• Introducing XDA Computing: Discussion zones for Hardware, Software, and more!    Check it out!

[ROOT] [Extreme Syndicate] [G965U/U1]

Search This thread

klabit87

Senior Member
Jul 11, 2011
3,004
2,263
This method is brought to you entirely by @elliwigy He is the reason for this exploit and method.
With that being said, Extreme Syndicate Root is now available!


Disclaimer:

The Extreme Syndicate team and it's affiliates are not responsible for your actions or your device if any issues are to arise. You flash this and utilize these files at your own risk. You have been warned!


The Adventure!:

I will not get into any technical details here. Just know that this method has taken me ~1 year from start to finish. I also went through a number of devices during this time (at least 7 devices), even sold my original N9 then somehow ended up with another one before this root method was found. Some of us devs might be a bit burnt out so don't get upset if we are not in here all day every day answering everyones questions. We hope users will help eachother, that is what XDA is all about! Also, if you want more real time conversation/support then please join our Telegram group (link posted below) as this is easier for us to moderate and allows discussion to be had in real time. I don't always check XDA messages or PM's as it can be a lot and very tiresome so your best bet is Telegram!

Also, donations/money is not expected or required but if you feel obliged to share what you can then that would be greatly appreciated! Donations keep me on the grind and sometimes can even help me in acquiring other devices to work on. I had issues with Paypal a while back (SamPWND days) and do not have a Paypal account. I do however have a Venmo and Transferwise accounts that work in most situations.

Venmo - http://www.venmo.com/Thomas-Huntington-10

Transferwise - PM @elliwigy for info to donate using Transferwise.


Now Let's get into the files/method!

Notes:
- This does NOT trip KNOX so don't ask.
- Bootloader is of course still locked.
- This uses some partitions from combo firmware which means 80% battery.
- Each variant will have its own post in its own section. N9 in N9 section, S9 in S9 section, S9+ in S9+ section.. Make sure youre in the right one!
* Variants this should work on are: N960U/U1/W, G965U/U1/W, G960U/U1/W. If you do not have one of these variants then this forum is not for you!
- Initial files/method will leave you on Oreo stock root.
* Some users were successful in running Pie GSI but the initial posts will not include this. Others will do this and maybe down the road threads will be updated.
- It works on latest rev's from rev1 up to the most recent revs.
- As of the initial first release, all variants have an issue with MTP not working, we are working on it however.
- S9 and S9+ also might have some issues with the selfie cam. Also being looked into.
- There will be 3 threads created as this method works on 3 different variants. These groups will be facilitated by the following:
- Note 9 @elliwigy
- S9+ @klabit87
- S9 @jrkruse
- Telegram Support Group for All 3: https://t.me/joinchat/DxwvAlhtzHjg4EI9973BGQ


INSTRUCTIONS:

1. Downloads: https://www.androidfilehost.com/?fid=4349826312261714687

2. In odin folder flash the combo firmware

3. Once combo is booted up run the root bat. When done phone will reboot to download.

4. In odin flash the bootswap.tar.md5 file. What this does is swaps the boot and recovery images which allows system to be mounted rw.

5. Now when done flashing you need to hold the buttons to boot to recovery but since we swapped boot and recovery images it will boot system.

6. Now put your phone in airplane mode. This must be done whenever using Flashfire. Copy the system.img, vendor.img, and ODM zip files to your phone.

7. In Flashfire, choose zip and select the odm zip. Make sure you select the option to mount system. Then choose firmware and choose the system.img and the vendor.img. Then choose data wipe and wipe user and system data (the default choices). Make sure inject super su is NOT enabled. Disable it. Do not let flashfire inject root!!

8.. Now click flash. When finished you will have to hold buttons to reboot to recovery until you see boot animation. You must do this on every reboot. If you do not it will reboot to stock recovery. If it reboots to stock recovery just reboot system and hold buttons to reboot to recovery again.

9. When rom is booted up your computer will not recognize the phone for mtp file transfer. Adb does still work so you can transfer stuff that way (you need to switch to ptp transfer method in the dropdown) or use USB adapter and use a thumb drive.

