Android 7 - Passcod...
 
Notifications
Clear all

Android 7 - Passcode

4 Posts
2 Users
0 Likes
717 Views
(@the_grinch)
Posts: 136
Estimable Member
Topic starter
 

I know this question has been asked before, but hoping there might be a solution. I have three devices all belonging to the same person. I was able to get a physical extraction off of one of the devices and everything decoded without issue. The policies.xml stated the passcode is just 4 numerics. Is there any means by which I could brute force the passcode with the salt and gatekeeper.password.key?

 
Posted : 24/01/2019 11:46 pm
passcodeunlock
(@passcodeunlock)
Posts: 792
Prominent Member
 

AES256 + XTS is a hard enemy, starting with Android 7.x I don't think there is a solution for what you try to do.

On the other hand, finding the Android PIN is possible using a safe in-lab brute force solution, but that has it's price. The device must be fully operational because the TrustZone is needed )

 
Posted : 25/01/2019 11:08 am
(@the_grinch)
Posts: 136
Estimable Member
Topic starter
 

Is the hash the hex of the gatekeeper.password.key?

 
Posted : 03/02/2019 8:58 pm
passcodeunlock
(@passcodeunlock)
Posts: 792
Prominent Member
 

Is the hash the hex of the gatekeeper.password.key?

No, that file contains a value generated from the salt + encryption key + Android password.

 
Posted : 03/02/2019 9:53 pm
Share: