Related
What is SafetyNet?
"SafetyNet provides a set of services and APIs that help protect your app against security threats, including device tampering, bad URLs, potentially harmful apps, and fake users." -Android Developers
Like stated above, SafetyNet is a set of APIs embedded in Google Play Services to see whether a device has been tampered with from its factory state (e.g. a custom ROM is installed). Developers can use this API to block smartphones in which SafetyNet fails to pass.
How will this affect me and my usage of the device?
Several apps use this API to block users with custom ROMs, such as Google Pay, Netflix, and others, especially banking apps. If you don't use any of these, then failing SafetyNet probably won't matter to you. But if you do use some of these apps, you'll find that they often refuse to run.
How to pass SafetyNet:
You will need Magisk and Magisk Manager: https://forum.xda-developers.com/apps/magisk/official-magisk-v7-universal-systemless-t3473445
You will need this ZIP:
https://forum.xda-developers.com/apps/magisk/universal-safetynet-fix-magisk-17-t3840680
After you have downloaded both of these, go ahead and flash Magisk through TWRP. After installation is complete, Go to the Modules section in Magisk Manager and press the + button and select the SafetyNet spoofer ZIP. After it's done, reboot your phone. Then go to Settings in Magisk Manager and turn Magisk Hide off and then on again. Go to the Magisk Hide section and select the following apps to hide Magisk from:
Google
Google Services Framework
Google Play Store
(and other apps requiring SafetyNet to pass)
Then go to Play Store>Settings and see if it says your Device is certified. If not, clear Play Store data and try again.
Done! Now you will have passed SafetyNet!
JarlPenguin said:
What is SafetyNet?
"SafetyNet provides a set of services and APIs that help protect your app against security threats, including device tampering, bad URLs, potentially harmful apps, and fake users." -Android Developers
Like stated above, SafetyNet is a set of APIs embedded in Google Play Services to see whether a device has been tampered with from its factory state (e.g. a custom ROM is installed). Developers can use this API to block smartphones in which SafetyNet fails to pass.
How will this affect me and my usage of the device?
Several apps use this API to block users with custom ROMs, such as Google Pay, Netflix, and others, especially banking apps. If you don't use any of these, then failing SafetyNet probably won't matter to you. But if you do use some of these apps, you'll find that they often refuse to run.
How to pass SafetyNet:
You will need Magisk and Magisk Manager: https://forum.xda-developers.com/apps/magisk/official-magisk-v7-universal-systemless-t3473445
You will need this ZIP:
https://forum.xda-developers.com/apps/magisk/universal-safetynet-fix-magisk-17-t3840680
After you have downloaded both of these, go ahead and flash Magisk through TWRP. After installation is complete, Go to the Modules section in Magisk Manager and press the + button and select the SafetyNet spoofer ZIP. After it's done, reboot your phone. Then go to Settings in Magisk Manager and turn Magisk Hide off and then on again. Go to the Magisk Hide section and select the following apps to hide Magisk from:
Google
Google Services Framework
Google Play Store
(and other apps requiring SafetyNet to pass)
Then go to Play Store>Settings and see if it says your Device is certified. If not, clear Play Store data and try again.
Done! Now you will have passed SafetyNet!
Click to expand...
Click to collapse
I am on Lineage 15.1 based on 8.1, I followed every step you have mentioned but it shows ctsProfile : False and basicintegrity : true
Well, a month ago I installed ArrowOS12 in my A30, but something I don't knew about custom roms is bank apps blocking cuz'... "SECURITY" (funny AF), At first it just was blocked cuz' i have magisk root, but i activated many things to hide magisk and I realize that was not my root, but the custom OS.
I can't use my UNIQUE bank account by a STUPID SECURITY POLICY, How i solve this? I tried magiskhide props config for change my fingerprint prop or whatever.
If i can emulate a fake device in my own device only for this i will, ciz that's anoying
Hi, try download this two magisk modules
Shmaiko - Direct Link | Link
Universal SafetyFix - Direct Link | Link
Hide you Magisk APP in Magisk Settings and Turn On ZYGISK install this two modules.
Open Magisk Settings and in Enforce Settings Apps, mark your Bank Apps.
It worked for me (Galaxy A40)
I already tried both, didn't worked
AysllanHiro said:
I already tried both, didn't worked
Click to expand...
Click to collapse
Pass safety before
SirKosichka said:
Pass safety before
Click to expand...
Click to collapse
i found a way to pass the app checker, but thx for your help, i already passed safetynet too
TELL US HOW!
AysllanHiro said:
i found a way to pass the app checker, but thx for your help, i already passed safetynet too
Click to expand...
Click to collapse
How?
acerfreak said:
TELL US HOW!
Click to expand...
