i have rooted my phone and installed magisk.
but the safetynet check of
Ctsprofile is false.
all the guides are saying to use the emulator and the promps order but the Mi9 global version 10 doesnt showed in there.
so im a bit lost of what to do.
Is that the right forum?
Do you enable magisk hide in magisk manager ?
Global EEA > magisk hide = false
Global > magisk hide = true
i tried to install the module MagiskHide props and it didn't do anything.
i tried to use the emulator with the props command and my phone wasnt in the list there . Xiaomi Mi 9 global ( there is only Europe 9 and it didn't work so i wiped it all from the beginning after i tried it)
i tired to download the edxposedmanager and both riru modules (sandhook and the other one +the core) and it just broke my integrity to false too so i had to wipe my phone and uninstall magisk and my rom and to start it all over again.
And some other guides I saw here and in other sites.
I got the latest magisk and my version is the latest miui global.
I pretty much gave up on this.
Install Magisk Hide Props Config and don't change Fingerprint - instead take option 4 Add/Edit custom props
Enter the prop name ro.product.model and change its value to something, e.g. to Unknown
Save and reboot.
If using Magisk Canary, you should see that CTS Profile will show Basic attest (no more Hardware), causing SafetyNet to pass
Note 1:
If Playstore continues to show Device is not certified:
- Airplane on
- Settings, Apps, Show system apos, search for Google and for Google Play app, Services, Framework delete Cache and Data
- reboot, Airplane off, give a time for Playstore to sync
Note 2:
Settings/About will show Model as Unknown - if it affects OTA you can simply disable MHPS or revert ro.product.model
This works for my Mi 9!! Thanks.
zgfg said:
Install Magisk Hide Props Config and don't change Fingerprint - instead take option 4 Add/Edit custom props
Enter the prop name ro.product.model and change its value to something, e.g. to Unknown
Save and reboot.
If using Magisk Canary, you should see that CTS Profile will show Basic attest (no more Hardware), causing SafetyNet to pass
Note 1:
If Playstore continues to show Device is not certified:
- Airplane on
- Settings, Apps, Show system apos, search for Google and for Google Play app, Services, Framework delete Cache and Data
- reboot, Airplane off, give a time for Playstore to sync
Note 2:
Settings/About will show Model as Unknown - if it affects OTA you can simply disable MHPS or revert ro.product.model
Click to expand...
Click to collapse
Mi 10 lite works!!!! :good::good::good:
thanks.
zgfg said:
Install Magisk Hide Props Config and don't change Fingerprint - instead take option 4 Add/Edit custom props
Enter the prop name ro.product.model and change its value to something, e.g. to Unknown
Save and reboot.
If using Magisk Canary, you should see that CTS Profile will show Basic attest (no more Hardware), causing SafetyNet to pass
Note 1:
If Playstore continues to show Device is not certified:
- Airplane on
- Settings, Apps, Show system apos, search for Google and for Google Play app, Services, Framework delete Cache and Data
- reboot, Airplane off, give a time for Playstore to sync
Note 2:
Settings/About will show Model as Unknown - if it affects OTA you can simply disable MHPS or revert ro.product.model
Click to expand...
Click to collapse
seemebreakthis said:
This works for my Mi 9!! Thanks.
Click to expand...
Click to collapse
Not work on mi9 android 10...
Wysłane z mojego MI 9 przy użyciu Tapatalka
Hi, works on Xiaomi 9 pro.
I still have a problem with fingerprint only with bank app... Do you have any suggestions?
zgfg said:
Install Magisk Hide Props Config and don't change Fingerprint - instead take option 4 Add/Edit custom props
Enter the prop name ro.product.model and change its value to something, e.g. to Unknown
Save and reboot.
If using Magisk Canary, you should see that CTS Profile will show Basic attest (no more Hardware), causing SafetyNet to pass
Note 1:
If Playstore continues to show Device is not certified:
- Airplane on
- Settings, Apps, Show system apos, search for Google and for Google Play app, Services, Framework delete Cache and Data
- reboot, Airplane off, give a time for Playstore to sync
Note 2:
Settings/About will show Model as Unknown - if it affects OTA you can simply disable MHPS or revert ro.product.model
Click to expand...
Click to collapse
Works for me but a couple days stoped again
grilomatheus said:
Works for me but a couple days stoped again
Click to expand...
Click to collapse
You're citing my post from Jul - prehistoric era in nowadays cloud times
Things have changed, no more use of faking ro.product model - fast forward and check the recent communication here about USNF=Universal SafetyNet Fix, find the link to its thread, you will need to use instead
zgfg said:
You're citing my post from Jul - prehistoric era in nowadays cloud times
Things have changed, no more use of faking ro.product model - fast forward and check the recent communication here about USNF=Universal SafetyNet Fix, find the link to its thread, you will need to use instead
Click to expand...
Click to collapse
Oops, sorry. Google for XDA Universal SafetyNet Fix thread to, there you can download the new module to fix CTS Profile failure
I'm using xioami mi 9. I tried every method I found on the internet, but I could not do it at all. It's always false. I don't know how I can solve this. I am trying to install univerisal fix from magisk modules. but it always writes magisk is not activated.
Related
This worked for me on latest build of havoc os, might work for other Roms too.
Step 1 :
Open Magisk manager, download and install both
MagiskHide Props Config (link) and Busybox for android NDK modules from downloads, after installing reboot your phone.
