Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/canyie/BypassKeyguard

PoC of unlocking an Android device without lock screen password
https://github.com/canyie/BypassKeyguard

Last synced: about 2 months ago
JSON representation

PoC of unlocking an Android device without lock screen password

Host: GitHub
URL: https://github.com/canyie/BypassKeyguard
Owner: canyie
Created: 2023-04-30T07:23:17.000Z (over 1 year ago)
Default Branch: master
Last Pushed: 2023-04-30T07:50:03.000Z (over 1 year ago)
Last Synced: 2024-06-01T22:48:44.500Z (4 months ago)
Language: Java
Size: 92.8 KB
Stars: 43
Watchers: 2
Forks: 5
Open Issues: 0
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

README

        ## Introduction

This is just a PoC for getting access to your Android phone and private app data without your lock screen password. 

However, the attacker needs to get ADB access first, and the device needs to be decrypted, so it's almost impossible to be successfully exploited. 

Thus I don't think this is a security issue.

But I found a device (Huawei Nova 1, Android 7.0, EMUI 5.0.4) uses full-disk encryption 

but it have abnormal FDE implementations so the attacker can break out of lock screen 

and get access to the device with only ADB access.

## Test

1. Build the app

2. Connect the device to your PC

3. Open CMD, `adb install -t /path/to/app-debug.apk` (The app is marked as `testOnly`, so do NOT remove the `-t` flag)

4. `adb shell dpm set-device-owner top.canyie.bypasskeyguard/.DeviceAdmin`

5. `adb shell am start top.canyie.bypasskeyguard/.LockTaskActivity`