Click to collapse
I think people are good asking questions but not sharing the solution when they get it.
for me it was:
downloading "Universal SafetyFix" (and reboot)
hidding Magisk with MagiskHide in Magisk settings
Enable Zygisk, enable"Enforce DenyList" (again in Magisk settings) and selecting banking app in it (don't forget to reboot).
Also check if you passed SafetyNet with app like YASNAC for example. And clear storage, cache of banking app.
This was working on my phone with original google services like gapps (custom ROM of course).
On my secondary phone with MicroG implementation it's not working (play store required and something more i guess).
darukutsu said:
On my secondary phone with MicroG implementation it's not working (play store required and something more i guess).
Click to expand...
Click to collapse
Were you passing safetynet on it?
ShaDisNX255 said:
Were you passing safetynet on it?
Click to expand...
Click to collapse
Of course there's the problem...I had microG installed with fakestore (passing safetynet) but I had to install playstore (to install bank app from it) and now i'm not passing safetynet even with magisk module installed.
Hi.
I have a problem to add a Card to Google Pay. There is info "couldn't finish setup to pay in shops"
Fix problems with tap to pay transactions - Google Wallet Help
If you can’t complete a contactless payment, use these steps to help you solve the problem. Step 1: Check that your app & Play Services are up to date Make sure that your Google Wallet app
support.google.com
Is there a chance to add a card?
Who had similar problem?
BTW:
I see now, that I have to app (GPAY (only for India, Indonesia and US) and Google Pay).
Google pay show me"The phone does not meet the security requirements"
BR
Krys
flashka78 said:
Hi.
I have a problem to add a Card to Google Pay. There is info "couldn't finish setup to pay in shops"
Fix problems with tap to pay transactions - Google Wallet Help
If you can’t complete a contactless payment, use these steps to help you solve the problem. Step 1: Check that your app & Play Services are up to date Make sure that your Google Wallet app
support.google.com
Is there a chance to add a card?
Who had similar problem?
BTW:
I see now, that I have to app (GPAY (only for India, Indonesia and US) and Google Pay).
Google pay show me"The phone does not meet the security requirements"
BR
Krys
Click to expand...
Click to collapse
You need to turn on zygisk in magisk.flash safety net fix then You need to add gpay and Google pay to the denylist then toggle the enforce denylist toggle off then flash the shamiko module and reboot
GitHub - kdrag0n/safetynet-fix: Google SafetyNet attestation workarounds for Magisk
Google SafetyNet attestation workarounds for Magisk - GitHub - kdrag0n/safetynet-fix: Google SafetyNet attestation workarounds for Magisk
github.com
GitHub - LSPosed/LSPosed.github.io
Contribute to LSPosed/LSPosed.github.io development by creating an account on GitHub.
github.com
toolhas4degrees said:
You need to turn on zygisk in magisk.flash safety net fix then You need to add gpay and Google pay to the denylist then toggle the enforce denylist toggle off then flash the shamiko module and reboot
GitHub - kdrag0n/safetynet-fix: Google SafetyNet attestation workarounds for Magisk
Google SafetyNet attestation workarounds for Magisk - GitHub - kdrag0n/safetynet-fix: Google SafetyNet attestation workarounds for Magisk
github.com
GitHub - LSPosed/LSPosed.github.io
Contribute to LSPosed/LSPosed.github.io development by creating an account on GitHub.
github.com
Click to expand...
Click to collapse
Is any tutorial for it? Can u help me for OnePlus10PRO?
Do I need any Recovery Project? Like Team Win Recovery Project?
Or can I just lock bootloader for NE2211? It will not help?
Screenshot
Captured with Lightshot
prnt.sc
Problem is with CTS profile match.
Thx in advance for help.
Flash safety net fix module.
There is no custom recovery for this device
toolhas4degrees said:
Flash safety net fix module.
There is no custom recovery for this device
Click to expand...
Click to collapse
How? (Flash safety net fix module). Can u drop me tutorial?
There is no TWRP for ONEPLUS?
Thx
I gave you the link to the magisk module. If you are not rooted via magisk nothing will work from what I told you. Google search it. I have to go to work. Later
flashka78 said:
How? (Flash safety net fix module). Can u drop me tutorial?
There is no TWRP for ONEPLUS?
Thx
Click to expand...
Click to collapse
There's no TWRP yet for the 10 Pro. Hopefully there will be something developed for us...
galaxys said:
There's no TWRP yet for the 10 Pro. Hopefully there will be something developed for us...
Click to expand...
Click to collapse
So how to install magisk?
flashka78 said:
So how to install magisk?
Click to expand...