Step 2:
Install terminal emulator from playstore(link)
Step 3:
open terminal emulator
enter command :
Code:
su
Grant superuser access when prompted
Step 4:
type in command:
Code:
props
Step 6 :
and follow the on screen options
select option 1 - edit device fingerprint
by typing : 1
then type in f to Pick a certified fingerprint
from the list pick your mobile manufacturer
select your mobile model
select the latest available android version
finally reboot your phone by typing in
Code:
reboot
this should fix the ctsProfile issue,
to use banking or wallet apps, hide magisk by using magisk hide option and select the app you want to hide root access from
thanks to this awesome dev Didgeridoohan for making this possible
https://forum.xda-developers.com/member.php?u=4667597
for people who want a video to look at the process here is the video
credits :
Thread link for magisk hide props config module: https://forum.xda-developers.com/apps/magisk/module-magiskhide-props-config-t3789228
DEV for magisk hide props config module : Didgeridoohan
you can donate him at : https://www.paypal.me/didgeridoohan
does it affect the fingerprint?
is it safe?
this process works to solve cts Profile check, but banking apps still doesn't work
Doesn't work for me.
I used:
Google Pixel XL (Android 10)
Magisk 20.4
Magisk Manager 7.5.1
Edit: Enable "Magisk Hide" in the Settings -> reboot -> now it works.
Doesn't work for me either.
Pixel 4
It didn't give me an option to select an Android version.
I managed to make banking apps to work by disabling usb debugging.
Enviado desde mi F8331 mediante Tapatalk
I did exactly as it described above but still ctsprofile: false. Google pay sees root on my Poco F2 Pro.
Unfortunately does not work for Google Pixel 4 XL (Android 10)
For everyone that's struggling with trying to pass CTS:
https://www.didgeridoohan.com/magisk/MagiskHide#hn_Unlocked_bootloader_3
Google seemed to do something, i.e. Google Pay has been working for a long time. But when I was sleeping, Google sneaked in to my bedroom and made so that ctsProfile returned false in Magisk when I wake up.
A new unknown and uninvented method needs to be done? A Magisk update?
Vantskruv said:
Google seemed to do something, i.e. Google Pay has been working for a long time. But when I was sleeping, Google sneaked in to my bedroom and made so that ctsProfile returned false in Magisk when I wake up.
A new unknown and uninvented method needs to be done? A Magisk update?
Click to expand...
Click to collapse
Ha!
I concur!
did the whole process with my Mi A3 with Android 10 and my device is stuck on Mi logo. how to fix?
Interesting. Woke up jul 8th as well with as notification that Google pay cannot be used any more. Seems like they flipped a switch.... I tried unroofing until I realized I had to do a factory reset to relock the bootloader. So back on root without Google pay. I hope for a quick solution though
Heh...
I have tried this method. It was suprising that Mi 10 is not on the props list...
The best thing in my phone is that the CTS is false (for - as I can remember - three weeks) but GP payements work.
Banking apps not working even though hided in the magisk. Any fix for it?
Not working with Magisk 20.4
Try disabling usb debugging and/or magisk hidding
Enviado desde mi F8331 mediante Tapatalk
vamsi209 said:
This worked for me on latest build of havoc os, might work for other Roms too.
Step 1 :
Open Magisk manager, download and install both
MagiskHide Props Config (link) and Busybox for android NDK modules from downloads, after installing reboot your phone.
Step 2:
Install terminal emulator from playstore(link)
Step 3:
open terminal emulator
enter command :
Code:
su
Grant superuser access when prompted
Step 4:
type in command:
Code:
props
Step 6 :
and follow the on screen options
select option 1 - edit device fingerprint
by typing : 1
then type in f to Pick a certified fingerprint
from the list pick your mobile manufacturer
select your mobile model
select the latest available android version
finally reboot your phone by typing in
Code:
reboot
this should fix the ctsProfile issue,
to use banking or wallet apps, hide magisk by using magisk hide option and select the app you want to hide root access from
thanks to this awesome dev Didgeridoohan for making this possible
https://forum.xda-developers.com/member.php?u=4667597
for people who want a video to look at the process here is the video
credits :
Thread link for magisk hide props config module: https://forum.xda-developers.com/apps/magisk/module-magiskhide-props-config-t3789228
DEV for magisk hide props config module : Didgeridoohan
you can donate him at : https://www.paypal.me/didgeridoohan
Click to expand...
Click to collapse
Hi!
At the end of the tutorial my phone was not there (redmi note 8 pro) so what i need to do if my phone is not to the list????
roberto_1986 said:
Hi!
At the end of the tutorial my phone was not there (redmi note 8 pro) so what i need to do if my phone is not to the list????
Click to expand...
Click to collapse
Pick whatever device on the list that's closest, or help with finding a working, certified print for your device.
Didgeridoohan said:
Pick whatever device on the list that's closest, or help with finding a working, certified print for your device.
Click to expand...
Click to collapse
its safe??? because it change my phone fingerprint....
---------- Post added at 02:04 AM ---------- Previous post was at 01:09 AM ----------
roberto_1986 said:
its safe??? because it change my phone fingerprint....
Click to expand...
Click to collapse
also for get fingerprint u need to have both CTS profile and basic integrity set to true (not in my case because CTS is set to false)
so someone can get his finger pring from a redmi note 8 pro???
This is how to fix safetynet and device not certified (May not work on 11, but will on 10). Tested on magisk 20.4 stable.
1. Install magisk, i get basic integrity and cts both false.
2. Turn on magisk hide, and check several times, basic integrity will be true and cts still false. Device still not certified. Basic integrity must true in this step to go to next step.
