Hey Guys,
- is there any method to get all app datas (especially IM) from an pass code locked bfu OPPO A53 with Cellebrite?
As I read in an other forum it seems not possible to access the phone in bfu mode without bruteforcing the passcode.
However I'm curious if its possible to bypass the locktime after entering an wrong code to allow a bruteforce attack?
Cellebrite writes this on their website:
"File-Based Encrypted (FBE) Android full file system extraction (Samsung / Huawei / Google Pixel / LG / Motorola, etc.)
- Qualcomm and MediaTek based devices brute force passcode"
As i read in an other forum what cellebrite basically does is dumping the whole phone via edl (possible bc the Qualcomm chipset) and then bruteforce it until the lockout timer starts - after that it restores the whole backup to reset the lockout timer - and continue to bruteforce - did I get it right until here?
If I have now for example an 6 digit passcode with its 10*6 possible codes it would take month maybe years to complete the whole process or not?
Is that only possible with premium or also with the ufed?
No one a clue 🙁 ?
Regular Cellebrite tool doesn't support any Quacomm FBE phones bruteforce. You can only dump full filesystem if the phone is unlocked.
As of Premium, you'd have to contact Cellebrite directly. That's not something that can be discussed in public.
In regular UFED, when password locked, no.