Bypass Authy integrity with Rooted Android phone

AuthyIntegrity.md

It took me 3 days to pass the error The device does not meet the minimum integrity requirements.

Finally, I exported my Authy from my Android 14 phone on custom ROM.

• Phone: Realme GT2
• ROM: custom ROM PixelOS
• State: Root already
• Android: 14
• Integrity: MEETS_DEVICE_INTEGRITY

Here are some steps for you:

1. Replace Magisk with Kitsune Magisk: https://github.com/HuskyDG/magisk-files/releases/

2. Install module PlayIntegrityFix: https://github.com/chiteroman/PlayIntegrityFix

3. Install module MagiskHidePropsConf: https://github.com/Magisk-Modules-Repo/MagiskHidePropsConf/releases

4. Reboot

5. Use https://github.com/TheFreeman193/PIFS to change finger print to pass MEETS_DEVICE_INTEGRITY

6. Open Kitsune: enable Zygisk, MagiskHide

7. Enable magisk hide for: com.google.android.gms, com.google.android.gms:unstable, Google Store

8. Clear Google Store, Google Play Service data then reboot again

9. Go to Google Store, install latest Authy. DONOT open it (make sure you install from google store, do not install apk)

10. Go to Kitsune, enable magiskHide for Authy (deny list)

11. Open Authy, login. ->> should login ok

12. Use Agis to import from Authy

13. Use Agis to export to QR HTML

refer: https://gist.github.com/gboudreau/94bb0c11a6209c82418d01a59d958c93

As of 20.01.2025, the above doesn't work as is.

Mainly, don't install MagiskHidePropsConf and don't use PIFS. (SKIP 3 and 5)

UPDATED STEPS:

1. Replace Magisk with Kitsune:
   • Download Kitsune
   • Run it and grant root access
   • Open Magisk
   • Press Install --> Direct install --> Reboot
   • Uninstall Magisk app, check root access with Kitsune
2. Install module PlayIntegrityFix: https://github.com/chiteroman/PlayIntegrityFix
3. Install module playcurlNext: https://github.com/daboynb/playcurlNEXT
4. Hide Kitsune Magisk
5. Reboot
6. (Optional) Check for MEETS_DEVICE_INTEGRITY with https://play.google.com/store/apps/details?id=gr.nikolasspyr.integritycheck.
   You don't need STRONG_INTEGRITY at the time of this post.
7. Continue from 6 till the end.

Everything else works. I was able to export using Aegis and finally abandon Authy.

If you want, edit your original gist with my changes. I got here from Google. Others might as well.

I did all the updated steps and I still can't get MEETS_DEVICE_INTEGRITY
I'm using android 9 Hades os for the Samsung note 8

Hello from Google. First off, thanks @KreAch3R for the updated January 19, 2025 instructions.

Just to share that as of this writing (March 2, 2025) this method is still works, it's pretty laborious and annoying but the good news is that my data is finally out of Authy and onto Ente Auth thanks to you guys.

Can't wait for my Poco. Going to finally get this damn Authy app off my phone. They are such a shitty company, I'm surprised people still use it. Make sure you guys go and rate the app 1 star on the app store. Terrible commpany. Bait and switch from the desktop version, can't export keys, and now their latest Android update doesn't have dark mode. Are they intentionally trying to piss people off? Where's Mario's sidekick when you need him.

Well? Did it work for you?

I'm trying to get this to work on an AVD emulator image since I don't have a rooted device, but not having any luck. Would be great to get any input or help from someone more knowledgeable about this process. I tried following the updated steps but it didn't work, but I may have easily done something wrong as well. It seems like it didn't work correctly for me because uninstalling Magisk still leaves an app called Magisk with no icon, and hiding Ktsune through its menu still left a working app called Kitsune Mask. I'm not really sure what to do with that.

Also after rebooting the virtual device, Kitsune doesn't seem to have root access after uninstalling Magisk. So I really must be doing something wrong.

@KreAch3R Any chance you could elaborate on the steps regarding replacing Magisk with Kitsune?

My devices passes integrity check (except strong), yet Authy still complains about integrity, does anyone knows if it now requires strong?

@mvrk69 did you follow 7,8,9,10 steps?

yes, meanwhile, it passed, i don't know if it was because i enabled on my main phone the option "Use an existing device to approve new device registration", but after that in the tablet it doesn't complain anymore about integrity and i was able to register it.

25.05.2025 Update. As of this writing, Authy now needs "STRONG_INTEGRITY" to allow you to login. -.-

I spent a lot of hours flashing roms, modules etc, to finally get it. Below are the steps that worked for me. (BEWARE: I do not know the author of the Integrity-Box module, and it installs system app(s). Use at your own will!)

I did this on an Oneplus 5. Stock Oxygen OS 10.0.1 didn't work. I do not know what's missing. I ended up flashing LOS 22 (Android 15, so it follows the Android 13+ Integrity checks) with MindTheGapps.

REQUIRED:

1. Magisk v29 (enable only Zygisk in Settings, hide app)
2. PlayIntegrityFix v19.1
3. TrickyStore v1.2.1
4. Integrity Box v1.1 (23-05-2025)

STEPS:

1. Install Magisk, hide app, enable Zygisk
2. Install PIF, TrickyStore
3. Reboot
4. Install Integrity Box, allow whatever it wants with volume up (Also check out this helpful video)
5. Reboot
6. You should have 3 greens including STRONG INTEGRITY included!

If you don't, try to clear Google Playstore, Google Play Services, Google Play Framework data, reboot, then run the "Action" of the Integrity Box module again.

8. login into Authy
9. Use Aegis root export
10. Go somewhere else, leave that piece of locked crap in the past!