Interesting piece of Software to Root your phone from your PC

This looks like a scam and the Nexus toolkit looks like a ripoff of a free work by an honest developer.

Furthermore, while I wrote this for a different wunder root, it's still topical here -

EarlyMon said:

Kingo root does not install a custom recovery.

If your device has a root method that includes a custom recovery, go with that even if it looks like extra steps.

Always proceed with caution when rooting or using root.

Proceed with extreme caution if you don't have a custom recovery and therefore cannot make a nandroid backup.

We have a daily stream of posts that begin and end saying -

"I accidentally deleted some files after rooting, my phone won't boot, I don't have a backup, please help."

No one is going to feel sorry for you, system files never get accidentally deleted,

You and the people who try to help you will end up frustrated if you're painted into a corner for no reason other than the wrong root.

Visit your device's All Things Root forum here, find out what your options are, and use things like Kingo as a last resort, and not as a first and only step if you can help it.

Click to expand...

/thread closed

Due to a reasonable private exchange, I'm reopening this thread.

Let the questions commence.

The flaw here is as I posted earlier - if there is an established rooting method that allows you to unlock your bootloader first, and install custom recovery, then you have a chance of having had enough good advice to make a nandroid backup of your phone BEFORE rooting.

Every day, we're flooded with requests from people who didn't know what they were doing, didn't read, didn't understand because of the promise of an easy root - took the easy way - and start deleting files until their phone breaks.

And when we ask which custom recovery they have and did they make a nandroid backup, they don't know what the hell we're talking about.

This method is a last resort, not the first thing you ought to run to - absolutely not the first thing you want to run to.

Furthermore, I personally don't trust a razzmatazz website to be perfectly free and safe when the same material is hosted directly by trusted devs here, at XDA, and other reputable dev sites.

Here are the app permissions -







Sorry, I'm deleting your apk download.

If someone wants something this invasive, they can go take their chances at that site - we're not going to endorse that download.

Furthermore - this uses exploits to obtain root.

AVG identifies it as being laden with malware - I'm not surprised. Exploits are considered malware - hence my warning that this ought to be a last resort.

http://www.avgthreatlabs.com/android-app-reports/app/com.zhiqupk.root/

Their domain registration says -

NGEMobi--The leading global mobile game distribution network and billing platform

Click to expand...

This root method is bait, there's their profit motive.

In fairness, the site was not blacklisted for malware on over 70 databases I checked.

Everyone shares everything - security is everyone's business.

I'm adverse to taking chances, think I will pass and move on.

Make no mistake - root exploits are not clever. (edit - some would say they are clever - I just can't place the right word here)

They are attempting to exploit weaknesses in the inherent system security.

Malware detection on this isn't a false positive.

Hello,

We are honored that @kepler777 has recommended our software Super Root Android on AndroidForum.

Let me introduce our company and products first. Super Root Studio is the software & application developer dedicated in Android operating system research and development. We work hard to provide users with best Android Rooting software "Super Root Android" and app "Root Master", which are able to fast, stably, and easily root Android devices and phones with high success rate.

We have got great success in China and our products got millions of users from Chinese and even users from other countries like India, Brazil, America, France, Russia, Tailand, etc. So we release our products in English version recently and want to spread to worldwide android users who need us.

We would like to clarify something some users have pointed out.

Firstly, custom recovery is only installed on Samsung models, because large scale of Samsung users want to root their phones, and so we have to use the official tool--Odin to root different Samsung devices. During this process, a custom recovery is installed indeed. But this recovery is examined entirely to make sure that it's no harm to the devices of our users.

Secondly, as we all know that rooting is the process of allowing users of smartphones, tablets and other devices running the Android mobile operating system to attain privileged control (known as "root access") within Android's sub-system. Please find the definition at http://en.wikipedia.org/wiki/Rooting_(Android_OS) and http://lifehacker.com/5789397/the-always-up-to-date-guide-to-rooting-any-android-phone. So some users may consider the process of root as so-called "exploit" which means to crack the system. But this process is not related to other Android system files and user data. After all, we only provide root method and tool for our users. Whether to root or not is your choice. And we have listed the advantages, disadvantages and risks of rooting. For more detail, please check at: http://root.ngemobi.com/faq.html

Last, I promise our product is clean. In addition, we have uploaded Super Root Android and Root Master to several famous and professional PC download sites including CNET. If our tools have malware identified by AVG, they won't be allowed to list on these sites.

