Hi everyone,
Surfing through this website I found that the best way to use bank apps on rooted devices is to pass the SafetyNet test and hide these apps with MagiskHide.
I have not found yet a way to pass this test since basicIntegrity is always failing. Moreover, if I uninstall EdXposed Manager and its module, ctsProfile fails aswell. I have installed the canary version of EdXposed and still the same error.
What can I do? I have a Mi Mix 2, if that matters.
You'll find all the relevant info here:
https://www.didgeridoohan.com/magisk/MagiskHide#hn_SafetyNet
Related
Hello, I've been trying to pass the safetynet check for way too many hours now and I've got no clue how to do it.
I've tried Magisk 16.0 with universal fix, with Props Config (with changed configs), tried on a completely new LineageOS ROM install. I've also tried Magisk 16.4, but to no luck.
Both CTS profile match and Basic integrity are false.
Any more tips?
Use magisk.It will work.If it is on tez app, you can pass safetynet by disabling telephone acess on permission of google paly services.
So ive been getting a "response is invalid" i even factory reset my phone but still got it.
Are you referring to the SafetyNet test? If so, I'm seeing the same thing.
Everybody is getting it, Google have changed their API. Hopefully should be fixed soon when a new version of magisk manager is released
If you'd looked through the general support thread and the beta thread, you would have seen that everyone is experiencing this...
Google updated the API and it's now required to obtain an API key from Google if you want to make your app check SafetyNet.
It's merely cosmetics though, since Magisk can still hide from SafetyNet, it's just not possible to check the SafetyNet status in the Manager.
Use a different app to check SafetyNet, there are some that have been updated with the above mentioned key.
Does this just mean that checker apps that haven't been updated won't work, or does this apply to all apps? I'm a little confused because of your remark that Magisk can hide from SafetyNet.
Any app that does a SafetyNet check won't be able to do so if they haven't updated to the new SafetyNet API. That's when the "invalid response" is seen.
Magisk doesn't use the SafetyNet API to hide itself, thus you'll still be able to pass SafetyNet with Magisk installed. You just won't be able to check the SafetyNet status in the Magisk Manager.
Okay, thanks for clarifying.
This is a weird one.
To start, my phone has latest magisk, and passed safety net.
I once again am trying out edxposed (seeing if the game I'm playing still detects, and yes it does).
So, I managed to install edxposed (with hiddencore), magisk working and passing safetynet (check screenshot), however, as mentioned, game still detects something and refuses to start (another note is that the game starts without issues with just magisk and safetynet passed).
Because game doesn't work, I uninstalled hiddencore, edxposed, and riru core (in that order) and somehow magisk cannot pass safetynet anymore.
I've tried everything over again plus countless restarts to get a screenshot of my phone with edxposed and safetynet passed.
-edit-
clearing playstore data did the trick
Hi,
Did u fix your problem ?
Thanks!
Just to be clear, you have only Magisk and Edxposed WITHOUT HiddenCore module installed, and you're passing SN and your game runs fine without detecting root?
I'm a little confused about the order of events and the steps you took, because it reads like you installed edxposed and HiddenCore at the same time (HiddenCore will merely mask SN success test in magisk, it doesn't actually fix the issue as other tester apps more accurately fail to pass SN with edxposed installed. Then you describe you uninstalled all of riru/edxposed framework and hiddencore and then a screen shot of edxposed with Magisk SN test passing??? Okay so, did you reinstall hiddencore? Did you run the test after several reboots to confirm reliability? The game you mentioned, did that quit detecting edxposed? What did you do here exactly?
1. don't consider Magisk's SafetyNet as trustable. Test with other apps like org.freeandroidtools.safetynettest (SafetyNet Test 1.2.1). Or open google play and search for Netflix, and see in Setting at the bottom should say Device is/not certified. Before that clear the Google Play Store Cache и Data Storage because it will remember the previous state and will show an old state.
2. Dont need to uninstall the whole EdXposed and frameworks. Just go in Magisk and turn off the Riru Core framework. Restart. And the SafetyNet should work again. But then GravityBox (and other apps using edXposed) will stop working
3. Yes, recently it stop working for me too, coz Google did next dirty thing. Before I was passing SafetyNet. I had Riru Core 21.3 + EdXposed YAHFA v0.5.0.6 Canary + EdXposedManager v4.5.7 + GravityBox
4. I solve the problem, now I pass SafetyNet again, my GravityBox is working, Google Play show device is certified, all good, so I am happy again. What I did is:
5. Restored my old backup. If I have installed EdXposed-SandHook-v0.5.0.6 Canary I am not able to uninstall it preperly and restore the phone, so whatever I do after it always break SafetyNet. Somehow SandHook mess the phone in irreversible way so the only way out is to flash old backup. That's why I was using EdXposed YAHFA v0.5.0.6 Canary which dont mess the phone and after uninstall phone can pass SafetyNet. So maybe is was not necessary to restore the old backup...
