[GUIDE] How to bypass authentication and flash in EDL with NO auth for FREE

[VD171]

Trying to unbrick Infinix Smart 5 by MTK bypass,i got these.

I'm not sure.
Try to talk with developers here:

Issues · MTK-bypass/exploits_collection

Contribute to MTK-bypass/exploits_collection development by creating an account on GitHub.

github.com

 

[johnferno]

Thanks to:
chaosmaster / k4y0z: GitHub / XDA
xyzz / xyz`: GitHub / XDA
Dinolek: GitHub / XDA

• How to install:

1. Download the attached file: VD171_MTK-bypass.zip.

2. Extract the file and open the folder.

3. Run and install python: python-3.9.1-amd64.exe.
Keep atention: You need to select "Add Python to PATH" before starting the installation.

4. Open cmd or powershell and execute this command:
pip install pyusb pyserial json5

5. Go to the Driver folder and right-click on the cdc-acm.inf file, then click Install and then, close window.

6. Run and install filter wizard: libusb-win32-devel-filter-1.2.6.0.exe.

7. Launch filter wizard.

8. Select Install a device filter and click Next.

9. Connect powered off phone with volume- button to boot in EDL mode.

10. Once you see new MediaTek USB Port in the list, select it and click Install.

Now, you are ready for bypassing EDL !

• How to bypass:

1. Go to the Bypass folder. Run the script: bypass.bat.

2. Connect powered off phone with volume- button to boot in EDL mode.

3. Once you get "Protection disabled" at the end, without disconnecting phone and usb, run SP Flash Tool.

4. Once the SP Flash Tool opens, click Options > Options > Connection.

5. Select UART mode and select Baud rate to 921600.

Now, you are ready for flashing !

• How to update:

1. Download latest release of the tool: https://github.com/MTK-bypass/bypass_utility/releases/latest

2. Download latest release of payloads: https://github.com/MTK-bypass/exploits_collection/releases/latest

3. Extract the content of both files to the Bypass folder.

Now, you are updated !

• How does the bypass work?

Dissecting a MediaTek BootROM exploit

A bricked Xiaomi phone led me to discover a project in Github that uses a MediaTek BootROM exploit that was undocumented. The exploit was found by Xyz, and implemented by Chaosmaster. The initial exploit was already available for quite a while. Since I have managed to revive my phone, I am documenti

tinyhack.com

All Credits To:
chaosmaster / k4y0z: GitHub / XDA
xyzz / xyz`: GitHub / XDA
Dinolek: GitHub / XDA



Do you need help with your MERLIN device ?
Read this FAQ: https://forum.xda-developers.com/t/...for-merlin-redmi-note-9-redmi-10x-4g.4225163/


#NoAuth #NoAuthentication #No-Auth #No-Authentication #MediaTek #Xiaomi
#MiAuth #MiAuthentication #Mi-Auth #Mi-Authentication #XiaoMiAuth #free
#XiaoMiAuthentication #XiaoMi-Auth #XiaoMi-Authentication #unbricking
#unbricked #unbrick
#MTK #MT6572 #MT6735 #MT6737 #MT6739 #MT6750 #MT6765 #MT6762
#MT6761 #MT6768 #MT6771 #MT6785 #MT8127 #MT8163 #MT8173 #MT8695

THANKS SO MUCH ... U SAVED My DAY ..

 

[VD171]

THANKS SO MUCH ... U SAVED My DAY ..

You are welcome, my friend.
Enjoy

 

[Rishik Y]

Thanks to:
chaosmaster / k4y0z: GitHub / XDA
xyzz / xyz`: GitHub / XDA
Dinolek: GitHub / XDA

• How to install:

1. Download the attached file: VD171_MTK-bypass.zip.

2. Extract the file and open the folder.

3. Run and install python: python-3.9.1-amd64.exe.
Keep atention: You need to select "Add Python to PATH" before starting the installation.

4. Open cmd or powershell and execute this command:
pip install pyusb pyserial json5

5. Go to the Driver folder and right-click on the cdc-acm.inf file, then click Install and then, close window.

6. Run and install filter wizard: libusb-win32-devel-filter-1.2.6.0.exe.

7. Launch filter wizard.

8. Select Install a device filter and click Next.

9. Connect powered off phone with volume- button to boot in EDL mode.

10. Once you see new MediaTek USB Port in the list, select it and click Install.

Now, you are ready for bypassing EDL !

