Quadrooter Qualcomm Exploit

Share if the site was helpful

Quadrooter Qualcomm Exploit

Quadrooter-vulnerability-affects-nearly-1-billion-Snapdragon-powered-Android-devices

QuadRooter sounds like another serious Android security exploit. One which can apparently allow a malicious app to gain root access on Qualcomm based Android phones and tablets, enabling the app to then do pretty much what it pleases. According to Check Point, the research group that discovered QuadRooter, up to 900 million Qualcomm Android devices could be affected. This exploit targets the Qualcomm drivers which is why it is specific to this hardware. As of the Augusts 1st security update Google has patched 3 of the 4 vulnerabilities and will patch the last one in the September 1st update. To keep your device safe from these bugs it is always bests to stay on top of your security updates. One of the best ways to protect your phone from malicious software is to only download apps from google play or trusted sources.

quadrooter-scanner

If you want to check and see if your device can possible be vulnerable to this threat then you can download and run QuadRooter Scanner by check pointPersonally I am hoping that a developer can figure out this exploit and use it to get many android users root access. I am sure someone can create a app that gets root then injects supersu and su binary into the device. If you are hoping for the same I recommend not updating to new security patches and give the developers some time to get devices root access. 

I wouldn’t be surprise to see this QuadRooter vulnerability implemented into Kingroot app some time soon, as it would make there app unstoppable on Android devices. What do you think about this bug please comment below and let me know.

RootJunky

 

Loot For Root

Share if the site was helpful

Loot For Root

How do you feel about paying for apps like Sun Shine by Jcase and company or programs like MoFoRoot*? Here are some of my thoughts.

rooted

There are two sides to the discussion about paying for exploits and development on your android devices.  One side is obviously the developers and the other is that of the user or android community member who has been waiting for a awesome new root or unlocked bootloader method to be released.  Since there are two sides, I decided it would only be fair to contact Jcase and ask him in person why he has chosen to create a paid-for tool like Sun Shine app*. Let me start this post with a quick note: I am going to try and stay neutral in this matter until the end of the post where you will see my thoughts on the matter, so lets begin.

Here are some of Jcase’s thoughts and some of the questions I asked him.

Q:  Why make everyone pay for the Sun Shine app instead of just releasing the exploit to the android community and the world?

A:   “There are way more complaints with the free exploits than the paid versions” So I asked him to explain. When he releases free exploits they are normally not in a perfect form and may even be a bit buggy, but they still work. Jcase has no desire to make them work any better since he mainly enjoys finding the exploit, not spending tons of time making them noob friendly. Since it isn’t the easiest exploit in the world to perform on a given device, it turns into a big headache for him to deal with and ain’t nobody got time for that!

Q:  What cost is involved for you to find and create these exploits for the Android community?

A:  To answer this question Jcase gave this example. To fully test Sun Shine app he had to buy 30 Motorola Moto G phones to make sure that Sun Shine would be noob friendly. Along with this major cost, there is the time and research. He invests alot of time into the paid versions of his exploits like Sun Shine. “You get what you pay for.”

Q: Why not fund your research and expenses with donations and bounties?

A: He explained that the last bounty only paid out 30% of what was promised in the bounty thread.  Jcase continued to explain that by selling Sun Shine app, he is crowd funding his research and future development.

A few quick notes from our conversation:

1.  Working on android is for fun and done in our free time.

2.  Family time is important and Android takes a lot of time away from them.

3.  If working on Android exploits isn’t enjoyable, then he doesn’t want to do it.

4.  Jcase and the MoFoRoot Developer don’t owe the Android Community anything. If they don’t want to release Android exploits anymore, they don’t have to.

My Thoughts 

I wish that the Android community as a whole was a lot more understanding and friendly to the developers that do Android in their free time. I think that some of the community has scared off many of the developers with all their complaints and demands. If you like what a developer is doing, then support them with a donation. This will really encourage him or her to continue their work on Android. The Android community can be a really great and helpful place. I have met many of you online and love all the fun we have had together over the years. I really wish that we could go back to just donations and bounties to fund and help the developers like Jcase, but that ship has sailed. Loot for root is the new era we have found ourselves in. I, for one, am happy to pay $25.00 for a root or unlocked bootloader; this is much cheaper than buying a developer edition device.  There is just something about paying vs. donations that just gets under my skin and maybe you feel the same way. In my opinion, if we want to get back to the good old days of more free exploits and root methods, then lets start by donating to our favorite developers in the Android community and leave them some great comments of encouragement! A little lovin’ goes a long way 🙂

Please leave your comment and thoughts. I would love to hear from you.