Super Root Studio always do great efforts to develop or find more up-to-date rooting solutions and update our product to support more devices. If you guys have any valuable suggestions and ideas, please do not hesitate to contact us.

Regards,

Super Root Studio
http://root.ngemobi.com
Facebook: https://www.facebook.com/pages/Root-Master/860661650652972

All right, I'll bite...

Could you explain the rationale / reasons behind the various permissions the "Root Master" app is configured for?

• read phone status and identity
• take pictures and videos
• modify or delete the contents of your SD card
• read the contents of your SD card
• disable your screen lock
• full network access
• view network connections
• view wi-fi connections
• close other apps
• retrieve running apps
• draw over other apps
• control flashlight
• control vibration
• prevent phone from sleeping
• delete all app cache data
• install shortcuts
• measure app storage space
• modify system settings
• send sticky broadcast

Seems a bit much, don't you think?

Hello @Super Root Studio !

On behalf of the AndroidForums.com I'd like to thank you for your detailed response and for joining our forums. I hope that you'll devote time here helping people who use your tools.

Let's review the ideal rooting procedure together -

1. Unlock bootloader

This allows for installation of a custom recovery and for remounting /system as read-write.

2. Install custom recovery

This allows for a nandroid backup of the stock working system and for performing system installations and changes.

3. Obtain root (superuser) access

This is done with custom recovery by either flashing a package that contains an su binary library and its matching controller apk, or, installing a pre-rooted rom with those components already included.

That is the exact process taken by the Google Nexus One, every Nexus since, and now available with devices from a number of manufacturers including Samsung, HTC, Sony, and several others.

The non-ideal, but effective, root process used where that is not possible is to exploit system weaknesses, obtain root, and if feasible, work backwards from there and install a custom recovery.

Sadly, too many devices can't get to that last step. But, we have a saying - "Half a loaf (of bread) is better than none."

This leads us to three important definitions -

A. Temporary root - root access is achieved but lost after reboot. Changes made in one session are also lost in the reboot.

B. Permanent root - root access survives reboots as do any changes made during a session.

C. Full root - the device is permanently rooted and a custom recovery is installed.

Let's not have a complication over the word "exploit" - I'm the one that introduced it here.

I've used Android since Cupcake and have rooted since Donut - very often without the benefit of the ideal process I mentioned.

And before tools such as yours existed, individual methods had to be developed for each device.

I have been a team member helping to find those methods in the past, and to help bring forward the found procedures for end users.

The /system partition is locked to read-only access and no simple user command can change that, due to insufficient privileges.

But some system processes do have such privileges.

The non-ideal process therefore creates a state or condition to get one or more of those processes to use their privileges - or finds an unprotected state where privileges aren't enforced or are weak - to inject the su binary library into the /system partition.

By definition, that action is, and has always been, called an exploit.

It's not a negative term - only an accurate one.

And years back, when we didn't have sophisticated tools and the ideal situation, I once rooted one of my phones where I had to perform 78 manual steps (many in repetition) to access the exploit and achieve my goal for a fully rooted phone.

So, based on what you know about me now, and on what we both must agree on, let's review -

You have a permanent root tool, full root for Samsungs only (please correct me if I misunderstood your explanation).

Your tools root a very wide range of devices, despite their exploits not all being the same (although we hope limited to a small number).

Personally, I think that you must have very comprehensive software to achieve your claims. Well done!

Let's review my concerns -

I did not accuse your product of having any virus.

I would be surprised if no scanners alerted on your methods because of their nature. No system is perfect and your software exploits that.

I did pull down the direct download for your app. I believe that rooting with such a method ought not be taken lightly, especially in light of the many permissions required.

