[フレーム]
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an alternative browser.

[GUIDE] 🛡️ How to Pass Strong Integrity on Android (Step-by-Step Guide)

Search This thread
By:
Advanced...

zgfg

Senior Member
Oct 10, 2016
12,573
12,695
Redmi K20 / Xiaomi Mi 9T
Xiaomi Mi 11
I have another question: is there any app that can tell me exactly where I failed the MEETS_BASIC_INTEGRITY or MEETS_DEVICE_INTEGRITY check?
Search on Play store for PI API Checker

Btw, you'll find things in the OP Posts in Tricky Store thread and Play Integriry Fork thread

Attachments

Last edited:

Johnn78

Senior Member
Apr 19, 2016
497
66

mOlDaViA

Senior Member
Dec 20, 2014
89
34
Samsung Galaxy S25 Ultra
Try the below module and tell me if it works. Flash it, restart your device and after open Magisk, find the ".Integrity Box" module and select "Action". Now check your integrity !

github.com

Releases · MeowDump/Integrity-Box

A toolkit for managing Play Integrity & System Environment - MeowDump/Integrity-Box
github.com github.com
Can confirm, does work like a charm!

Leox111

Member
Nov 21, 2025
6
0
Last edited:

Similar threads

Top Liked Posts

  • There are no posts matching your filters.
  • 3
    Sir can you help me im on cr droid gsi rom how to pass integrity plzz help me with a guide and module link im rooted with latest magisk ,,im waiting for you reply :)
    Try the below module and tell me if it works. Flash it, restart your device and after open Magisk, find the ".Integrity Box" module and select "Action". Now check your integrity !

    Releases · MeowDump/Integrity-Box

    A toolkit for managing Play Integrity & System...
    github.com github.com
    2
    Have almost the same setup:
    - KernelSU
    - Integrity Box
    - Play integrity fork
    - Tricky store + addon
    - NeoZugisk
    Everything works like a charm
    yeah, now i have this too.
    At first I thought LSPosed modules made a problem, so i deleted them, after reboot, problem remained the same.
    1) i removed zygisk-LSPosed and HMA (deleted), deleted Shamiko - reboot (banks still detected root)
    2) disabled zygisk in magisk setting, because "zygisk next" module is active - reboot
    3) disabled all apps in denylist - reboot
    4) enabled again the apps i need in denylist (to refresh zygisk next policy)- reboot
    5) in magisk settings , enable enforce deny list and reboot.

    it works now (android 14, custom rom for s21 ultra-dr.Ketan)
    1
    Hello guys i am on A14 (S21 Ultra, ONE UI 6.1), having Magisk Alpha (28001), also have failed integrity from yesterday and cant access apps like chatgpt. I was able to pass with enabled modules listed below:
    playcurlNEXT (v1.18)
    playintegrityFix-NEXT (v3.0)
    Shamiko (v1.1.1)
    Tricky store (v1.4.1) (only module, not the app)

    i am courious, does the guide from the first page still works for you and does anyone pass integrity with A14?
    Thank you for your help.
    Cheers!
    Instead of depending on the module for KB, download manually a valid KB from Key Hub

    One of the four KBs is now shadow-revoked, probably the one you got by your module:
    FraudExposure24102026

    But there are still three others ok there
    1
    how to download manually KB from key hub, how to access key hub?
    Search for the site, open, click to the KB to download. You have to pass Captcha, that you're not a bot, then you will be asked to login via TG (you must have account)

    Once you download a KB, you will need to wait 12 hours to be allowed to take the next one

    Take one of those marked by Meets Strong, not the shadow one (Meets Device), to avoid waiting half a day for getting the next/good one

    Downloaded KB copy/move to:
    /data/adb/tricky_store

    File must be named exactly:
    keybox.xml

    You can use root granted explorer like MiXPlorer or Terminal Emulator (avoid Termux).
    Some modules with WebUI provide an option to 'install' the custom KB file (they will do exactly what's described here)