Tom S. / RootJunky

 

 

*MoFoRoot is a Tool that lets you flash edited rooted system images to your Motorola Droid Turbo and Moto X 2014

*Sun Shine App is an amazing tool that lets you unlock your bootloader on many Motorola and HTC devices along with S-off

WeakSauce2

Share if the site was helpful

WeakSauce2

This is a HTC One M8 and other HTC device root Method. Note: May working on other devices cant hurt to try 🙂

Wow apparently this does allow sunshine to s-off and unlock some Android 4.4.4 Verizon devices, just not our test ones.

To use with SunShine:
Install WeakSauce2 gain root.
Install SunShine,
Run SunShine, if tests pass pay for SunShine
Device will reboot
Both WeakSauce and SunShine should start up again.
If SunShine doesnt start up, start it.
If SunShine Complains of no su being available, run weaksauce2, then sunshine.

WeakSauce 2.0: The Habanero’s Revenge by @beaups and @jcase

Wanna donate for this effort? sent via paypal to doxsearch@gmail.com

This is a variant of Weaksauce that evades HTC’s patches. We were saving it for 5.0, but HTC has patched it in 5.0.

It will work on most verizon HTC devices, HTC DNA, m7 m8 and others.

If SunShine won’t work for you now, please wait for the 3.0 release, we are aiming for (but no promises) early january.

All those hating us about charging for SunShine (http://theroot.ninja), please ignore weaksauce 2, since we developed it too.

Install WeakSauce2, run, install supersu. WeakSauce2 will reroot each boot.

FAQ

Q: I use ART And blah blah it doesn’t work
A: Yeah ART hates my build setup

Q: The SU binaries are out of date and it wont let me update them
A: Yeah i know, ill fix that soon

FramaRoot one click app

Share if the site was helpful

FramaRoot One Click App

Framaroot-2

FramaRoot is a very awesome one-click application that install Superuser and su binary on your phone.  Superuser app and su binary are include in this application and it works on many android devices ranging from android version 2.0 to 4.0 or from Eclair to Ice Cream Sandwich here you can find a list of known device that Framaroot one click app works on.

WARNING Successful Root with this application will void your warranty on the device. DOWNLOAD FRAMAROOT APP

Installation

  1. Download Framaroot on to your device
  2. Install it with a file explorer or directly from your internet browser, if android warn you about security risk, say OK  ( most android rooting apps with be flagged as a security risk since they are a exploit of some kind ) and check Unknown sources to allow install of applications.

Usage

Open Framaroot and select one of the following action: Install SuperSU, Unroot or Execute script (for advanced users)

Possible case once application is launched

  • A popup saying “Your device seems not vulnerable to exploit included in Framaroot”, in this case you can uninstall app
  • You seeing one or more exploit name, also click on one after you have selected an action and you will see one of the above messages

Possible case once exploit is selected

  • “Success … Superuser and su binary installed. You have to reboot your device”
  • “Failed … Exploit work but installation of Superuser and su binary have failed”
  • “Half-Success :-/ … system partition is read-only, use local.prop trick. Reboot your device and use adb to see if it run as root”, happen when the filesystem in use on system partition is a read only filesystem (ex: squashfs)
  • “Failed … Try another exploit if available”
  • Framaroot crash or freeze, in this case relaunch Framaroot a second time and select the same action and exploit

Here you will find the official thread on XDA Developers site

FramaRoot One Click App

Here is the list of known compatible devices but if yours isnt listed try it anyway and it may work

Device Compatibility

If you are really into this app and want to learn more about advanced settings check out this link

Advanced settings

Here is a Video of me rooting my Droid X and Droid 2

CF Auto Root

Share if the site was helpful

CF Auto Root

CF Auto Root is a really easy to use Root method created by Chainfire hence the CF and he is also the creator of SuperSU app along with many other awesome Android Apps. This root method is compatible with most Samsung and Google Nexus Devices it works with either the Odin Program or Fastboot commands for the Nexus devices check here to see if your device is compatible with this amazing CF AUTO ROOT TOOL 

NOTE- When selecting the Right CF auto root files to download it will be helpful to go into your device setting and then about phone or tablet and look at the info there then match it up with the info on the site downloads.

How to use Odin and Fastboot

ODIN flashable devices

odin

 

BASIC INSTRUCTIONS

All downloads contain .tar.md5 files flashable in ODIN as PDA.

Make sure your device is in ODIN download mode (usually you can get there by holding VolDown+Home+Power when the device is turned off), then start the included Odin3-v1.85.exe file, press the PDA button, select the .tar.md5 file, and click Start. You can find more detailed instructions and assistance at XDA.