In this step, you must make sure that basic integrity is true, or you will get basic and cts will true at the end but your device wont certified. For make sure, in step 2, i hide the magisk manager also.
3. Install busybox and magisk hide prop config, reboot.
4. Open terminal, type :
- su
- props
- 1
- f
- and choose fp model what you want (use android 10 model for 10 and sunfish 11 preferably for 11), reboot.
5. Check, cts should be true.
6. Clear data for playstore.
7. Check playstore several times, and you will see your device should be certified.
If this tutorial was helpful for you, feel free to leave a thanks to show your appreciation.
Don't work on stock rom. I have xposed installed. Before 10.2 it was working.
micgeb said:
Don't work on stock rom. I have xposed installed. Before 10.2 it was working.
Click to expand...
Click to collapse
I'm not on OOS right now, otherwise I'd be able to help you better. Maybe it's Xposed that's causing you to not be able to pass? Try uninstalling it and see if it passes for you after
micgeb said:
Don't work on stock rom. I have xposed installed. Before 10.2 it was working.
Click to expand...
Click to collapse
Misuto said:
I'm not on OOS right now, otherwise I'd be able to help you better. Maybe it's Xposed that's causing you to not be able to pass? Try uninstalling it and see if it passes for you after
Click to expand...
Click to collapse
I also cover this in my Guide about Installing Lineage, Step 5. I found the Android 10 fingerprint does not pass safety net reliably so I always use the Android 9 fingerprint (even on Android 10 ROMs).
Don't get hung up on device type or Android version. I have tablets that run Android 9 and 10, that use a Android 7 fingerprint. If your device isn't available choose another one.
OhioYJ said:
I also cover this in my Guide about Installing Lineage, Step 5. I found the Android 10 fingerprint does not pass safety net reliably so I always use the Android 9 fingerprint (even on Android 10 ROMs).
Don't get hung up on device type or Android version. I have tablets that run Android 9 and 10, that use a Android 7 fingerprint. If your device isn't available choose another one.
Click to expand...
Click to collapse
I used the key already for Android 9/10. It is only one key in the list.
micgeb said:
I used the key already for Android 9/10. It is only one key in the list.
Click to expand...
Click to collapse
On the 7 one, I meant for another device (Since I was talking tablets at that point) I should have made that clearer. My overall point was that the make / model of the fingerprint does not necessarily matter, just as long as it passes safety net for you.
Great guide and extremely easy to follow. Thanks OP. My 6T is on 10.3.4 and it was from T mobile and converted to international. Now it passed ctsprofile.
So does that mean I could use google pay now? I haven't checked yet. But I still cannot install netflix and disney+ from play store.
xman099 said:
Great guide and extremely easy to follow. Thanks OP. My 6T is on 10.3.4 and it was from T mobile and converted to international. Now it passed ctsprofile.
So does that mean I could use google pay now? I haven't checked yet. But I still cannot install netflix and disney+ from play store.
Click to expand...
Click to collapse
Just give it a little time. Also you may want to delete play store app's storage and reboot. As long as you pass ctsprofile, those apps will be available.
phaino00 said:
Just give it a little time. Also you may want to delete play store app's storage and reboot. As long as you pass ctsprofile, those apps will be available.
Click to expand...
Click to collapse
Thanks. After storage cleaned, now it is certified.
Misuto said:
I originally posted this in another thread to help some people out, and I decided to make a new thread here to help more people, so here is the guide.
Download MagiskHide Props Module from Magisk, install it and reboot your phone. After you do that, go to the play store and download an app call Termux, open it and type su and hit enter, and after that type props and hit enter, a menu will load up in a few seconds, type 1 and hit enter, after that type f and hit enter then type 20 for the OnePlus fingerprint, hit enter, after typing 20 type 9 next for the 6T fingerprint, type 2 for Android 10 and type y for yes and hit enter, wait for it to complete and type y one last time to reboot your phone. That should fix it for you.
P.S. Also don't forget to enable Magisk Hide toggle in the Magisk app settings, in recent builds it's no longer enabled by default.
Click to expand...
Click to collapse
Thanks for the great guide, TMobile converted to international on 10.3.4 now showing certified.
I'm seeing around that people are still wondering how to fix safetynet on their devices, so I've updated the guide with better wording to help people out.
I'm currently using v10.3.6 OOS on my converted OnePlus 6t and this worked perfect. Not that it matters as I'm quite sure this will work long as Android 10 is selected in props and you're on Android 10 but I chose Pixel 3XL Android 10 for my fingerprint change in props. I'm using latest magisk canary. Appreciate this @Misuto !
flash713 said:
I'm currently using v10.3.6 OOS on my converted OnePlus 6t and this worked perfect. Not that it matters as I'm quite sure this will work long as Android 10 is selected in props and you're on Android 10 but I chose Pixel 3XL Android 10 for my fingerprint change in props. I'm using latest magisk canary. Appreciate this @Misuto !
Click to expand...
Click to collapse
You're welcome. Glad I could help.
working for me almost perfect. except one banking app works fine.
Misuto said:
This is how to fix safetynet and device not certified (May not work on 11, but will on 10). Tested on magisk 20.4 stable.
1. Install magisk, i get basic integrity and cts both false.
2. Turn on magisk hide, and check several times, basic integrity will be true and cts still false. Device still not certified. Basic integrity must true in this step to go to next step.
