|
Welcome to the GSM-Forum forums. You are currently viewing our boards as a guest which gives you limited access to view most discussions and access our other features. Only registered members may post questions, contact other members or search our database of over 8 million posts. Registration is fast, simple and absolutely free so please - Click to REGISTER! If you have any problems with the registration process or your account login, please contact contact us . |
|
Register | FAQ | Donate | Forum Rules | Root any Device | ★iPhone Unlock★ | ★ Direct Codes ★ | Direct Unlock Source |
GSM Programming & Reverse Engineering Here you can post all Kind of GSM Programming and Reverse Engineering tools and Secrets. |
| LinkBack | Thread Tools | Display Modes |
02-13-2018, 02:12 | #20 (permalink) |
Major Poster Join Date: Nov 2015
Posts: 40
Member: 2487860 Status: Offline Thanks Meter: 1 | I don't know if somebody tried this before....but Since the device app checks the imei, is it possible to put a good imei of an unlocked phone, into another phone, try to unlock it using device app, if it becomes permanently unlocked, can you then change the imei again? and will the phone stay unlocked? |
12-20-2018, 21:28 | #21 (permalink) |
Junior Member Join Date: Aug 2012 Location: New York, NY, USA
Posts: 24
Member: 1801276 Status: Offline Sonork: 100.1647654 Thanks Meter: 7 | Pretty much was described here: https://forum.xda-developers.com/v20...nlock-t3821051 here are some updated about the device algo: Device send 2 requests to t-mobile server 1. First request includes IMEI (signed by certificate) 2 Second request includes IMSI if change imei by using any MITM tools it wont work as this will brake the signature. I used Frida to inject new imei into the unlock app request on the fly. ____ / _ | Frida 12.1.1 - A world-class dynamic instrumentation toolkit | (_| | > _ | Commands: /_/ |_| help -> Displays the help system . . . . object? -> Display information about 'object' . . . . exit/quit -> Exit . . . . . . . . More info at http://www.frida.re/docs/home/ Spawned `com.tmobile.simlock`. Resuming main thread! [Samsung SM-G386T::com.tmobile.simlock]-> hook start... Called - deviceID() 3528290656XXXXX and the reply is "Server not responding. Please try again later" The send request to server send IMSI only. And I am able to hook it using Frida. But this wont work as the unlock eligibility results or device flags got during the 1st server request. |
The Following User Says Thank You to Digitpress For This Useful Post: |
10-23-2021, 23:57 | #23 (permalink) |
Junior Member Join Date: Dec 2020 Location: Norway
Posts: 1
Member: 2974557 Status: Offline Thanks Meter: 0 | Here is the tmo v20 h918 unlock app that was linked in post #11 If I understand this google mess correctly this new link should work. gdrive /file/d/0B5Lqys5p5m_YWDJ3S3hJeHY0d28/view?usp=sharing&resourcekey=0-UU0gjP75hMWlj2CbLAqW3g can't post proper links... but you should figure it out easily enough |
Bookmarks |
| |
|