Click to collapse
OnePlus 10 Pro NE2215 ***ROOTED*** (EX01 Update! READ BEFORE UPDATING)
This is for the NE2215 Rom. Step 1: Unlock your bootloader. Step 2: Download and install Magisk Stable or Canary. Your choice, but I used Canary. https://github.com/topjohnwu/Magisk Step 3: You can use either patch the stock boot or use my...
forum.xda-developers.com
Unlock bootloader, enable USB debugging, and then:
adb reboot bootloader
fastboot boot bootimagename.img
then you install Magisk, open Magisk and choose to install, do the direct install.
The image linked there should be fine for booting just to get root even though it's not for your specific device so just don't flash it.
Recovery flashing of Magisk is not supported anymore even on devices that have working TWRP. You either have to temporarily boot an already patched boot image like we are doing here or extract the payload.bin of the ROM you want to patch and copy the files to the phone, install Magisk, and have it patch the boot image and then manually flash with fastboot. Much easier to just get an image that someone already patched.
EtherealRemnant said:
OnePlus 10 Pro NE2215 ***ROOTED*** (EX01 Update! READ BEFORE UPDATING)
This is for the NE2215 Rom. Step 1: Unlock your bootloader. Step 2: Download and install Magisk Stable or Canary. Your choice, but I used Canary. https://github.com/topjohnwu/Magisk Step 3: You can use either patch the stock boot or use my...
forum.xda-developers.com
Unlock bootloader, enable USB debugging, and then:
adb reboot bootloader
fastboot boot bootimagename.img
then you install Magisk, open Magisk and choose to install, do the direct install.
The image linked there should be fine for booting just to get root even though it's not for your specific device so just don't flash it.
Recovery flashing of Magisk is not supported anymore even on devices that have working TWRP. You either have to temporarily boot an already patched boot image like we are doing here or extract the payload.bin of the ROM you want to patch and copy the files to the phone, install Magisk, and have it patch the boot image and then manually flash with fastboot. Much easier to just get an image that someone already patched.
Click to expand...
Click to collapse
Hi. Done.
Google pay and Revolut doesnt work .
Please check photos...
Any idea what next?
Thx in advance.
flashka78 said:
Hi. Done.
Google pay and Revolut doesnt work .
Please check photos...
Any idea what next?
Thx in advance.
Click to expand...
Click to collapse
I don't have this device but all you should need to do is install Universal SafetyNet Fix module and hide Google Play Store and Google Play Services in the DenyList.
Pass Safetynet with Magisk
Hi guys, did someone managed to pass Safetynet test with rooter oneplus 10 pro ? I tried to hide Magisk and use zygisk like I was doing with my op3t. But not passing safetynet here. I'm with last Magisk version (24.3) Managed to pass basic...
forum.xda-developers.com
EtherealRemnant said:
I don't have this device but all you should need to do is install Universal SafetyNet Fix module and hide Google Play Store and Google Play Services in the DenyList.
Pass Safetynet with Magisk
Hi guys, did someone managed to pass Safetynet test with rooter oneplus 10 pro ? I tried to hide Magisk and use zygisk like I was doing with my op3t. But not passing safetynet here. I'm with last Magisk version (24.3) Managed to pass basic...
forum.xda-developers.com
Click to expand...
Click to collapse
I have a magisk version 23.0 (23000) there is no Deny List at the setting.
Should I update to version 24.3 (24300) and hide at DenyList? (what application? Revolut, Google Play, Google Pay? ANy services?)
Should I also hide Magisk?
Thx for help.
Install magisk 24300
The zygisk and safety net fix.
If you've got Riru installed then it may cause issues.
flashka78 said:
I have a magisk version 23.0 (23000) there is no Deny List at the setting.
Should I update to version 24.3 (24300) and hide at DenyList? (what application? Revolut, Google Play, Google Pay? ANy services?)
Should I also hide Magisk?
Thx for help.
Click to expand...
Click to collapse
Yes. Enable zygisk on new one. Also add both Google pay apps to the dentlist
I use Magisk 25.2 as title said.
Passed safetynet check.
Install Shamiko, USFv2.3.1. Cleared google data.
Enable Zygisk, not enforce deny list, configure deny list choose pokemon go.
Hidde Magisk with name other than Magisk
Reboot.
Try to login in pokemon go with google account.
Not working.
(First I try only with SHAMIKO, AND USF. Then, I try add Magisk hide props config. Not working)
(Then I try use Zygisk-LSPosed, not working)
What else should I do?
Please help!!! Thanks!!!!!
What does "Not working" mean? Is there an error?
I can confirm that it works with very minimal setup with microg, I just installed and registered account for test.
Magisk 25.2 + USNF modded by Displax, PokemonGo in DenyList + Enforce denylist.
rocketda7331 said:
What does "Not working" mean? Is there an error?
