Pass SafetyNet on Rooted Android 12/13/14

[See UPDATE at the end of this guide] This guide will show you two different methods to pass the SafetyNet Test on your rooted Android 12/13/14 device. The latest iteration of the OS has brought in a plethora of new and intriguing features. Some of the noteworthy ones include the likes of new photo pickers, lock screen customizations, Notification Flash, Auto-Confirm Lock Screen [finally!], and Predictive Back Gesture. However, all these are just what the OEM has to offer.

If you wish to step into unchartered territory, then the first prerequisite is to gain administrative privileges. This could be done either by flashing the Magisk patched boot.img or by flashing the Magisk App via TWRP. Once you do so, you will get access to the system partition. This in turn will allow you to flash Magisk Modules, Xposed Framework, Substratum Themes, and a plethora of other tweaks as well. However, all these tweaks come at a cost……

What is Safety in Android?

As soon as you successfully root your device, it will end up triggering a safety flag. Also known as SafetyNet, this is an API that is embedded into your device by Google in order to check if your device has been modified or not. Only when your device is able to pass this test will you be able to use certain types of apps.

Moreover, Google has switched over from BASIC (which was easier to bypass) and has now implemented the Hardware-based Attestation, which can’t be easily fooled. But fret not, there’s still a handy way out. You could spoof the BASIC Attestation over the current Hardware-based which in turn will allow you to easily able to pass the SafetyNet Test on your rooted Android 12 device.

What if SafetyNet Fails?

Well, if the test fails, then you wouldn’t be able to use any banking apps or streaming services like Netflix that make use of WideVine Certification. Along the same lines, games like Pokemon Go wouldn’t function along the expected lines.

The basicIntegrity and ctsProfile Tests

All these apps just check for the SafetyNet flag’s value, and if it comes out to be ‘Failure’, then it wouldn’t allow you to carry out its functionality onto your device. In this regard, these apps carry out two SafetyNet tests- the basicIntegrity and ctsProfile. In order to successfully use these apps, you will have to pass both these tests (passing just one wouldn’t do any good, see the below image).

However, with each new release of Android, things are becoming a tad difficult. And the recent development surrounding Magisk does do any good to the tech enthusiast either. But the fact that it’s an open-source platform is more than sufficient for us. And making full use of the same, this guide will show you the steps to pass the SafetyNet Test on your rooted Android 12/13/14 device. Follow along.

How to Pass SafetyNet on Rooted Android 12/13/14

Given below are two different methods to get this job done. The second method is the old and lengthier approach but initially, it was our only escape route. However, now there is a new and shorter approach available as well, which we have listed in Method 1 [recommended]. With that said, both these methods should work on your device, but you should give higher preference to Method 1 itself.

Likewise, the process has been tested on both Android 12 and 13 [should also work on older Android versions]. So on that note, let’s get started. Droidwin and its members wouldn’t be held responsible in case of a thermonuclear war, your alarm doesn’t wake you up, or if anything happens to your device and data by performing the below steps.

METHOD 1: Pass SafetyNet via SafetyNet Fix Module [NEW]

The shorter of the two methods, this doesn’t require you to spoof the device’s fingerprint or flash the Magisk Hide Props Config, all thanks to tweaks made by the developer of the Universal SafetyNet Fix Module.

STEP 1: Hide Magisk App

1. Launch the Magisk App and tap on the settings icon situated at the top right.
2. Then tap on Hide the Magisk App > Enable the toggle next to Allow apps from this source.
3. Assign a new random name to this Magisk app and hit OK.
4. It will now ask for a home-screen shortcut, tap OK [recommended].

STEP 2: Enable Systemless Hosts

1. Launch the Magisk App and tap on the settings icon situated at the top right.
2. Then tap on Systemless hosts.
3. Now go to the Modules section and verify that it has been added.

STEP 3: Enable Zygisk

1. Launch the Magisk App and tap on the settings icon situated at the top right.
2. Then enable the toggle next to Zygisk and restart your phone.
3. Now launch Magisk and make sure that it says YES next to Zygisk.

STEP 4: Flash Universal SafetyNet Fix Module

1. Download the new Universal SafetyNet Fix module from below:

   SafetyNet Fix module v2.3.1-MOD_3.0
   Safetynet-fix-v2.4.0-MOD_2.0.zip
   

2. Then launch Magisk, go to the Modules section and tap on Install from Storage.
3. Navigate to the downloaded safetynet module and select it.
4. It will now be flashed. Once done, hit Reboot.