I use LG V20 with LineageOS 17.1 Android 10
6. installed the taichi-v6.2.2.zip framework in Magisk.
https://magiskroot.net/download-xposed-for-android-10/
https://magiskroot.net/taichi-magisk-module/
https://github.com/taichi-framework/TaiChi/releases
https://virtualxposed.com/tai-chi/
https://taichi.cool/download.html
https://github.com/taichi-framework/TaiChi/issues/1153
installed TaiChi 6.4.0.apk
in Modules I enable GravityBox only. Do NOT enable HiddenCore Module because it is detected and if I enable it fail the SafetyNet
in /system/etc/hosts I put this to block connections:
127.0.0.1 techavenue.net
127.0.0.1 www.techavenue.net
127.0.0.1 chinatelecom.com.cn
127.0.0.1 www.chinatelecom.com.cn
127.0.0.1 alibaba.com
127.0.0.1 www.alibaba.com
Click to expand...
Click to collapse
I dont advice you using TaiChi blindly. I just share what I did to have GravityBox with SafetyNet working. You can Thanks me if you find my tips helpful.... But choosing TaiChi is your decision, you can take a look some controversial topic about TaiChi here https://forum.xda-developers.com/xposed/warning-taichi-t4012681
Hello,
I was on Magisk 20.4 and Magisk Manager 7.5.1 since June 2020 and everything worked fine. But then I installed EdXposed because I really need it and the result is
SafetyNet Check Success with
ctsProfile: false
basicIntegrity: false
Everything was working properly despite everything.
Yesterday April 26, I wanted to use MagiskHide 20.4 to hide the root from the applications that detect it.
It didn't work, so I updated Magisk 22.1 with the following result
SafetyNet API Error
basicIntegrity: false
ctsProfile: false
evalType N/A
Magisk 22.1 refused to grant root to any new installed applications.
MagiskHide 22.1 did not work with all applications and it left me 2 Magisk app.
I downgraded to Magisk 20.4 and Magisk Manager 7.5.1, but now I still have SafetyNet API Error.
Google Play Store and some applications take time to load too.
I'm really lost and sad to see these problems that didn't exist before.
Usually, I never updated ROM or Magisk after their first installation and that everything worked properly on each of my phones.
Thanks a lot in advance and really sorry for the inconvenience.
Cordially
Samsung Galaxy S10 G973FXXS5CTD1 ROM Stock exynos
Magisk 20.4 and Magisk Manager 7.5.1
EdXposed Manager 4.5.7 (45700) with 0.4.6.1 (4510) YAHFA
the api key expired on the old magisk hence the new version
I see, there is no solution to have the new api on an old version of Magisk ?
Because, Magisk 20.4 worked properly, but not Magisk 22.1 on my phone.
Moreover, SafetyNet Check is very important ?
I have the same result. Also I'm using Google Pay that still works... The Magisk code is broken for now... If you use 3rd party SafetyNet Checker from Google Play it probably fully pass safetynet, if you disable/remove edxposed before.
According by @Lord Sithek from my thread.
Thank you Danielisko
Just enabling on the "Magisk Hide" option will do the thing? Or are there any other steps I should do?
Magisk Hide is already enabled in the options. I tried rebooting my phone and it is still blocking ALL banking apps that I use (I live in the Philippines.)
My phone is Xiaomi Mi 11.
- I tried installing previous versions of Magisk
- Flashing different custom ROMs: EU ROM, Global and OneOS, still the same issue.
Did you install Universal Safetynet Fix module?
MAGISK MODULE ❯ Universal SafetyNet Fix 2.4.0
Universal SafetyNet Fix Magisk module Magisk module to work around Google's SafetyNet attestation. This module works around hardware attestation and recent updates to SafetyNet CTS profile checks. You must already be able to pass basic CTS...
forum.xda-developers.com
Hide the Magisk Manager from Magisk - Options (the cog wheel) - Hide the Magisk App. This is how it works for me, my wife, my friends... Magisk Hide on it's own doesn't do the trick...
ohtoulouz said:
Did you install Universal Safetynet Fix module?
MAGISK MODULE ❯ Universal SafetyNet Fix 2.4.0
Universal SafetyNet Fix Magisk module Magisk module to work around Google's SafetyNet attestation. This module works around hardware attestation and recent updates to SafetyNet CTS profile checks. You must already be able to pass basic CTS...
forum.xda-developers.com
Click to expand...
Click to collapse
Thanks a lot, this worked! I thought it didn't work at first. I have to manually enable Magisk Hide module per application/banking app.
If it doesn´t work, just uninstall the magisk manager.
In case you need it reinstall it.
Works great for me.
RebornCheiko said:
Thanks a lot, this worked! I thought it didn't work at first. I have to manually enable Magisk Hide module per application/banking app.
Click to expand...
Click to collapse
Glad it helps.
And yes, MagiskHide is required if rooted (this is mentioned in the module description)
I use the app airfrozen to freeze magisk. Do my banking things and after that I unfreeze it. It's faster than uninstall and reinstall.
The hide worked for me under lineage and my sagit.
But under mi11 it will not. No idea why.
make sure you set Magisk hide to the SUB-items in each app you want to hide it from. Also make sure you pass Safeynet.
I am running MIUImix weekly and can pass Safetynet, googlepay etc without running any special modules.