10. Biometrics do not work so don’t try to setup fingerprint or face recognition.

Some GSI may work. YMMV


ShoutOuts:

@jrkruse - Helping me over the years and for all his contributions.
@klabit87 - Ditto
@me2151 - Ditto
@gsm-CHEN - Ditto
@mweinbach - For always posting my achievements on the XDA News portal as well as giving me someone to troll sometimes when bored.
@ShaDisNX255 - He was our best tester, give him credits for testing out GSI as well!
@everyone else I am forgetting!


ENJOY!
 
Last edited:

Litleck

Member
Aug 14, 2017
34
0
Graniteville
Glad to see that root is actually possible on the S9+.
I'm not gonna try it just yet cause there are a few things I can't lose like the fingerprint and capped at 80% battery.
Good job on finding this method, I'll keep watching this and see what changes.
 

billa

Senior Member
Mar 30, 2006
731
356
Glad to see that root is actually possible on the S9+.
I'm not gonna try it just yet cause there are a few things I can't lose like the fingerprint and capped at 80% battery.
Good job on finding this method, I'll keep watching this and see what changes.

There's likely not going to be a fix for those restrictions (it's the signed kernel which is the key to this exploit), so instead of waiting you're better off getting the G965F version with unlocked bootloader, custom recovery, and no restrictions.

By the way, the flipping of the boot with recovery exploit is simply brilliant! ;)
Why didn't I think of that?! lol
 
Last edited:

elliwigy

Forum Moderator / Recognized Dev / Dev Relations
Staff member
XDA App Taskforce
There's likely not going to be a fix for those restrictions (it's the signed kernel which is the key to this exploit), so instead of waiting you're better off getting the G965F version with unlocked bootloader, custom recovery, and no restrictions.

By the way, the flipping of the boot with recovery is brilliant! ;)

yea.
im surprised samsung is that sad when it comes to these vulns lol.. even sadder it took me so long before finding it..

hell i even gave up and sold my n9 before getting anpther then it happened within the day practically lol.. was prolly burnt out after a year and missed the obvious
 

billa

Senior Member
Mar 30, 2006
731
356
yea.
I'm surprised samsung is that sad when it comes to these vulns lol.. even sadder it took me so long before finding it..
hell i even gave up and sold my n9 before getting anpther then it happened within the day practically lol.. was prolly burnt out after a year and missed the obvious


To some people, phones are like crack... but instead of smoking it, gotta crack it, not literally but the software. ;)

On a different note, have you noticed how XDA has been more quiet lately than usual... not sure what's up with that. Hmm...
 
Last edited:
  • Like
Reactions: TheMadScientist

Litleck

Member
Aug 14, 2017
34
0
Graniteville
There's likely not going to be a fix for those restrictions (it's the signed kernel which is the key to this exploit), so instead of waiting you're better off getting the G965F version with unlocked bootloader, custom recovery, and no restrictions.

By the way, the flipping of the boot with recovery exploit is simply brilliant! ;)
Why didn't I think of that?! lol

Wait, so the G965F would work? I'm currently on the SMG965U1 firmware.
 

TheMadScientist

Recognized Contributor
Guys I posted a link up for my s8 battery fix for 80% of any one rooted wants to try

---------- Post added at 02:21 PM ---------- Previous post was at 02:21 PM ----------

yea.
im surprised samsung is that sad when it comes to these vulns lol.. even sadder it took me so long before finding it..

hell i even gave up and sold my n9 before getting anpther then it happened within the day practically lol.. was prolly burnt out after a year and missed the obvious

That's funny

---------- Post added at 02:45 PM ---------- Previous post was at 02:21 PM ----------

To some people, phones are like crack... but instead of smoking it, gotta crack it, not literally but the software. ;)

On a different note, have you noticed how XDA has been more quiet lately than usual... not sure what's up with that. Hmm...