• How to bypass:

1. Go to the Bypass folder. Run the script: bypass.bat.

2. Connect powered off phone with volume- button to boot in EDL mode.

3. Once you get "Protection disabled" at the end, without disconnecting phone and usb, run SP Flash Tool.

4. Once the SP Flash Tool opens, click Options > Options > Connection.

5. Select UART mode and select Baud rate to 921600.

Now, you are ready for flashing !

• How to update:

1. Download latest release of the tool: https://github.com/MTK-bypass/bypass_utility/releases/latest

2. Download latest release of payloads: https://github.com/MTK-bypass/exploits_collection/releases/latest

3. Extract the content of both files to the Bypass folder.

Now, you are updated !

• How does the bypass work?

Dissecting a MediaTek BootROM exploit

A bricked Xiaomi phone led me to discover a project in Github that uses a MediaTek BootROM exploit that was undocumented. The exploit was found by Xyz, and implemented by Chaosmaster. The initial exploit was already available for quite a while. Since I have managed to revive my phone, I am documenti

tinyhack.com

All Credits To:
chaosmaster / k4y0z: GitHub / XDA
xyzz / xyz`: GitHub / XDA
Dinolek: GitHub / XDA



Do you need help with your MERLIN device ?
Read this FAQ: https://forum.xda-developers.com/t/...for-merlin-redmi-note-9-redmi-10x-4g.4225163/


#NoAuth #NoAuthentication #No-Auth #No-Authentication #MediaTek #Xiaomi
#MiAuth #MiAuthentication #Mi-Auth #Mi-Authentication #XiaoMiAuth #free
#XiaoMiAuthentication #XiaoMi-Auth #XiaoMi-Authentication #unbricking
#unbricked #unbrick
#MTK #MT6572 #MT6735 #MT6737 #MT6739 #MT6750 #MT6765 #MT6762
#MT6761 #MT6768 #MT6771 #MT6785 #MT8127 #MT8163 #MT8173 #MT8695

OMG THANK YOU SO MUCH
I dont know what i would have done without this guide

 

[VD171]

OMG THANK YOU SO MUCH
I dont know what i would have done without this guide

You are welcome, my friend.
Enjoy

 

[ginacomm]

after this guide, Should I follow this one? https://forum.xda-developers.com/t/...for-merlin-redmi-note-9-redmi-10x-4g.4229937/

 

[VD171]

after this guide, Should I follow this one? https://forum.xda-developers.com/t/...for-merlin-redmi-note-9-redmi-10x-4g.4229937/

Exactly.
First, you bypass auth and then use sp flash tool as you want.
Remember, if you remove usb cable, you need to bypass auth again.

 

[ginacomm]

Exactly.
First, you bypass auth and then use sp flash tool as you want.
Remember, if you remove usb cable, you need to bypass auth again.

Can I flash a custom rom with sp flash tool even though my device is in bootloop right now and I need to bypass auth? Or i need to flash the official firmware . If I need to flash the firmware , it has to be the fastboot or recovery?

 

[VD171]

Can I flash a custom rom with sp flash tool even though my device is in bootloop right now and I need to bypass auth? Or i need to flash the official firmware . If I need to flash the firmware , it has to be the fastboot or recovery?

I have no idea about how to flash a custom rom, my friend, I'm sorry.

 

[knightrio]

Thanks to:
chaosmaster / k4y0z: GitHub / XDA
xyzz / xyz`: GitHub / XDA
Dinolek: GitHub / XDA

• How to install:

1. Download the attached file: VD171_MTK-bypass.zip.

2. Extract the file and open the folder.

3. Run and install python: python-3.9.1-amd64.exe.
Keep atention: You need to select "Add Python to PATH" before starting the installation.

4. Open cmd or powershell and execute this command:
pip install pyusb pyserial json5

5. Go to the Driver folder and right-click on the cdc-acm.inf file, then click Install and then, close window.

6. Run and install filter wizard: libusb-win32-devel-filter-1.2.6.0.exe.

7. Launch filter wizard.

8. Select Install a device filter and click Next.

9. Connect powered off phone with volume- button to boot in EDL mode.

10. Once you see new MediaTek USB Port in the list, select it and click Install.

Now, you are ready for bypassing EDL !