In this step, you must make sure that basic integrity is true, or you will get basic and cts will true at the end but your device wont certified. For make sure, in step 2, i hide the magisk manager also.
3. Install busybox and magisk hide prop config, reboot.
4. Open terminal, type :
- su
- props
- 1
- f
- and choose fp model what you want (use android 10 model for 10 and sunfish 11 preferably for 11), reboot.
5. Check, cts should be true.
6. Clear data for playstore.
7. Check playstore several times, and you will see your device should be certified.
If this tutorial was helpful for you, feel free to leave a thanks to show your appreciation.
Click to expand...
Click to collapse
Worked on Oneplus Nord.
Thank you.
Misuto said:
This is how to fix safetynet and device not certified (May not work on 11, but will on 10). Tested on magisk 20.4 stable.
1. Install magisk, i get basic integrity and cts both false.
2. Turn on magisk hide, and check several times, basic integrity will be true and cts still false. Device still not certified. Basic integrity must true in this step to go to next step.
In this step, you must make sure that basic integrity is true, or you will get basic and cts will true at the end but your device wont certified. For make sure, in step 2, i hide the magisk manager also.
3. Install busybox and magisk hide prop config, reboot.
4. Open terminal, type :
- su
- props
- 1
- f
- and choose fp model what you want (use android 10 model for 10 and sunfish 11 preferably for 11), reboot.
5. Check, cts should be true.
6. Clear data for playstore.
7. Check playstore several times, and you will see your device should be certified.
If this tutorial was helpful for you, feel free to leave a thanks to show your appreciation.
Click to expand...
Click to collapse
Tested and passed on Oneplus 8 Pro IN2025, Latest LineageOS 18.1. OP be praised.
Edit: I have to have the universal SafetyNet Fix installed in the meantime to achieve the success. Otherwise it doesn't work. Now it also worked on my old pixel 2 XL following this way.
It doesn't show that I passed safety net and the rest. But my bank apps and netflix now working flawlessly.
Misuto said:
This is how to fix safetynet and device not certified (May not work on 11, but will on 10). Tested on magisk 20.4 stable.
1. Install magisk, i get basic integrity and cts both false.
2. Turn on magisk hide, and check several times, basic integrity will be true and cts still false. Device still not certified. Basic integrity must true in this step to go to next step.
In this step, you must make sure that basic integrity is true, or you will get basic and cts will true at the end but your device wont certified. For make sure, in step 2, i hide the magisk manager also.
3. Install busybox and magisk hide prop config, reboot.
4. Open terminal, type :
- su
- props
- 1
- f
- and choose fp model what you want (use android 10 model for 10 and sunfish 11 preferably for 11), reboot.
5. Check, cts should be true.
6. Clear data for playstore.
7. Check playstore several times, and you will see your device should be certified.
If this tutorial was helpful for you, feel free to leave a thanks to show your appreciation.
Click to expand...
Click to collapse
This seems like a very easy-to-follow guide. Before I actually execute it, I was wondering if this would work on my unrooted OP6T running Lineage OS 18.1 (official) with lineage os recovery. Doing this just so that I can use Amazon pay, Paytm and other banking apps. Any idea?
Misuto said:
This is how to fix safetynet and device not certified (May not work on 11, but will on 10). Tested on magisk 20.4 stable.
1. Install magisk, i get basic integrity and cts both false.
2. Turn on magisk hide, and check several times, basic integrity will be true and cts still false. Device still not certified. Basic integrity must true in this step to go to next step.
In this step, you must make sure that basic integrity is true, or you will get basic and cts will true at the end but your device wont certified. For make sure, in step 2, i hide the magisk manager also.
3. Install busybox and magisk hide prop config, reboot.
4. Open terminal, type :
- su
- props
- 1
- f
- and choose fp model what you want (use android 10 model for 10 and sunfish 11 preferably for 11), reboot.
5. Check, cts should be true.
6. Clear data for playstore.
7. Check playstore several times, and you will see your device should be certified.
If this tutorial was helpful for you, feel free to leave a thanks to show your appreciation.
Click to expand...
Click to collapse
Thanks man. It worked perfectly on Lineage OS 17.1
Misuto said:
This is how to fix safetynet and device not certified (May not work on 11, but will on 10). Tested on magisk 20.4 stable.
1. Install magisk, i get basic integrity and cts both false.
2. Turn on magisk hide, and check several times, basic integrity will be true and cts still false. Device still not certified. Basic integrity must true in this step to go to next step.
In this step, you must make sure that basic integrity is true, or you will get basic and cts will true at the end but your device wont certified. For make sure, in step 2, i hide the magisk manager also.
3. Install busybox and magisk hide prop config, reboot.
4. Open terminal, type :
- su
- props
- 1
- f
- and choose fp model what you want (use android 10 model for 10 and sunfish 11 preferably for 11), reboot.
5. Check, cts should be true.
6. Clear data for playstore.
7. Check playstore several times, and you will see your device should be certified.
If this tutorial was helpful for you, feel free to leave a thanks to show your appreciation.
Click to expand...
Click to collapse
This worked for me. Thanks
hello guys today i managed to bypass SafteyNet after couple of test and god know how many formats i did
but here i share the joy of it with you all
instead of texting guide i prefered to do full video guide in the video guide i will take you from point 0 where the phone is formated and fresh rooted to fully bypass SafteyNet with edxposed installed
last android version 11
basic integrity : pass
cts profile : pass
in advance sorry for my bad english in this post and in the video
do it on your OWN RISK
guide
skysatan said:
hello guys today i managed to bypass SafteyNet after couple of test and god know how many formats i did
but here i share the joy of it with you all
instead of texting guide i prefered to do full video guide in the video guide i will take you from point 0 where the phone is formated and fresh rooted to fully bypass SafteyNet with edxposed installed
last android version 11
basic integrity : pass
cts profile : pass
in advance sorry for my bad english in this post and in the video
do it on your OWN RISK
guide
Click to expand...