Just here in sammy. All the good devices with unlockable bootloaders are hot hot hot ???
 

billa

Senior Member
Mar 30, 2006
731
356
Guys I posted a link up for my s8 battery fix for 80% of any one rooted wants to try
Just here in sammy. All the good devices with unlockable bootloaders are hot hot hot



I like it at 80%, hell can you make one with a limit of just 50%? The battery life will last longer. xD jk!
I'll give it a try when I find some spare time.

But seriously what's up with all this quietness here on XDA (not just this thread but all over in general).... a root like this a year ago drew people in by droves... now it's like crickets... one can even hear the chirping. :/
 
Last edited:
  • Like
Reactions: TheMadScientist

creep138

Senior Member
Apr 21, 2011
321
66
clearwater
I like it at 80%, hell can you make one to limit it to just 50%? xD
I'll give it a try when I find some spare time.

But seriously what's up with all this quietness here on XDA.... a root like this a year ago drew people in by droves... now it's like crickets... one can even hear the chirping. :/

I'm sure the lurkers are watching. I am. Just seeing where this takes off, have no interest in trying it
 

WuNgUn

Senior Member
Aug 5, 2015
1,137
226
Same here... 80% battery limit defeats the point of rooting. Running a GSI or Oreo is also a big miss...
Kudos to the team tho, for finding this vulnerability!
 

TheMadScientist

Recognized Contributor
I like it at 80%, hell can you make one with a limit of just 50%? The battery life will last longer. xD jk!
I'll give it a try when I find some spare time.

But seriously what's up with all this quietness here on XDA (not just this thread but all over in general).... a root like this a year ago drew people in by droves... now it's like crickets... one can even hear the chirping. :/

There are apps to limit charging all over. Yea. Either the super bowl or they all moved on. Dont know

---------- Post added at 08:19 AM ---------- Previous post was at 08:18 AM ----------

Same here... 80% battery limit defeats the point of rooting. Running a GSI or Oreo is also a big miss...
Kudos to the team tho, for finding this vulnerability!

I was getting 8plus hours of sot on my s8 with 80% charge. When I was rooted.
Maybe it's time for me to upgrade finally. I'm still on my s8. 2 + years
 

klabit87

Senior Member
Jul 11, 2011
3,004
2,263
The kernel along with the combination firmware itself is what is limiting it to 80%.

Someone with some time and motivation could possibly circumvent it with some crafty work.

Sent from my Pixel 2 XL using Tapatalk
 

Top Liked Posts

  • There are no posts matching your filters.
  • 22
    This method is brought to you entirely by @elliwigy He is the reason for this exploit and method.
    With that being said, Extreme Syndicate Root is now available!


    Disclaimer:

    The Extreme Syndicate team and it's affiliates are not responsible for your actions or your device if any issues are to arise. You flash this and utilize these files at your own risk. You have been warned!


    The Adventure!:

    I will not get into any technical details here. Just know that this method has taken me ~1 year from start to finish. I also went through a number of devices during this time (at least 7 devices), even sold my original N9 then somehow ended up with another one before this root method was found. Some of us devs might be a bit burnt out so don't get upset if we are not in here all day every day answering everyones questions. We hope users will help eachother, that is what XDA is all about! Also, if you want more real time conversation/support then please join our Telegram group (link posted below) as this is easier for us to moderate and allows discussion to be had in real time. I don't always check XDA messages or PM's as it can be a lot and very tiresome so your best bet is Telegram!

    Also, donations/money is not expected or required but if you feel obliged to share what you can then that would be greatly appreciated! Donations keep me on the grind and sometimes can even help me in acquiring other devices to work on. I had issues with Paypal a while back (SamPWND days) and do not have a Paypal account. I do however have a Venmo and Transferwise accounts that work in most situations.

    Venmo - http://www.venmo.com/Thomas-Huntington-10

    Transferwise - PM @elliwigy for info to donate using Transferwise.


    Now Let's get into the files/method!