STEP 5: Configure Denylist

Denylist is the new name for the traditional Magisk hide. You could use this functionality to hide root from the desired apps, apart from the three compulsory apps listed below.

1. Launch the Magisk App and tap on the settings icon situated at the top right.
2. Then enable the toggle next to Enforce Denylist. Now tap on Configure Denylist.
3. Then expand the following apps and checkmark all its services

   Google Play Service
   Google Play Store
   Google Service Framework
   Google Play Protect Service [if present]

   

4. After that, do the same for the banking/payment app of your choice.
5. NOTE: Upon restart, the Google Service Framework might get unchecked and Google Play Services might be missing from the DenyList. This is just a UI bug and nothing to worry about [as they are still active in the backend].

STEP 6: Delete Data

You will now have to delete the app data of all the apps from which you have hidden root. These include the compulsory Google apps and the desired apps of your choice.

1. Head over to Settings > Apps and select Google Play Service.
2. Then go to its Storage section and tap on Manage Space > Clear all data.
3. After that, delete the data of Google Play Store and Google Play Protect Service [if present].
4. Then tap on the overflow icon situated at the top right and select Show System.
5. This will bring up the system apps. Select Google Service Framework and delete its data.
6. Finally, delete the data of the banking/payment apps from which you have hidden root. Once done, restart your device [compulsory].

STEP 7: Check SafetyNet Test Results

1. Download and install the YASNAC app from Play Store.
2. Then launch it and tap on Run SafetyNet Attestation.
3. You should now get Pass under both Basic Integrity and CTS Profile Match.

That’s it. these were the steps to pass SafetyNet on your rooted Android 12/13/14 device. If you have any queries concerning the aforementioned steps, do let us know in the comments. We will get back to you with a solution at the earliest.

METHOD 2: Pass SafetyNet using Magisk Hide Props Config [OLD]

This is the lengthier of the two methods and involves spoofing the device’s fingerprint to one of the older devices that followed Basic Attestation and were easier to bypass.

STEP 1: Install MagiskHide Props Config

1. Download the MagiskHide Props Config module from GitHub/XDA and send it to your device.
2. Then launch the Magisk App onto your device.
   
3. Now tap on Install from Storage, select the Module, and hit Install.
4. Once the installation is complete, hit the Reboot button situated at the bottom right.

STEP 2: Force Basic Attestation

We will now be starting with the implementation of the BASIC attestation on top of the hardware-based so that it becomes easier to bypass. Here’s how it could be done:

1. First off, install any terminal emulator app on your device (such as the Termux app).
2. Now launch it and type in the below command:

   su -c props

3. You will now get a Superuser Request, tap Grant.
4. It shall now launch the MagiskHide Props Config within the terminal itself. Type in 2 [Force BASIC Key Attestation] and hit Enter.
   
5. This shall take you to the Force BASIC Key Attestation page. By default, the value will be set to Nexus 5.
6. While there is no particular value as such that would surely spell out success, but the one from Nexus 6P or Pixel 3A seems to be giving the best results.
7. In this regard, I have used the Nexus 6P value on my rooted Pixel 4A running Android 12 and was able to pass the Safetynet, so let’s choose that one [Read FAQ at the end]. To do so, type in d [Yes, pick value from device list] and hit Enter.
8. Then type in 7 [Google] and press Enter. After that, type 5 [Google Nexus 6P] and hit Enter.
   
9. It will now ask you to confirm the selected value, type y [YES], and hit Enter.
10. Finally, you will have to reboot the device. So type y [YES] and press Enter.
    

STEP 3: Instal Riru Module

Next up, you will have to install the Riru Module, which is a prerequisite for the SafetyNet Fix Module (STEP 5).

1. Download the Riru Module from GitHub and transfer it to your device.
2. Then launch the Magisk App and go to the Modules section.
3. Now tap on Install and wait for the process to finish.
4. Once done, tap on the Reboot button that appears at the bottom right.

STEP 4: Flash SafetyNet Fix

This module will help us to implement the BASIC attestation on top of the hardware one. And yes, it is the final piece of this jigsaw, completing which you would have achieved success.