Click to collapse
Working like a charm on my S20 Ultra with Android 11 (Beyond Rom 2.0)
Thanks
m8980 said:
Working like a charm on my S20 Ultra with Android 11 (Beyond Rom 2.0)
Thanks
Click to expand...
Click to collapse
yw my friend
Thank you for the nice video,safety Net pass.
pannerch said:
Thank you for the nice video,safety Net pass.
Click to expand...
Click to collapse
yw bro
Edit: Please see Didgeridoohan's post below mine for additional info/context before following this breakdown of what happened in the video.
TL;DW version:
Starting clean, install magisk.
Install the following modules through the magisk download section (You don't need to reboot after installing each module): 'Busybox', 'MagiskHide Props Config'
Install what I think is this? The video is not at all clear, but I believe it to be the latest version of riru from here: https://github.com/RikkaApps/Riru/releases
Install what appears to be the latest sandhook debug version of this: https://github.com/ElderDrivers/EdXposed/releases (Video technically uses the previous 0.5.1.3 revision but that was the latest version at the time the video was posted)
Go into Magisk Manager settings, enable the magisk hide toggle
Select the option above this, 'Hide Magisk Manager' and hide it with whatever setting you like.
Restart? Not too sure if this is needed here, video guy's phone froze here and had to be hard restarted.
If you check Safetynet inside of Magisk now you should now pass basicintegrity while failing ctsprofile.
Install EdXposed Manager (I assume this one: https://github.com/ElderDrivers/EdXposedManager/releases/ ) (Note: A version of this is installed while installing the Riru/EdXposed through Magisk, no idea if this version is different to that)
Install Termux (I assume this one: https://f-droid.org/packages/com.termux/ )
(Optionally) Install the following apps to confirm that everything has been successful once we are finished:
SafetyNet Test - Apps on Google Play
SafetyNet device compatibility test
play.google.com
SafetyNet Checker - Apps on Google Play
SafetyNet is way to check health and environment where android device running.
play.google.com
Root and SafetyNet Checker - Apps on Google Play
Let you know if your device is Rooted and checks if it passes SafetyNet
play.google.com
Open up EdXoposed manager and confirm the framework is active.
Go into EdXposed settings, scroll down to app list mode and enable, scroll down to 'Pass Safetynet' and enable.
Run Termux, type in:
su
Hit enter, grant root access. Type in:
props
Hit enter. Select the first option (Edit device fingerprint), then select 'Pick a certified fingerprint'
In the next screens select your phone manufacturer and model from the lists that appear.
Confirm you selected the correct device by selecting yes, and then reboot when requested.
Run termux, enter su and props again. Confirm that 'Edit device fingerprint' is now Active.
Select 'Force BASIC key attestation'
Select 'Pick from device list' and select your own device from the lists.
Confir you selected the right device and reboot.
Run termux, su, props. 'Edit devide fingerprint' and 'Force BASIC key attestation' should now be active.
Select 'Device simulation'
Select 'Device simulation' again. Confirm you want to enable basic device simulation.
Select 'ro.product.manufacturer'. Confirm you want to enable simulating 'ro.product.manufacturer'. Reboot.
It should now be working.
That said, I was following the instructions on my pixel 2 XL as I typed them out and I'm still failing safetynet so YMMV.
Edit: Did some digging, in the 'Force BASIC key attestation' section I neede to select a device which was similar but not exactly my device. In my case I used the regular Pixel 2. This got it working.
ivivaitylin said:
TL;DW version:
Click to expand...
Click to collapse
If that's what's in the video, there are a few errors that could be corrected...
First one is rather minor: you do not need to install busybox together with MagiskHide Props Config (that requirement was removed in v5.2.6, more than 6 months ago (a small indication that it's not always a good idea to blindly follow random guides on the internet, they rarely get updated as the tools changes).
Enabling MagiskHide is of course necessary, but hiding the Manager isn't if all you want to do is to pass SafetyNet. It's a useful tool though, since many apps look for the Manager. But not SafetyNet...
And, if you want to use EdXposed (it's not necessary for passing SafetyNet, but there might be many useful modules), you need to keep in mind that Google constantly chases these tools and eventually they'll likely get detected. If you keep on the latest versions of EdXposed, the devs usually manages to keep one step ahead.
Changing the device fingerprint is only necessary if you aren't on a stock ROM, or have a device that isn't Google certified.
The "Force BASIC key attestation" option in MagiskHide Props Config is only necessary if your device uses hardware backed key attestation (you can see if it's basic or hardware when you make a SafetyNet check in the Magisk Manager). If you do need to force a basic check you should not pick your own device. That's very clearly stated both in the ui and the module docs. Picking your own device does absolutely nothing.
"Device simulation" isn't necessary at all, and if you're using a device fingerprint from your own device it won't do anything.
There's more on what options to use in MagiskHide Props Config in the module docs:
MagiskHidePropsConf/README.md at master · Magisk-Modules-Repo/MagiskHidePropsConf
This tool is now dead... Contribute to Magisk-Modules-Repo/MagiskHidePropsConf development by creating an account on GitHub.
github.com
Thanks for the info and breakdown, I've added something at the top of my post directing people to check your post before following it.