    Notes:
    - This does NOT trip KNOX so don't ask.
    - Bootloader is of course still locked.
    - This uses some partitions from combo firmware which means 80% battery.
    - Each variant will have its own post in its own section. N9 in N9 section, S9 in S9 section, S9+ in S9+ section.. Make sure youre in the right one!
    * Variants this should work on are: N960U/U1/W, G965U/U1/W, G960U/U1/W. If you do not have one of these variants then this forum is not for you!
    - Initial files/method will leave you on Oreo stock root.
    * Some users were successful in running Pie GSI but the initial posts will not include this. Others will do this and maybe down the road threads will be updated.
    - It works on latest rev's from rev1 up to the most recent revs.
    - As of the initial first release, all variants have an issue with MTP not working, we are working on it however.
    - S9 and S9+ also might have some issues with the selfie cam. Also being looked into.
    - There will be 3 threads created as this method works on 3 different variants. These groups will be facilitated by the following:
    - Note 9 @elliwigy
    - S9+ @klabit87
    - S9 @jrkruse
    - Telegram Support Group for All 3: https://t.me/joinchat/DxwvAlhtzHjg4EI9973BGQ


    INSTRUCTIONS:

    1. Downloads: https://www.androidfilehost.com/?fid=4349826312261714687

    2. In odin folder flash the combo firmware

    3. Once combo is booted up run the root bat. When done phone will reboot to download.

    4. In odin flash the bootswap.tar.md5 file. What this does is swaps the boot and recovery images which allows system to be mounted rw.

    5. Now when done flashing you need to hold the buttons to boot to recovery but since we swapped boot and recovery images it will boot system.

    6. Now put your phone in airplane mode. This must be done whenever using Flashfire. Copy the system.img, vendor.img, and ODM zip files to your phone.

    7. In Flashfire, choose zip and select the odm zip. Make sure you select the option to mount system. Then choose firmware and choose the system.img and the vendor.img. Then choose data wipe and wipe user and system data (the default choices). Make sure inject super su is NOT enabled. Disable it. Do not let flashfire inject root!!

    8.. Now click flash. When finished you will have to hold buttons to reboot to recovery until you see boot animation. You must do this on every reboot. If you do not it will reboot to stock recovery. If it reboots to stock recovery just reboot system and hold buttons to reboot to recovery again.

    9. When rom is booted up your computer will not recognize the phone for mtp file transfer. Adb does still work so you can transfer stuff that way (you need to switch to ptp transfer method in the dropdown) or use USB adapter and use a thumb drive.

    10. Biometrics do not work so don’t try to setup fingerprint or face recognition.

    Some GSI may work. YMMV


    ShoutOuts:

    @jrkruse - Helping me over the years and for all his contributions.
    @klabit87 - Ditto
    @me2151 - Ditto
    @gsm-CHEN - Ditto
    @mweinbach - For always posting my achievements on the XDA News portal as well as giving me someone to troll sometimes when bored.
    @ShaDisNX255 - He was our best tester, give him credits for testing out GSI as well!
    @everyone else I am forgetting!


    ENJOY!
    3
    Guys I posted a link up for my s8 battery fix for 80% of any one rooted wants to try

    ---------- Post added at 02:21 PM ---------- Previous post was at 02:21 PM ----------

    yea.
    im surprised samsung is that sad when it comes to these vulns lol.. even sadder it took me so long before finding it..

    hell i even gave up and sold my n9 before getting anpther then it happened within the day practically lol.. was prolly burnt out after a year and missed the obvious

    That's funny

    ---------- Post added at 02:45 PM ---------- Previous post was at 02:21 PM ----------

    To some people, phones are like crack... but instead of smoking it, gotta crack it, not literally but the software. ;)

    On a different note, have you noticed how XDA has been more quiet lately than usual... not sure what's up with that. Hmm...

    Just here in sammy. All the good devices with unlockable bootloaders are hot hot hot ???
    3
    There's likely not going to be a fix for those restrictions (it's the signed kernel which is the key to this exploit), so instead of waiting you're better off getting the G965F version with unlocked bootloader, custom recovery, and no restrictions.

    By the way, the flipping of the boot with recovery is brilliant! ;)

    yea.
    im surprised samsung is that sad when it comes to these vulns lol.. even sadder it took me so long before finding it..

    hell i even gave up and sold my n9 before getting anpther then it happened within the day practically lol.. was prolly burnt out after a year and missed the obvious