• How to bypass:

1. Go to the Bypass folder. Run the script: bypass.bat.

2. Connect powered off phone with volume- button to boot in EDL mode.

3. Once you get "Protection disabled" at the end, without disconnecting phone and usb, run SP Flash Tool.

4. Once the SP Flash Tool opens, click Options > Options > Connection.

5. Select UART mode and select Baud rate to 921600.

Now, you are ready for flashing !

• How to update:

1. Download latest release of the tool: https://github.com/MTK-bypass/bypass_utility/releases/latest

2. Download latest release of payloads: https://github.com/MTK-bypass/exploits_collection/releases/latest

3. Extract the content of both files to the Bypass folder.

Now, you are updated !

• How does the bypass work?

Dissecting a MediaTek BootROM exploit

A bricked Xiaomi phone led me to discover a project in Github that uses a MediaTek BootROM exploit that was undocumented. The exploit was found by Xyz, and implemented by Chaosmaster. The initial exploit was already available for quite a while. Since I have managed to revive my phone, I am documenti

tinyhack.com

All Credits To:
chaosmaster / k4y0z: GitHub / XDA
xyzz / xyz`: GitHub / XDA
Dinolek: GitHub / XDA



Do you need help with your MERLIN device ?
Read this FAQ: https://forum.xda-developers.com/t/...for-merlin-redmi-note-9-redmi-10x-4g.4225163/


#NoAuth #NoAuthentication #No-Auth #No-Authentication #MediaTek #Xiaomi
#MiAuth #MiAuthentication #Mi-Auth #Mi-Authentication #XiaoMiAuth #free
#XiaoMiAuthentication #XiaoMi-Auth #XiaoMi-Authentication #unbricking
#unbricked #unbrick
#MTK #MT6572 #MT6735 #MT6737 #MT6739 #MT6750 #MT6765 #MT6762
#MT6761 #MT6768 #MT6771 #MT6785 #MT8127 #MT8163 #MT8173 #MT8695

Can I use this method for qualcomm devices?

 

[VD171]

Can I use this method for qualcomm devices?

No.
This is for mediatek only.
For snapdragon devices you should use a firehose preloader.

 

[blautanding]

Hi! I plugged my Redmi note 9 (locked BL) via usb while installing Device Filter(s) but can't seem to find the Mediatek USB Port. Is there a driver I need to install?

 

[Manjotbenipal]

Good work, my friend
It solves all our problems for unbricking

when i run the bypass.bat script while pressing volumedown button in poweroff state then i get thi error

it says
usb.core.NoBackendError : No backend available

 

[VD171]

when i run the bypass.bat script while pressing volumedown button in poweroff state then i get thi errorView attachment 5643125
it says
usb.core.NoBackendError : No backend available

I'm not sure about that error.
Please, contact developers here:

Issues · MTK-bypass/exploits_collection

Contribute to MTK-bypass/exploits_collection development by creating an account on GitHub.

github.com

 

[Manjotbenipal]

I'm not sure about that error.
Please, contact developers here:

Issues · MTK-bypass/exploits_collection

Contribute to MTK-bypass/exploits_collection development by creating an account on GitHub.

github.com

So will it be ok if i just skip auth by flashing preloader.bin in fastboot mode and then turn off my device and flash with spflash

Will i need to select preloader.bin in spflash again while flashing?
I want to downgrade from 12.5.5 to 12.0.2

 

[shamsaboubkr]

This error too after one successful trial

hi
were you able to unbrick the smart 5

 

[eljorn]

hello i need help because my xiaomi redmi 10 (selene) is hardbrick by bad flash i have the mediatek drivers but the bypass tool doesn't work and i don't know what to do.

 

[VD171]

hello i need help because my xiaomi redmi 10 (selene) is hardbrick by bad flash i have the mediatek drivers but the bypass tool doesn't work and i don't know what to do.

I'm sorry, I don't have experience with Redmi 10.

 

[techburn2603]

I am getting this error while flashing. Please help.

 

[matijacip]

Hello all masters.
I have a stuck in edl mode on note 11 pro.
And this step i need to do to finish my problem.

I do all steps, but when i hit bypass, cmd window popup, and i just get this.

[2022-10-27 22:51:36.125199] Waiting for device

and nothing happens.