|
|
|
|
|
|
by mid-kid
845 days ago
|
|
|
Google's safetynet works by downloading a frequently updating and obfuscated binary from google and running it with the highest possible privileges (ARM trustzone on modern phones, bypasses the kernel), which then verifies the integrity of your system against a google-vetted list, preventing any sort of modification, root or not. This is going to become nigh-impossible to bypass in the future as the binary is encrypted and verifies its signature, and encrypts the response with device-specific keys only available in trustzone. The current bypasses involve spoofing the uavailability of trustzone. |
|
|