Didgeridoohan said:
If that's what's in the video, there are a few errors that could be corrected...
First one is rather minor: you do not need to install busybox together with MagiskHide Props Config (that requirement was removed in v5.2.6, more than 6 months ago (a small indication that it's not always a good idea to blindly follow random guides on the internet, they rarely get updated as the tools changes).
Enabling MagiskHide is of course necessary, but hiding the Manager isn't if all you want to do is to pass SafetyNet. It's a useful tool though, since many apps look for the Manager. But not SafetyNet...
And, if you want to use EdXposed (it's not necessary for passing SafetyNet, but there might be many useful modules), you need to keep in mind that Google constantly chases these tools and eventually they'll likely get detected. If you keep on the latest versions of EdXposed, the devs usually manages to keep one step ahead.
Changing the device fingerprint is only necessary if you aren't on a stock ROM, or have a device that isn't Google certified.
The "Force BASIC key attestation" option in MagiskHide Props Config is only necessary if your device uses hardware backed key attestation (you can see if it's basic or hardware when you make a SafetyNet check in the Magisk Manager). If you do need to force a basic check you should not pick your own device. That's very clearly stated both in the ui and the module docs. Picking your own device does absolutely nothing.
"Device simulation" isn't necessary at all, and if you're using a device fingerprint from your own device it won't do anything.
There's more on what options to use in MagiskHide Props Config in the module docs:
MagiskHidePropsConf/README.md at master · Magisk-Modules-Repo/MagiskHidePropsConf
This tool is now dead... Contribute to Magisk-Modules-Repo/MagiskHidePropsConf development by creating an account on GitHub.
github.com
Click to expand...
Click to collapse
you can use it with out EdXposed
skysatan said:
you can use it with out EdXposed
Click to expand...
Click to collapse
That's what you took from my post? The only thing I wrote about EdXposed is that Google often finds ways to detect it...
skysatan said:
hello guys today i managed to bypass SafteyNet after couple of test and god know how many formats i did
but here i share the joy of it with you all
instead of texting guide i prefered to do full video guide in the video guide i will take you from point 0 where the phone is formated and fresh rooted to fully bypass SafteyNet with edxposed installed
last android version 11
basic integrity : pass
cts profile : pass
in advance sorry for my bad english in this post and in the video
do it on your OWN RISK
guide
Click to expand...
Click to collapse
Video is not available anyone share the direct video link
pannerch said:
Thank you for the nice video,safety Net pass.
Click to expand...
Click to collapse
Send the link of the video i unable to watch that video in YouTube
Safetynet can be easily bypassed by :
step 1 : hide magisk
step 2 : turn on zygisk and enforce deny list
step 3 : open configure deny list & apply deny list on google apps | eg: google play services and playstore, etc.., (don't forget to clear cache & data)
step 4 : install riru module
step 5 : restart your phone
step 6 : install universal safety net fix module
step 7 : restart your phone
in newer version of magisk manager, magisk hide functionality is replaced by deny list
download modules from links given below or you can directly download it via files i attached
riru module link : (https://github.com/RikkaApps/Riru/releases)
universal safetynet-fix module link : (https://github.com/kdrag0n/safetynet-fix/releases)
Small clarification:
The deny list is currently (as of writing this) only available on unofficial Magisk releases. Any official Magisk release after build 23001 will have the deny list rather than MagiskHide.
Didgeridoohan said:
Small clarification:
The deny list is currently (as of writing this) only available on unofficial Magisk releases. Any official Magisk release after build 23001 will have the deny list rather than MagiskHide.
Click to expand...
Click to collapse
Yes, rooting this device via stable version is causing bootloop for now but alpha version(706a4922-alpha) is working fine that's why i mentioned deny list
Safety net stops working after few days then i have to flash riru and safety net again and it works 1,2 days then again it stops working, do you have any solution for this?
I cant get get the step 1 : hide magisk option to work.
When I click that option, it asks me for a new package name and it creates a new icon in the app drawer with that name, but it doesn't do anything. the original magisk icon still opens the app.
When i check safetynet in the app, it still says failed.
Any idea what I'm doing wrong?
Thanks for the guide. Currently running Derpfest 12 on a OP5T and Magisk 24.
Riru is suspended with zygote activated, whilst SafetyNet fix is suspended when it is not enabled.
In my case GPay works with zygote disabled, thus USNF working.
Hi All,
Im having the Chinese Mi 11 Pro, with the default ROM on to it.
Unlocked, flashed to the Global ROM. BUT its not passing SafetyNet, Logical because the phones bootloader is being unlocked.
No, I don't wanna go using Xiaomi.EU ROM, I just want to use the Global ROM
How to pass SafetyNet on this point? (inc.Root)
Please help me with this..
{Mod edit: Quoted post deleted}
You are unethical person and selfish and should be reported for guiding others with incorrect information.
aygul12345 said:
Hi All,
Im having the Chinese Mi 11 Pro, with the default ROM on to it.
Unlocked, flashed to the Global ROM. BUT its not passing SafetyNet, Logical because the phones bootloader is being unlocked.
No, I don't wanna go using Xiaomi.EU ROM, I just want to use the Global ROM
How to pass SafetyNet on this point? (inc.Root)
Please help me with this..
Click to expand...
Click to collapse
Don't lock the bootloader ever if not stock rom installed, I assume you know already, but worth to mention because others might not know.