    Execute killpi script.or reboot
    1
    how to download manually KB from key hub, how to access key hub?
    meanwhile i deleted all the modules and installed
    .integrity box
    Play integrity fork
    tricky store,
    Zygisk LSPosed
    Zygisk Next

    i managed to get 3 checkboxes on integrity checker, i managed to run app like chatgpt, but unfortunately banking apps wont even start , they crash on starting the app. some of banking apps used to work before, even when they detected root , now they crash when i open them. Some of the apps that are on deny list also detects root and dont allow me to enter... I tried to use hide my applist, but no luck
    Have almost the same setup:
    - KernelSU
    - Integrity Box
    - Play integrity fork
    - Tricky store + addon
    - NeoZugisk
    Everything works like a charm
  • 47
    This tutorial will help you successfully pass Basic, Device, and Strong Integrity checks in both Legacy and New Play Integrity responses. Make sure to follow each step carefully.

    🔧 Step 1: Remove Old Modules​


    Before starting, remove any previously installed modules related to Play Integrity Fix to avoid conflicts.


    📥 Step 2: Download Required Components​


    Download the following tools and modules:

    ⚙️ Step 3: (Optional) Install KSU Web UI​


    Only if you're using Magisk install one of the following:

    🔄 Step 4: Reboot Your Device​


    Once all components are installed, reboot your phone to apply the changes.


    🛠️ Step 5: Configure PlayIntegrityFix​

    1. Open PlayIntegrityFix.
    2. Turn off the option "Spoof SDK version to Play Store".
    3. Tap Fetch pif.json to retrieve the config file.

    🧩 Step 6: Configure TrickyStore​

    1. Open TrickyStore.
    2. Tap the Action button (bottom right).
    3. Tap the menu (⋮)and select:
      • Select All
      • Deselect Unnecessary
      • Set Valid Keybox

    📅 Step 7: Set Security Patch Date​

    1. Tap the menu again.
    2. Select Set Security Patch.
    3. Tap Get Security Patch Date.
    4. Then tap Save.

    🚫 Step 8: Disable ROM Spoofing (Important)​


    If you're using a custom ROM, make sure to disable any ROM/GMS spoofing options, as they can interfere with the Play Integrity results.


    ✅ Step 9: Verify Strong Integrity​


    Use the following app to check your integrity status:
    If everything was done correctly, you should now pass:
    • Basic Integrity
    • Device Integrity
    • Strong Integrity
    For both legacy and new response formats.


    ⚠️ Important Note​


    Avoid checking Play Integrity too often.
    Only do it when absolutely necessary. Too many checks can make Google suspicious and may cause your device to start failing integrity even if it was previously passing.
    7
    What is A13 and A13+ ?🤔
    I have mentioned above which thread is relevant with the deeper insight (not only a guide and complaints it doesn't work for me)

    Shortly about the terminology

    A13+ means Android 13 or higher
    <A13 means strictly lower than Android 13, thus Android 12 or lower

    It is related to the SDK level
    A13 = SDK level 33, thus A13+ means SDK level 33 or higher
    A12 = SDK level 32, thus <A13 means SDK level 32 or lower

    It is related to the deviceAttributes, sdkVersion in the PI Verdict Json - see the attached screenshots

    One is showing Device Integrity with sdkVersion 32, so that was <A13 PI test relevant for Wallet (you must pass that to be able to use Wallet; but Wallet may need up to 72 hours to start working again if it was previously lost)

    The other is showing Strong Integrity with sdkVersion 35, so that was Strong for A13- and although nice to have, that Strong is really not relevant for Wallet

    To trigger <A13 test you have to TEMPORARILY set
    "spoofVendingSdk"' :"1"
    in the custom.pif.json - assuming you're using PI Fork module.
    And then run killpi sh script

    If you use PI Fix Inject, take your time and find how is that exactly named in the WebUI menu (there is the option for, press and follow if asked something)

