on knox.. vaultkeeper is in addition to knox..
there is no way around tripping knox.. the knox warranty bit is a physical fuse that gets blown when bl is unlocked and u flash a custom firmware and there is no way to reset it..
magiskhide can sometimes "fake" it but with safetynet improving if ur device is set to use hardware then there wont be any way around that either in the long run
elliwigy said:
vaultkeeper is not to replace knox.. samsung bases all their security on knox.. vaultkeeper is in addition to knox..
there is no way around tripping knox.. the knox warranty bit is a physical fuse that gets blown when bl is unlocked and u flash a custom firmware and there is no way to reset it..
magiskhide can sometimes "fake" it but with safetynet improving if ur device is set to use hardware then there wont be any way around that either in the long run
Click to expand...
Click to collapse
If your not worried about warranties or anything then tripping Knox doesn't matter?
ryanallaire said:
If your not worried about warranties or anything then tripping Knox doesn't matter?
Click to expand...
Click to collapse
it will likely cause most samsung apps not to work unless theres any tricks that still work also
ryanallaire said:
If your not worried about warranties or anything then tripping Knox doesn't matter?
Click to expand...
Click to collapse
I don't care about voiding warranty. What happens when I try and flash anything custom on the device Knox gets tripped and the phone refuses to boot. Thats what I am talking about trying to bypass.
I have Galaxy Tab Active3, which is locked to organization and it seems to have Knox enabled.
I want to Factory reset it so I can use it for private use.
I cannot get it into download mode, but I can get it in recovery mode. However, the Wipe data/factory reset option seems to be disabled.
Dialing *#0*# and *#*#88#*# from emergency dialer do not work either.
Any advice how to remove the Knox protection and factory reset the device, so I can set it up from scratch and remove the organization lock?
checho_85 said:
I have Galaxy Tab Active3, which is locked to organization and it seems to have Knox enabled.
I want to Factory reset it so I can use it for private use.
I cannot get it into download mode, but I can get it in recovery mode. However, the Wipe data/factory reset option seems to be disabled.
Dialing *#0*# and *#*#88#*# from emergency dialer do not work either.
Any advice how to remove the Knox protection and factory reset the device, so I can set it up from scratch and remove the organization lock?
Click to expand...
Click to collapse
I would be interested in, too.
What is the best way to reset Knox to 0x0? If possible without root...
mjoude said:
What is the best way to reset Knox to 0x0? If possible without root...
Click to expand...
Click to collapse
short answer: no, you cant reset knox back to 0x0.
The reason i didn't root was that i lose more functionality than i gain and there's no going back to knox 0x0 after that. I couldn't imagine my S3 Mini or S5 without root but my Note9 is perfect without root as many things that were available only with root in the past are included in the stock firmware or in Good Lock modules.
yaibakt said:
short answer: no, you cant reset knox back to 0x0.
Click to expand...
Click to collapse
https://www.knoxreset.com
What about..?
mjoude said:
https://www.knoxreset.com
What about..?
Click to expand...
Click to collapse
It's a scam. The Knox flag is indicating the state of an eFuse, which can't be changed nor reverted.
Shadowprince94 said:
It's a scam. The Knox flag is indicating the state of an eFuse, which can't be changed nor reverted.
Click to expand...
Click to collapse
The ONLY way to get KNOX back to 0X0 is to replace the mainboard...
You can get a rooted phone to display KNOX as 0X0 but it is cosmetic only and won't fool any apps that don't work on a rooted phone.
If you haven't replaced the boot file, rooted or replaced the recovery then an app you have installed likely is malware that has tried or successfully gained root privileges...
mjoude said:
What is the best way to reset Knox to 0x0? If possible without root...
Click to expand...
Click to collapse
Simple answer NO i made a mistake rooting my Tab S4 i'm never ever rooting unless i get a SnapDragon as they i heard you can root without trpping Knox! Also root is not needed as we have Youtube Vanced, Disconnect Pro! Package Disabler Pro, and #Mono oh forgot about Goodlock! Unless your planning on running Custom Roms it's simply not worth Rooting! As it's to much headache to root update reroot etc!
N1NJATH3ORY said:
Simple answer NO i made a mistake rooting my Tab S4 i'm never ever rooting unless i get a SnapDragon as they i heard you can root without trpping Knox! Also root is not needed as we have Youtube Vanced, Disconnect Pro! Package Disabler Pro, and #Mono oh forgot about Goodlock! Unless your planning on running Custom Roms it's simply not worth Rooting! As it's to much headache to root update reroot etc!
Click to expand...
Click to collapse
This^ I also removed a few preinstalled apps via ADB and granted one permission for Tasker via ADB as well. Root was mandatory in the past but not any more at all.