I can't help with an answer regarding your question, sorry. Others will be able to help.
{Mod edit: Quoted post deleted}
No, I cant lock the boatloader because that's coussing Bootloop, because its not the default ROM (Chinese).
Hi,
what you need to do to pass Safety Net (assuming you have installed Magisk 23001, so the one still containing Magisk Hide):
1. Install the modules "Magiskhide Props Config" and "Universal Safety Net Fix" (current is 2.1.1)
2. in Magisk enable Magisk Hide and select Google Play, Play Services and (if used) Googe Pay
3. reboot
4. open a terminal, enter root mode ("su") and then "props", changing to the proposed Mi11 Ultra fingerprint
5. go to "Settings->Apps", find "Google Play Services", clear data & cache on that
6. reboot again (you will see a dialogue asking to confirm your Google account for backups if that is configured)
At least on my phones this procedure worked nicely (also on non Xiaomi, of course selecting another fingerprint ), hopefully also for you - and also despite an unlocked bootloader !!
aygul12345 said:
Hi All,
Im having the Chinese Mi 11 Pro, with the default ROM on to it.
Unlocked, flashed to the Global ROM. BUT its not passing SafetyNet, Logical because the phones bootloader is being unlocked.
No, I don't wanna go using Xiaomi.EU ROM, I just want to use the Global ROM
How to pass SafetyNet on this point? (inc.Root)
Please help me with this..
Click to expand...
Click to collapse
Flash magisk + magic hide module
s3axel said:
Hi,
what you need to do to pass Safety Net (assuming you have installed Magisk 23001, so the one still containing Magisk Hide):
1. Install the modules "Magiskhide Props Config" and "Universal Safety Net Fix" (current is 2.1.1)
2. in Magisk enable Magisk Hide and select Google Play, Play Services and (if used) Googe Pay
3. reboot
4. open a terminal, enter root mode ("su") and then "props", changing to the proposed Mi11 Ultra fingerprint
5. go to "Settings->Apps", find "Google Play Services", clear data & cache on that
6. reboot again (you will see a dialogue asking to confirm your Google account for backups if that is configured)
At least on my phones this procedure worked nicely (also on non Xiaomi, of course selecting another fingerprint ), hopefully also for you - and also despite an unlocked bootloader !!
Click to expand...
Click to collapse
Im gonna try this at this moment, I will flash Magisk with the image. And follow the steps you mentionend. Let you know if its worked yes or no.
s3axel said:
Hi,
what you need to do to pass Safety Net (assuming you have installed Magisk 23001, so the one still containing Magisk Hide):
1. Install the modules "Magiskhide Props Config" and "Universal Safety Net Fix" (current is 2.1.1)
2. in Magisk enable Magisk Hide and select Google Play, Play Services and (if used) Googe Pay
3. reboot
4. open a terminal, enter root mode ("su") and then "props", changing to the proposed Mi11 Ultra fingerprint
5. go to "Settings->Apps", find "Google Play Services", clear data & cache on that
6. reboot again (you will see a dialogue asking to confirm your Google account for backups if that is configured)
At least on my phones this procedure worked nicely (also on non Xiaomi, of course selecting another fingerprint ), hopefully also for you - and also despite an unlocked bootloader !!
Click to expand...
Click to collapse
MagiskHidePropsConf/common/prints.sh at master · Magisk-Modules-Repo/MagiskHidePropsConf
This tool is now dead... Contribute to Magisk-Modules-Repo/MagiskHidePropsConf development by creating an account on GitHub.
github.com
Xiaomi Mi 11 Pro is not listed.
Using Magisk 23011, I can't search modules in this build? How?
aygul12345 said:
MagiskHidePropsConf/common/prints.sh at master · Magisk-Modules-Repo/MagiskHidePropsConf
This tool is now dead... Contribute to Magisk-Modules-Repo/MagiskHidePropsConf development by creating an account on GitHub.
github.com
Xiaomi Mi 11 Pro is not listed.
Using Magisk 23011, I can't search modules in this build? How?
Click to expand...
Click to collapse
I used magisk 23.0 and worked fine
speedtripler said:
I used magisk 23.0 and worked fine
Click to expand...
Click to collapse
But my phone fingersprint is not listed. I only see:
Xiaomi Mi 11 China (11):Xiaomi:M2011K2C=Xiaomi/venus/venus:11/RKQ1.200928.002/V12.0.22.0.RKBCNXM:user/release-keys__2021-01-01Xiaomi Mi 11 Lite Indonesia (11):Xiaomi:M2101K9AG=Xiaomi/courbet_id/courbet:11/RKQ1.200826.002/V12.5.1.0.RKQIDXM:user/release-keys__2021-06-01
Xiaomi Mi 11 Pro is other codename: Star
Xiaomi Mi 11 Pro with SD888 and code name “Star” is launched in Europe
newsbeezer.com
How can I submit or obtain the correct fingerprint?
Indeed, I just checked and saw that there is no longer any Mi11 Ultra fingerprint.
I'd just take the next closes certified fingerprint, in that case Mi 11 China.....
s3axel said:
Hi,
what you need to do to pass Safety Net (assuming you have installed Magisk 23001, so the one still containing Magisk Hide):
1. Install the modules "Magiskhide Props Config" and "Universal Safety Net Fix" (current is 2.1.1)
2. in Magisk enable Magisk Hide and select Google Play, Play Services and (if used) Googe Pay
3. reboot
4. open a terminal, enter root mode ("su") and then "props", changing to the proposed Mi11 Ultra fingerprint
5. go to "Settings->Apps", find "Google Play Services", clear data & cache on that
6. reboot again (you will see a dialogue asking to confirm your Google account for backups if that is configured)
At least on my phones this procedure worked nicely (also on non Xiaomi, of course selecting another fingerprint ), hopefully also for you - and also despite an unlocked bootloader !!
