[Discussion] Magisk - The Age of Zygisk.

[huskydg]

If i were to post "Magisk Delta cant hide x" and then post pics of apps people were struggling to hide when people knew i developed Magisk (stock) what would be a fair assumption to make?

Ofc I don't say it has perfect hidden ability, there are few apps that you can't bypass it no matter what you do, even use MagiskHide with no Zygisk (Example: Livin by Mandiri)

 

[_Oshu_]

Hey I'm currently having a issue with Google wallet and I'm trying to figure out if it's a linage os issue, a magisk issue, or a Google issue rn.

Everything works pretty much, I pass safteynet check, Google certification is good, I can download stuff like Netflix and for the most part Google wallet works.

I'm using Android 12 on lineage os 19.1 with a oneplus5t. The problem I'm having is the wallet tile in the quick access menu and the lock screen wallet toggle in the settings menu are both grayed out and none functional. It's really a minor issue but are features I want to take advantage of.

If anyone has any idea about this issue, or at the very least know where I should be pointed at, it would be a lot of help

 

[pndwal]

In a case where you had to put hidden manager in HMA's list of apps to conceal, have you ever tried un-hiding Magisk manager and putting it in HMA's list? I.e., if you use HMA to hide manager, does manager need to be hidden/renamed?

Yes... Did extensive tests for S-pushTAN.

Found this solution, but it didn't work w/o first taking Hiding the Magisk app to obfuscate package name etc, but as Promon engine (apparently) uses pattern matching on classes.dex which isn't hidden, we need HMA hiding also:
https://github.com/topjohnwu/Magisk/issues/1084#issuecomment-964222271

It later stopped working for MIUI:
https://github.com/topjohnwu/Magisk/issues/1084#issuecomment-1013811582
... Seems OnePlus, other users have no issues... PW

 

[msohail_7]

meanwhile on normal stock Magisk 25, with

1) Magisk App hidden (renamed)
2) Shamiko & Enforce Deny List OFF
3) Yono by SBI app in the Deny List
4) (hilariously) Teamviewer uninstalled

theres this:

View attachment 5759133

so not sure why Husky is trying to offramp people from stock Magisk and onto his builds? that would be valid to suggest if it wasnt working on "stock" magisk, but clearly, well, see above..

have you checked you pass Integrity:

Play Integrity API Checker - Apps on Google Play

Get info about your Device Integrity through the Play Intergrity API

play.google.com

SBI is working fine but HDFC app.
With HMA ON do i have to keep deny list ON as well?
Device:OnePlus 9 pro

 

[J.Michael]

SBI is working fine but HDFC app.
With HMA ON do i have to keep deny list ON as well?
Device:OnePlus 9 pro

If you turn on Deny List, then Shamiko will do nothing. So, no, do not enforce Deny List in Magisk.

 

[huskydg]

As zygisk will exec original app_process, there are possible the traces
I seem to find a way to partial fix zygisk detectable, but that need to change the way zygisk load

 

[pndwal]

SBI is working fine but HDFC app...

​

Many (most?) banks now require deviceIntegrity... You need to fix this...

Do you have @Displax's modded/forked USNF module w/ fix for deviceIntegrity?...

PW

 

[msohail_7]

Many (most?) banks now require deviceIntegrity... You need to fix this...

Do you have @Displax's modded/forked USNF module w/ fix for deviceIntegrity?...

PW

Done. I have updated to Mod 2.0

 

[msohail_7]

Hide My AppList Mini Guide (provisional, subject to correction, and because we see people refer to guides for using it every other week):

1) Install Lsposed - Zygisk if using stock/mainstream Magisk (or for Riru based Magisk) from here:

Releases · LSPosed/LSPosed

LSPosed Framework. Contribute to LSPosed/LSPosed development by creating an account on GitHub.

github.com

2) Reboot

3) Install Hide My AppList (Often referred to in shorthand as HMA) from here

Releases · Dr-TSNG/Hide-My-Applist

An Xposed module to intercept applist detections. Contribute to Dr-TSNG/Hide-My-Applist development by creating an account on GitHub.

github.com

Note: Do NOT use the downloader in Lsposed Manager to download it, currently thats the last v2 official, you want the v3 beta

4) Activate HMA in Lsposed Manager:

either by :

a) The notification prompt upon HMA install (easiest), and then tap and select and then toggle to enable the module

b) Tap Lsposed shortcut (on second desktop for me at least) to open Lsposed Manager, navigate if needed to second tab (plugins tab) then tap and select HMA and then toggle to enable the module

5) Reboot

6) Launch HMA

Either by its own Hide My Applist icon in your launcher

Or

Tap Lsposed shortcut (on second desktop for me at least) to open Lsposed Manager, navigate if needed to second tab (plugins tab) then tap and select HMA and then click the floating blue settings (gear) icon

7) Tap the Template Manage option in the Manage section

8) Tap Create A Blacklist Template

9)Type Root into Template Name

10) Tap Edit List to the right of 0 Apps Visible

11) From the list of apps select:

* Your renamed (hidden) Magisk Managers name (for ease of use when i rename (hide) Magisk Manager, i always call mine App - so its right towards the top of the app list...