    Then test with PI API Checker (NOT from PlayStore Dev Options !!!!!)
    and after the test press <> button top-right, scroll down and read what it says for this sdkVersion

    After the test REVERT BACK to A13+:
    "spoofVendingSdk"' :"0"
    And again run killpi.sh script

    Or, In the PI Fix Inject, disable that option in WebUI menu that I mentioned above

    That is just top of the iceberg. There are other considerations you must be aware when testing <A13. I will not repeat them here, you can find it in the relevant thread, please particularly carefully read eg this post:
    https://xdaforums.com/t/module-play-integrity-fix.4607985/post-90312341

    Eg, it is described in details in that post about the pop-up errors you may experience when trying to test <A13, and how to address them

    Also, it is emphasized there about the problems with PlayStore you will have if you don't revert (quickly) to the A13+ set-up after the <A13 test

    Btw, this notation and terminology A13+ and <A13 might be confusing, maybe sdk33+ and sdk32- or so could be easier to understand, but that's how it is, it was introduced by others.

    It actually reflects the changes Google made on May 20 this year - A13+means the new PI Attesting for A13+ (Android 13 and higher), while <A13 means simulating the PI attesting as for the Android 12 and older devices (legacy PI attesting)

    And Wallet apparently (still) internally uses that Legacy PI attesting (both for legacy and A13+ devices) to check if the phone meets required security requirements

    That's the reason why to test that legacy <A13 PI on our new A13+ phones, to make sure that Wallet will work
    6
    I tried these instructions. Play Integrity API Checker shows all green but wallet complains and doesn't allow to use to pay, and spic shows no integrity. Weird...
    5
    Motorola Edge , Android 11 stock , magish 28.1


    For some reason, ReZygisk is causing PIX to not work for my.

    I changed ReZygisk to the combination of ZygiskNext + Zygisk-Assistant

    and then the combination of:

    PlayIntegrityFix + playcurlNEXT

    Now the tests do give me all three verifications, and for the first time, I got a strong verification, but the Galicia banking app still doesn't work. It keeps telling me it can't recognize my face. I don't know what else to do.


    edit:
    By adding the xposed module and the hide my app module, I managed to get the banking app to validate my biometrics and obtain a token, but the app doesn't work properly. I fixed the biometrics for my face, but the fingerprint to log in was broken.


    edit2:

    Now the banking app is working perfectly for me.
    What I did was go to the Tricky Store settings, leave the banking app checked for a few seconds, and then click the "?" option. That forcibly activated the security hack.

    I am happy
    4
    I'm on Android 14 running a Galaxy S23. I finally managed to get basic integrity working by disabling Tricky Store and running the Play Integrity Fork action. I was scratching my head all day, wondering why the integrity test kept failing, until I came across this forum. Hopefully, we’ll get a new keybox soon, so strong integrity starts working again.
    Basically what simplepinoi177 said.
    Just wanted to add that TS could interfere if the KB that's installed is revoked ( and spoofProvider=0 ), or if it's the AOSP KB, since it doesn't seem to be accepted.
    In his case though, could how you say TS interfering if the KB is revoked or AOSP KB actually give 0/3 not even BASIC (as inferred by him? "...finally managed to get basic integrity working")???


    What is the minimum integrity level X/3 for Google Wallet TapToPay on both API 32/35? I would say for Android >13 (35) is 3/3 and for Android < 13 (32) is 2/3 but i'm confused now.
    I was under the impression that this was the way, but there had been recent developments on Google's end that threw things in the muck and it seemed that even "flawed" STRONG wasn't even making it, and then recent reports that stated that it works now and they must've backtracked it....
    but that leads to the usual confusion on how many casual/novice users are freaking out that they get 3/3 A13+ but it not working for them (as they didn't check what they achieve <A13)...

AltStyle によって変換されたページ (->オリジナル) /