1. Download the SafetyNet Fix module corresponding to your Android version from below:

   Android 12: Universal SafetyNet Fix Magisk Module [Credits: XDA Senior Member kdrag0n]
   Android 13: Modified SafetyNet Fix Module [Credits: XDA Senior Member displax]

2. Now transfer this module to your device and launch the Magisk App.
3. Then go to the Modules section and tap on Install from Storage.
   
4. Browse to the Universal SafetyNet Fix Magisk Module and select it. The module will now be flashed.
5. Once done, tap on the Reboot button that appears at the bottom right.

STEP 5: Enforce Deny List and Enable Zygisk

Deny List is the new name for Magisk Hide. For the unaware, it is the feature through which you could hide root from various installed apps onto your device. So let’s first enable this Deny List and then configure it according to the requirement.

1. Launch the Magisk App onto your device
2. Then tap on the Settings icon situated at the top right.
3. Now enable the toggle next to Zygisk and Enforce Deny List.
   
4. Now restart your device for the changes to take place. Then launch Magisk and make sure it says YES next to Zygisk.
   

STEP 6: Configure DenyList

1. Under the Magisk Settings menu, tap on Configure DenyList.
2. Now, select the desired user apps in order to hide root from it [optional].
   
3. After that, tap on the overflow icon situated at the top right and select Show System App.
4. Now checkmark Google Play Protect Services [if present], Google Play Services, Google Play Store. and Google Service Framework.
   
5. NOTE: Upon restart, the Google Service Framework might get unchecked and Google Play Services might be missing from the DenyList. This is just a UI bug and nothing to worry about [ they are still active in the backend].

STEP 7: Hide Magisk App

1. Go to the Magisk settings menu and tap on Hide the Magisk App.
2. Then give it the desired name of your choice and tap OK.
   
3. The hiding process will now begin. Once done, it will ask whether you wish to have the app shortcut on the home screen.
4. For ease of convenience, you may select Yes and then tap on the Add to Home Screen button.
   

STEP 8: Delete Play Service and Play Store Data

1. Head over to Settings > Apps > See All Apps.
2. Then select Google Play Service and go to its Storage and Cache section.
3. After that, tap on Manage Space > Clear All Data.
   
4. Once that is done, go back and select Google Play Store.
5. Then go to the Storage and Cache section and tap on Clear Storage > OK.
   

STEP 9: Check SafetyNet Results

UPDATE 1: The latest update to the Magisk app has removed the option to check SafetyNet. So you will now have to take the help of a third-party app. As for this guide, we will be using the YASNAC – Yet Another SafetyNet Attestation Checker.

1. So download YASNAC from the Play Store and install it onto your device.
2. Then launch the app and tap on Run SafetyNet Attestation.

   

3. You should now get the Pass result under both the basicIntegrity and ctsProfile sections.

The older method of checking Safetynet via Magisk is preserved below:

1. To begin with, launch the Magisk App and tap on Check SafetyNet.
2. If this is the first time, you are performing this check, then Magisk will notify you to download the proprietary code, tap OK.
   
3. As soon as it gets downloaded, the results will be right in front of you.
4. It should spell out the Success message with both the basicIntegrity and ctsProfile tests having a checkmark next to them.

These were the steps to pass the SafetyNet Test on your rooted Android 12/13/14 device. If you have any queries concerning the aforementioned steps, do let us know in the comments. We will get back to you with a solution at the earliest.

Update for Android 13/14

For my device running Android 14, I chose Pixel 3 and selected Android 1o as the OS in STEP 2 above. So if you have any doubts, then it’s better to select that one as it has been tried and tested.

Attaching hereby are the results of passing SafetyNet on rooted Android 13/14:

UPDATE: Use Play Integrity Instead of SafetyNet

Most apps have already ditched SafetyNet and moved over to Play Integrity. So instead of trying to pass the former, you should instead pass the latter, the instructions for which are given in the below-linked guide:

How to pass ‘Meets Device and Basic Integrity’ via Play Integrity Fix

• How to Pass SafetyNet test after installing Xposed or EdXposed
• Fix Magisk Safetynet API Error: Detailed Guide
• How to Fix ctsProfile Mismatch Error on Rooted Android
• Bootloop after installing/updating Magisk: How to Fix