* Hide My Applist

* Any other Lsposed modules you have, for me thats (and sadly, i feel i have to say this but dont clone my setup because some are device (Samsung) specific)):

Classic Power Menu
NoStorageRestrict
UpdateLocker
Firefds Kit
OneUI General X (S)
XposedSmsCode

12) Click back when done

13) Click back again to main screen with Manage section

This is where it gets easy and starts to make sense

14) Click App Manage

For each app you want to hide all the items on the Root template from, tap the app, then:

a) Tap Enable to toggle it on
b) Under Template Config, tap Using 0 Template and choose Root and tap OK

When you have selected all you wish, use Back to return to desktop

15) Reboot

16) Test for app detection, either using the Detection Test option under HMA's main menu, or

Releases · Dr-TSNG/ApplistDetector

A library to detect suspicious apps like Magisk. Contribute to Dr-TSNG/ApplistDetector development by creating an account on GitHub.

github.com

Or if you want to descend into new depths of paranoia and overexamining and worrying about things to levels the average Momo user could only dream of:

Releases · byxiaorun/Ruru

An android sample app of detecting suspicious apps like magisk manager - byxiaorun/Ruru

github.com

Backup and Restore functions are available via the gear icon in HMA as well so you dont have to create a root template and tick all those apps again on a new installation, with the exception of one package....

At restore time you will need to add your renamed (hidden) Magisk Managers name back to the Root blacklist template and reboot


@zgfg, since you got me into the whole HMA thing, can you double check my work, please, see if ive explained it correctly, or made any obvious boo boos/ponkles?

Next this
Does any of this stuff causes bootloop? Cant lose data

 

[zgfg]

Next this
Does any of this stuff causes bootloop? Cant lose data

HMA does not cause bootloop (of course, unless you maybe start hiding system apps from the other system apps, some idiotic things)

 

[pndwal]

Next this
Does any of this stuff causes bootloop? Cant lose data

Nb.
HMA V3.0.0 Beta and above:

"3. No longer need the Magisk module, make sure to uninstall it, or you will bootloop"
https://github.com/Dr-TSNG/Hide-My-Applist/releases

So ensure MagiskExtension .zip Magisk module for 2.x HMA is uninstalled or was never installed... PW

 

[huskydg]

Many (most?) banks now require deviceIntegrity... You need to fix this...

Do you have @Displax's modded/forked USNF module w/ fix for deviceIntegrity?...

PW

As i tested there were not much apps

 

[73sydney]

Nb.
HMA V3.0.0 Beta and above:

"3. No longer need the Magisk module, make sure to uninstall it, or you will bootloop"
https://github.com/Dr-TSNG/Hide-My-Applist/releases

So ensure MagiskExtension .zip Magisk module for 2.x HMA is uninstalled or was never installed... PW

I'll add this to the "mini guide"

I'll add pictures for the setup during the week

update: bootloop warning and HMA v2 magisk module and apk uninstall advice added:

Note #1 (Versions): Do NOT use the downloader in Lsposed Manager to download it, currently thats the last v2 official, you want the v3 beta

Note #2 (Bootloops): HMA v2 also used a companion magisk module, that if you forgot uninstall when uninstalling HMA itself, would cause a bootloop. HMA v3 DOES NOT require a magisk module to achieve its purpose, so please DO NOT attempt to install HMA v3 over the top of HMA v2, or install the magisk module from HMA v2 separately, in conjunction with v3. If you have HMA v2 installed, please uninstall the HMA v2 magisk module via Magisk Manager, then remove HMA, and reboot, before installing HMA v3.

 

[msohail_7]

Nb.
HMA V3.0.0 Beta and above:

"3. No longer need the Magisk module, make sure to uninstall it, or you will bootloop"
https://github.com/Dr-TSNG/Hide-My-Applist/releases

So ensure MagiskExtension .zip Magisk module for 2.x HMA is uninstalled or was never installed... PW

Thanks will try and see how it goes.

 

[73sydney]

Hide My AppList Guide i started in a post in this thread is now in its own thread here:

Hide My Applist - A Brief Guide

Hide My Applist Guide As i'm no longer active on XDA, to make the guide more easily maintainable (multiple editor access etc) going forward, i have moved it offsite to github at the following address...

forum.xda-developers.com

 

[alawadhi3000]

Can anyone assist with BenefitPay app?

BenefitPay - Apps on Google Play

Consumer application allowing customer to pay using their mobile in Bahrain.

play.google.com

The app is in the denylist & Magisk manager app was renamed, it still detects the root, tried shamiko as well and it didn't help.

 

[73sydney]

Can anyone assist with BenefitPay app?

BenefitPay - Apps on Google Play

Consumer application allowing customer to pay using their mobile in Bahrain.

play.google.com

The app is in the denylist & Magisk manager app was renamed, it still detects the root, tried shamiko as well and it didn't help.

Tested (S20+ 5G A13) :

Magisk (official & hidden)
Universal SafetyNet Fix (Mod 2)
Shamiko

Result: FAIL

Magisk (official & hidden)
Universal SafetyNet Fix (Mod 2)
Shamiko
Hide My Applist

Result: FAIL

Magisk (official & hidden)
Universal SafetyNet Fix (Mod 2)
Shamiko
Hide My Applist
Developer Settings Disabled

(which gives as clean a result as ive ever gotten on detection apps)

Result: FAIL

Perhaps someone with Magisk Delta could test this one?

Its a weird one, doesnt even open a gui before announcing via a bottom toast its found root, i did logcat it and can see its doing the usual things like checking the device fingerprint and security patch, but beyond that i dont see anything that makes any sense to a non reversalist

 

[huskydg]

Perhaps someone with Magisk Delta could test this one?

Work fine for me (tested with zygisk/riru+magiskhide)

 

[alawadhi3000]

Perhaps someone with Magisk Delta could test this one?

Its a weird one, doesnt even open a gui before announcing via a bottom toast its found root, i did logcat it and can see its doing the usual things like checking the device fingerprint and security patch, but beyond that i dont see anything that makes any sense to a non reversalist

I'm suspecting that it shows root detected just for unlocked bootloader.

 

[huskydg]

I'm suspecting that it shows root detected just for unlocked bootloader.