I can confirm that it works with very minimal setup with microg, I just installed and registered account for test.
Magisk 25.2 + USF modded by Displax, PokemonGo in DenyList + Enforce denylist.
Click to expand...
Click to collapse
Not working means when I try to login in pokemon go with google account, it will not direct me to the game instead give me error.
Errors are (usually) information to help you fix your problems. What is the content of the error? Surely it says something, not just "Error"
Anyways, try the simple setup I gave you without all the shamiko and hideprops config stuff - works just fine here with this setup.
rocketda7331 said:
Errors are (usually) information to help you fix your problems. What is the content of the error? Surely it says something, not just "Error"
Anyways, try the simple setup I gave you without all the shamiko and hideprops config stuff - works just fine here with this setup.
Click to expand...
Click to collapse
No contents. After input the login information, it will direct me to the google page with my user login in. Not direct me to the pokemon go play page.
It's more like normal login in to a google website.
Did you log in and see what happens?
rocketda7331 said:
Did you log in and see what happens?
Click to expand...
Click to collapse
I did. I remove all the extra modules. And reboot the phone. But I still got same error, which just simply login to the google account.
The attachment is the image after I login in pokemon go with google account
It doesn't seem like it is magisk issue, perhaps pokemon go app is itself buggy if it can't log in you properly.
rocketda7331 said:
Did you log in and see what happens?
Click to expand...
Click to collapse
The following images are how it shows when I login to the pokemon go
rocketda7331 said:
It doesn't seem like it is magisk issue, perhaps pokemon go app is itself buggy if it can't log in you properly.
Click to expand...
Click to collapse
In that case, what should I do to fix such problem?
I don't have google acc cant really try myself, but I do not understand why it prompts you to open browser. If you have google services shouldn't it open the native app in your phone, at least this is the behaviour usually. Have you by any chance debloated some google components from your device?
nah, I did not do extra stuff. All I did is follow the guide from the web, either YouTube or XDA.
Hello,
I've rooted my p7, how am i supposed to pass safety net?
I've used pixelflasher to root, install magisk and update.
In magisk, I've tried many times to set the "Google Play service" in the exclusion list, it always get uncheck.
I've installed the safety net fix in magisk.
Be sure to check play service, wallet... And empty their cache, all that in airplane mode and reboot.
But still... Play service become uncheck on exclude list and Google Play direct certified my device... Bank apps didn't work ...
What is different with the p7 than the p5?
My p5 is easy to do all that, i can flash the modified boot from magisk easily, which can't be done in cmd with the p7, only pixelflasher have been able to
Hide Magisk, use Zygisk denylist and Displax's universal safetynet fix.
https://forum.xda-developers.com/t/...nlock-bootloader-pass-safetynet-more.4505353/
1. Install displax's safetynetfix
2. Hide Magisk
3. Enable Zygisk
4. Enforce DenyList
5. Configure DenyList and check all your required apps (clear storage for apps already installed)
6. Install AirFrozen
7. Freeze Magisk in AirFrozen and now your banking apps should work fine
dewri21 said:
1. Install displax's safetynetfix
2. Hide Magisk
3. Enable Zygisk
4. Enforce DenyList
5. Configure DenyList and check all your required apps (clear storage for apps already installed)
6. Install AirFrozen
7. Freeze Magisk in AirFrozen and now your banking apps should work fine
Click to expand...
Click to collapse
I did like this but didn't use AirFrozen. I hid Magisk from within Magisk and my banking apps work fine and I'm device certified. Also, when using DenyList I expanded all the Google Play apps and made sure all the subcomponents were selected rather than just the one's picked by default. Accepted my choices with the arrow at the top of the screen rather than the nav button which seemed sometimes to not save my choices. YMMV.
Releases · Displax/safetynet-fix
Google SafetyNet attestation workarounds for Magisk - Displax/safetynet-fix
github.com
v2.3.1-mod_2.0 is required. Older version won't pass device integrity.
Hid magisk, enabled zygisk and denylist, but didn't need to deny any google apps. No shamiko either.
Use https://play.google.com/store/apps/details?id=gr.nikolasspyr.integritycheck to confirm you pass both device and basic integrity.
Still have L1 too
ktdt00 said:
I did like this but didn't use AirFrozen. I hid Magisk from within Magisk and my banking apps work fine and I'm device certified. Also, when using DenyList I expanded all the Google Play apps and made sure all the subcomponents were selected rather than just the one's picked by default. Accepted my choices with the arrow at the top of the screen rather than the nav button which seemed sometimes to not save my choices. YMMV.
Click to expand...
Click to collapse
I had to use AirFrozen for two of my banking apps. Rest were fine. So in case any banking app doesn't work, you know what to do.