Notifications
Clear all

Let's talk about bypassing Samsung screen lock with FRP:ON

13 Posts
8 Users
0 Likes
1,361 Views
(@mshibo)
Posts: 34
Eminent Member
Topic starter
 

So, I recently had that case (Samsung J105H, Pattern Lock, FRP ON) the client needs the data from the phone.
So, I went to Google and surprisingly, I could easily find a very easy solution for it.
It's a modified (I believe) one-package firmware that after you flash via Odin everything will be as it was but with no lock screen at all.
Here is the topic for it https://the-hellteam.com/2017/12/28/%D9%81%D9%83-%D9%82%D9%81%D9%84-%D8%A7%D9%84%D8%B4%D8%A7%D8%B4%D8%A9-sm-j105h-%D8%A8%D8%AF%D9%88%D9%86-%D8%AD%D8%B0%D9%81-%D8%A7%D9%84%D8%A8%D9%8A%D8%A7%D9%86%D8%A7%D8%AA-frpon-%D8%A8%D8%AF%D9%88/
So, we all know that you can't flash any modified images to the phone with FRP ON since the bootloader will check the signature and then refuse those images. Now we want to understand this process more and see if it's applicable to more Samsung devices.

 
Posted : 03/05/2018 1:40 pm
UnallocatedClusters
(@unallocatedclusters)
Posts: 577
Honorable Member
 

Did you test the solution? What were the results?

 
Posted : 03/05/2018 1:57 pm
(@mshibo)
Posts: 34
Eminent Member
Topic starter
 

I tested it myself and it's 100% working. After flashing the firmware, I found no lock screen but there was like a side effect, the background was all black and I noticed some lag and FC msgs, but it isn't a problem since I could access the data on the phone which is the main purpose.

 
Posted : 03/05/2018 2:16 pm
(@mcman)
Posts: 189
Estimable Member
 

Sounds like you flashed a trusted boot image to the device which is a pretty common method to bypass bootloader locked devices. The boot image is likely signed (aka trusted) by Samsung which allows the phone to recognize it as trusted avoiding the problem with regular recovery images which are not signed. If you do some digging around engineering boot images you should probably find a lot of info.

Jamie

 
Posted : 03/05/2018 2:40 pm
(@thomass30)
Posts: 110
Estimable Member
 

This topic is very interesting. I would love to get more info about it.

I have Samsung J5-SM-J510FN with pattern lock screen and FRP Lock On.
I cant flash TWRP because of that.

 
Posted : 03/05/2018 6:54 pm
passcodeunlock
(@passcodeunlock)
Posts: 792
Prominent Member
 

Engineering boot images usually work, but it matters a lot if the sources for getting them are reliable or not.

In case of a "mistake" your data is gone, so I don't recommend this only to people who really know what they are doing!!!

 
Posted : 03/05/2018 7:11 pm
(@mcman)
Posts: 189
Estimable Member
 

Engineering boot images usually work, but it matters a lot if the sources for getting them are reliable or not.

In case of a "mistake" your data is gone, so I don't recommend this only to people who really know what they are doing!!!

Agree completely, lots of questionable sources and not something I would just throw on a phone that is considered evidence before testing on another device.

Jamie

 
Posted : 03/05/2018 7:30 pm
(@qassam22222)
Posts: 155
Estimable Member
 

read about sboot.img …. u can bypass it by flashing sboot.img or by Z3x box )
but be careful when u flashing sboot.img it's very dangerous ur phone maybe dead )
sorry i dont have time to write full details I am travelling to russia ….
good luck

 
Posted : 03/05/2018 8:00 pm
(@mshibo)
Posts: 34
Eminent Member
Topic starter
 

Engineering boot images usually work, but it matters a lot if the sources for getting them are reliable or not.

In case of a "mistake" your data is gone, so I don't recommend this only to people who really know what they are doing!!!

Agree completely, lots of questionable sources and not something I would just throw on a phone that is considered evidence before testing on another device.

Jamie

I totally agree too and if I'm going to do so, I always prefer to test with another device for example and make sure everything is ok first.

 
Posted : 03/05/2018 10:29 pm
(@mshibo)
Posts: 34
Eminent Member
Topic starter
 

read about sboot.img …. u can bypass it by flashing sboot.img or by Z3x box )
but be careful when u flashing sboot.img it's very dangerous ur phone maybe dead )
sorry i dont have time to write full details I am travelling to russia ….
good luck

Well, sboot method is kinda old now and it has been patched in a lot of devices and even for most of old devices too as they've got new updates with new security too. I used it before and it was working well but now I believe it's useless.

Good luck to you in whatever you're doing in Russia. It's a beautiful country and maybe I'll meet you there after one year as I'm moving there 😉

 
Posted : 03/05/2018 10:31 pm
Page 1 / 2
Share: