Closed Pharaoh2k closed 11 months ago
Sorry to comment here, one question, Samsung cant apply that (security) in the others apps? thanks
Sorry to comment here, one question, Samsung cant apply that (security) in the others apps? thanks
Nothing is impossible, I will of course keep an eye on the changes that might be implemented in the next Android iterations. As per the latest One UI 6 beta, their API’s haven’t changed.
Ok, thanks, i have a Samsung phone, can unlock bootloader (still off) but still not doing a root.
Fixing those two apps is not possible because the device integrity checks run in TEE. I shared more details in the XDA thread of the module (Post #28, Post #29).
![]()
![]()
I am wondering if it is possible to patch by modifying the binary of the Samsung Pay app or kernel
Even if it's possible, would you use a modified binary of a wallet app? I certainly wouldn't take that risk
Fixing those two apps is not possible because the device integrity checks run in TEE. I shared more details in the XDA thread of the module (Post #28, Post #29).
![]()
![]()
I am wondering if it is possible to patch by modifying the binary of the Samsung Pay app or kernel
Even if it's possible, would you use a modified binary of a wallet app? I certainly wouldn't take that risk
I would trust a binary modified by myself.
Then go for it
I am wondering if it is possible to patch by modifying the binary of the Samsung Pay app or kernel
It's not possible. Even if you manage to bypass the anti-tamper check in the apps such as anti-hook, APK signature check in Samsung Account etc. you'd still need to patch the trustlets, which can't be done since they're signed as well. The only possible way (imho) would be via a TrustZone exploit
Does this also apply to Samsung Pay Watch plugin-in?
This app:
Does this also apply to Samsung Pay Watch plugin-in?
This app:
No, the watch plugin should work fine as long as you have the Enhancer module installed.
What's different about Samsung Pass on devices running Android 7 or lower which makes it work even when rooted? Would it theoretically not be possible to spoof the app to think it's running on something like a Galaxy S7 on Android 7?
I never saw those two apps working even on legacy OS.
Very useful project, thank you! :) Any plans to add Samsung pass and Samsung pay support?