A modified recovery and cache partition will be flashed, which will install (only) SuperSU, then clean-up the cache partition and re-flash the stock recovery.

For the root to work, the device must reboot into recovery. Most devices will do this automatically after flashing these files, but in case that does not happen, please boot into recovery manually.

UNLOCK BOOTLOADERS

If you have locked bootloaders, flashing one of these will probably brick your device – with the exception of Nexus devices, which will usually automatically “OEM unlock” and wipe your data !

 

Download the Odin Program you will need HERE

Download the samsung usb drivers for your computer if you dont already have them HERE

 

Fastboot flashable devices

fastboot

BASIC INSTRUCTIONS

All downloads contain .img files bootable through Fastboot.

Make sure your device is in Fastboot mode (usually you can get there by holding VolUp+VolDown+Power when the device is turned off), then run the included script for your OS. On Linux and Mac, you may have to chmod +x root-linux/mac.sh before the script does anything.

A special boot image will load, which will install (only) SuperSU, then reboot into Android.

UNLOCK BOOTLOADERS

The included scripts perform an “OEM unlock”. If this fails, the root will not work. If it succeeds, and you were not previously unlocked (first time rooting ?), it will probably wipe your data !

For some device (Sony, Verizon, etc) you may need an OEM-specific tool to unlock the bootloader. Please do not forget to check and use this tool, if provided by the OEM.

Download the fastboot files you will need for WIndows HERE

 

Check out the main thread for CF Auto Root on XDA developers site HERE

Towel Root

Share if the site was helpful

Towel Root

Towel Root is a app that exploits your kernel which they allows the app to inject SU file it to your android device file system. This gives you root access but you will still need to install SuperSU App from Google Play Store after using the Towel Root app.  geohot is the developer behind this awesome and easy to use exploit. always remember to support your dev’s 🙂 This Root exploit works great with lots a different devices please try it on yours and comment below if it works for you. I know it works on lots of android 4.4 Kitkat device

 

 Screenshot_2014-09-29-15-59-31

Its simple Just go to Towelroot.com and click on the upside down Y and the app will download to your device. Next you need to enable unknown source so that you can install the Towel Root app. Once install just click the Make it ra1n button shown aboove and you will have root access. Make sure you install Supersu & root checker apps to make sure root is working correctly.

Here is a video of me rooting my Galaxy S5 with the app

 

NOTE If the SU binary isnt updating correctly just reboot the device and check again.

Towel Root Exploit is known to works on these devices

AT&T GS5, Verizon GS5, GS4 Active, Nexus 5
May have some troubles at the door but invited: AT&T/Verizon Note 3
Possibly invited: Every Android phone with a kernel build date < Jun 3

Also many other devices work. i have used it on many Motorola devices as well. Try it on your android device

Easy one click root and bootloader unlock app

Share if the site was helpful

The Root Ninja SunShine App

This has to be the best easy one click root and Bootloader unlock app i have ever used. Its really simple so let me explain how this works.  SunShine is a utility/app that allows you to s-off and bootloader unlock modern HTC & Motorola devices, giving you more freedom than any developer phone would allow. Once you have used Sunshine on your HTC or Motorola Device you will be able to install custom Recovery like TWRP and CWM also root and install awesome roms with ease. Here you will find a list of supported devices

Motorola Moto X, Droid Maxx/Ultra/Mini (Android 4.4.3 on all, 4.4.4 on some)
Motorola G (Android 4.4.3 and below only at this time)
HTC One Mini m4
HTC One m7
HTC One m8
HTC One e8
HTC J Butteryfly
HTC One X (Evita)
Other HTC devices (Try it, SunShine will let you know if it can work!)

NOTE there maybe many more added in the Futures

So this sound amazing right… well here is the down side to it. the Sunshine app from THEROOT.NINJA cost 25 bucks and this is per devices you unlock with it. 🙁  Considering the costs to develop SunShine, they feel that it is justified. Most of us purchased heavily subsidized devices, instead of opting for a more developer friendly product. SunShine solves that situation, at a much lower cost than purchasing a developer device. so when you look at it this way it makes sense. One of the nice features about this app is that it test your device to make sure it will work before asking you to pay for the service which is really nice. So if you dont know if it will work on your device just download it and give it a try. CLICK HERE

 

Change Log
Version 2.6.1
Motorola Moto X support added, all 4.4.3 and below, some including 4.4.4, try it
Motorola Droid Maxx/Ultra/Mini support added, all 4.4.3 and below, some including 4.4.4, try it.

Does SunShine void my warranty?
In most cases yes, depending on your local laws and the ODM of the device. Unlike HTC, Motorola devices can not be reverted.