Neither ought you be surprised at my concern nor will I apologize for it, despite where your products have been endorsed.

You're unknown to us and we are vigilant because we're aware that we must be careful -

http://www.cs.cuhk.hk/~cslui/PUBLICATION/ASIACCS2014DROIDRAY.pdf

My first and enduring issue is simple - your tools may provide permanent root when full root may be available to the user.

Users ought always seek full root where possible.

Users must have deep trust in their tools and not because they work or some other sources say it's ok.

So -

Your tools have great power.

With great power comes great responsibility.

Your tools are unknown to us.

We are not children to be frightened of what we do not know. My earlier posts were not to make some sounds by cutting off the heads of some chickens to frighten away some monkeys.

Neither are we children to trust strangers with great power.

For the AndroidForums.com I can say clearly -

We are happy if we can have some 關係
with @Super Root Studio if you support our members for everyone's happiness. We can work together to make it happen if you will truly join us.

Neither am I speaking of some kind of 关系学 because we are not such a way.

If your tools can do what is required and if you will support full root when it is available, for the user's happiness, and if you can become active to support our members, we can come together and work for everyone's benefit.

Please give me your full, honest feedback.

Thank you,
EarlyMon

Lack of response is speaking very loudly.

I'd have to do the math on the supported device's kernels, but in passing, I haven't seen such a wide sweeping root solution which includes older phones since towelroot ala pinkie pie which works on older phones.

Yep.

Pretty clear we heard the death rattles from marketing on this one, fading into hiding when exposed to sunlight.

Shame but there it is.

@scary alien Thank you very much! Yes, you are right. The permissions of Root Master app are too much.

I asked this question to our developers. They admit this list is very old version, and now some of the permissions have no use yet. With versions updated in the past days, we just updated the rooting solutions but didn't change this permission list. Our team value this problem and will optimize the permission list in the next update soon. We will only keep those kind of permissions which are really required by some rooting solutions. Please believe we are not the company which will try to do harm to your phone.

We value any suggestions and questions from you and our users, and will always update our product to be better.

@EarlyMon I'm sorry to reply to you late. We are a very small team and recently we are busy with the next main upgrade of our software Super Root Android.

As I mentioned in our first post, our product achieved some success in China and we were surprised and happy to see that some users from other countries also find and use our product. So we translated our product to English and released it on our English site. Recently, we got some useful feedback from users and you. Therefore, our team began to upgrade our software, firstly, to make it more compatible with non-Chinese users’ experience and habits, secondly, make it support more devices, especially some new phones and non-Chinese phones.

After checking our last post and yours, I thought maybe there are some misunderstandings between us because of our language and culture differences. For example, the word "exploit" is usually considered as a negative term for us, so we tried to explain it in our last post.

You are very professional in Android phones and rooting field. We admit and respect that deeply in our hearts. And also, we value the questions and suggestions raising from you guys. I just want to say that our team works hard to provide safe and easy rooting software for users who have rooting requirements. So I'd like to honestly join you for users' benefit. However, as I said, we are a small team and are busy with works and tasks. It's hard for us to reply all questions in time. I sincerely hope you can understand that.

@Super Root Studio -

I value your response and appreciate your actions for our concerns.

I look forward to seeing what changes your team brings in the coming days.

@EarlyMon @scary alien @kepler777

Thank you for your support! This week, we updated Root Master and optimized the permissions you mentioned. It left the following permissions.

PERMISSIONS:
read phone status and identity
take pictures and videos
modify or delete the contents of your USB storage
read the contents of your USD storage
disable your screen lock
full network access
view network connections
view Wi-Fi connections
control vibration
prevent phone from sleeping
send sticky broadcast

By the way, the main upgrade of Super Root Android I mentioned in my last post will be finished in next week. Our developer told me it could support more 300 phone models after upgrade. Really, this surprised me. I look forward to it.

I'm really sorry, I typed it worry, tried to edit it but failed. Our upgrade of Supper Root Android will possibly support more 300 phone models, not 3000.