Click to expand...
Click to collapse
Also If I wanna install the Universal Safetynet Fix 2.1.1 its fails because you need to have installed the module " Riru", 26.1.3 version from github. Is that correct?
So Im having in totall 3 modules installed.
- Magisk Hide props config module from Magisk
- Universal Safety net Fix .2.1.1 from Github
- Riru module installed from 26.1.3 from Github
Is that correct?
Just want to be sure.
Ok, thanks for the addition/correction and apologies for my incomplete list - as I always install Riru for Edxposed I wasn't aware it's also needed for the safety net fix ....
I always installed Riru from the Magisk repo, but of course taking it from the official GitHub is also fine....
s3axel said:
Ok, thanks for the addition/correction and apologies for my incomplete list - as I always install Riru for Edxposed I wasn't aware it's also needed for the safety net fix ....
I always installed Riru from the Magisk repo, but of course taking it from the official GitHub is also fine....
Click to expand...
Click to collapse
Thanks for the confirming.
- But what to do when you install a bank app? Do I need select that App in the MagiskHide? Or what process/handeling I need to walkthrough?
- Do you use the setting: " Hide the Magisk App "? When you use this? Is it useful?
Sorry for these newbie question but wanna be sure that I'm doing it right!
aygul12345 said:
Thanks for the confirming.
- But what to do when you install a bank app? Do I need select that App in the MagiskHide? Or what process/handeling I need to walkthrough?
- Do you use the setting: " Hide the Magisk App "? When you use this? Is it useful?
Sorry for these newbie question but wanna be sure that I'm doing it right!
Click to expand...
Click to collapse
Hi again
yes, you most possibly would need to select the banking app within MagiskHide... In addition some apps check for a ".TWRP" folder on the SDCARD, so in case the app still detects a modified system you could try removing this folder (if its there ).....
Also many apps detect Magisk when the Magisk Manager is not "hidden", so yes, using this setting is advisable as well...
Cheers,
Axel
s3axel said:
Hi again
yes, you most possibly would need to select the banking app within MagiskHide... In addition some apps check for a ".TWRP" folder on the SDCARD, so in case the app still detects a modified system you could try removing this folder (if its there ).....
Also many apps detect Magisk when the Magisk Manager is not "hidden", so yes, using this setting is advisable as well...
Cheers,
Axel
Click to expand...
Click to collapse
Ah I dindt know that... I saw a dir of "TWRP" I deleted this.
- Check always in the folder for the dir. "TWRP" and delete this.
- So I need to select some apps such as a banking app to apply in the list of "MagiskHide", next to the following apps that are already listed such as; "Google Play Store(com.android.vending), Google Play-services(com.google.android.gms)" -*Just ticking/enabling the app it enable one of this services (com.xxx)
- Enable "Hide the Magisk app" in the settings, to be sure that is being hidden.
@s3axel Could you give me advise what to do when there is an OTA update, what is the process or handling to walkthrough? Do you still get Root? Or will it broken? If so, Do I need to reinstalla every module again?
Could you give a view what to do when you execute a Firmware upgrade / OTA?
Thanks so far budyy.
@aygul12345 as you are on Stock Global ROM keeping Root should be pretty straight forward (this is from memory as I'm on Xiaomi.EU where the procedure is slightly different, so others are welcome to chime in as well ) : just take the OTA, install it from within the system menu but DONT reboot just yet. After the update got installed and before reboot go to Magisk Manager and select direct installation - that should be everything you need to do.....
s3axel said:
@aygul12345 as you are on Stock Global ROM keeping Root should be pretty straight forward (this is from memory as I'm on Xiaomi.EU where the procedure is slightly different, so others are welcome to chime in as well ) : just take the OTA, install it from within the system menu but DONT reboot just yet. After the update got installed and before reboot go to Magisk Manager and select direct installation - that should be everything you need to do.....
Click to expand...
Click to collapse
Yes, I'm sitting at the Stock - Global ROM instead of the default Chinese ROM (Bootloader - unlocked)
Thanks to you I'm finally passing the CTS - Profile check. By changing the fingerprint to "Xiaomi mi 11"
The strange thing was that I did this before but didn't worked out.. And now finally it worked out by the steps you mentioned. So many thanks!
I flashed also TWRP as recovery, and Download Magisk (23) 23000, changed it to .zip and installed it from TWRP - Also this gives me root access.
Before I did pathing the boot.img of the ROM, but its not needit anymore.
Thats why I don't know what is the logical, practical way to achieve the goal.
So back to point xD, When installing the OTA from STOCK - Menu I need to go to Magisk Manager and select direct installation. After that I can reboot the phone?
Hi, glad this worked out fine for you
Yes, after OTA installation and Magisk installation you can reboot.....
Please clarify which firmware did you use to convert it to Global?
I can't seem to find any official Global for Mi 11 Pro.
Xiaomi Firmware Updater
The ultimate script that provides firmware packages for Xiaomi devices.
xiaomifirmwareupdater.com
This link shows the name for both 11 Pro/Ultra, that seems a bit risky to flash.