updating script

2026-04-19 10:34:57 +00:00 · 2024-03-01 11:54:58 +02:00
parent b0dedec4e9
commit 4a6b88a875
1 changed files with 85 additions and 73 deletions
--- a/bypass-mdm.sh
+++ b/bypass-mdm.sh
@@ -1,4 +1,6 @@
 #!/bin/bash
+
+# Define color codes
 RED='\033[1;31m'
 GRN='\033[1;32m'
 BLU='\033[1;34m'
@@ -7,55 +9,63 @@ PUR='\033[1;35m'
 CYAN='\033[1;36m'
 NC='\033[0m'

+# Display header
 echo -e "${CYAN}Bypass MDM By Assaf Dori (assafdori.com)${NC}"
 echo ""
+
+# Prompt user for choice
 PS3='Please enter your choice: '
-options=("Bypass MDM from Recovery" "Reboot")
+options=("Bypass MDM from Recovery" "Exit")
 select opt in "${options[@]}"; do
    case $opt in
        "Bypass MDM from Recovery")
+            # Bypass MDM from Recovery
            echo -e "${YEL}Bypass MDM from Recovery"
            if [ -d "/Volumes/Macintosh HD - Data" ]; then
                diskutil rename "Macintosh HD - Data" "Data"
            fi
+
+            # Create Temporary User
            echo -e "${NC}Create a Temporary User"
-          echo -e "Enter Temporary Fullname (Default is 'Apple')"
-        read realName
+            read -p "Enter Temporary Fullname (Default is 'Apple'): " realName
            realName="${realName:= Apple}"
-        echo -e "${NC}Enter Temporary Username ${RED}A-Z ONLY, NO SPACES ALLOWED ${NC}(Default is 'Apple')"
-          read username
+            read -p "Enter Temporary Username (Default is 'Apple'): " username
            username="${username:=Apple}"
-          echo -e "${NC}Enter Temporary Password (Default is '1234')"
-        read passw
+            read -p "Enter Temporary Password (Default is '1234'): " passw
            passw="${passw:=1234}"
+
+            # Create User
            dscl_path='/Volumes/Data/private/var/db/dslocal/nodes/Default'
            echo -e "${GREEN}Creating Temporary User"
-          # Create user
            dscl -f "$dscl_path" localhost -create "/Local/Default/Users/$username"
            dscl -f "$dscl_path" localhost -create "/Local/Default/Users/$username" UserShell "/bin/zsh"
            dscl -f "$dscl_path" localhost -create "/Local/Default/Users/$username" RealName "$realName"
-         dscl -f "$dscl_path" localhost -create "/Local/Default/Users/$username" RealName "$realName"
            dscl -f "$dscl_path" localhost -create "/Local/Default/Users/$username" UniqueID "501"
            dscl -f "$dscl_path" localhost -create "/Local/Default/Users/$username" PrimaryGroupID "20"
            mkdir "/Volumes/Data/Users/$username"
            dscl -f "$dscl_path" localhost -create "/Local/Default/Users/$username" NFSHomeDirectory "/Users/$username"
            dscl -f "$dscl_path" localhost -passwd "/Local/Default/Users/$username" "$passw"
            dscl -f "$dscl_path" localhost -append "/Local/Default/Groups/admin" GroupMembership $username
+
+            # Block MDM domains
            echo "0.0.0.0 deviceenrollment.apple.com" >>/Volumes/Macintosh\ HD/etc/hosts
            echo "0.0.0.0 mdmenrollment.apple.com" >>/Volumes/Macintosh\ HD/etc/hosts
            echo "0.0.0.0 iprofiles.apple.com" >>/Volumes/Macintosh\ HD/etc/hosts
-        echo -e "${GRN}Successfully blocked MDM domains"
-        echo -e "${NC}Removing configuration profiles"
+            echo -e "${GRN}Successfully blocked MDM & Profile Domains"
+
+            # Remove configuration profiles
            touch /Volumes/Data/private/var/db/.AppleSetupDone
            rm -rf /Volumes/Macintosh\ HD/var/db/ConfigurationProfiles/Settings/.cloudConfigHasActivationRecord
            rm -rf /Volumes/Macintosh\ HD/var/db/ConfigurationProfiles/Settings/.cloudConfigRecordFound
            touch /Volumes/Macintosh\ HD/var/db/ConfigurationProfiles/Settings/.cloudConfigProfileInstalled
            touch /Volumes/Macintosh\ HD/var/db/ConfigurationProfiles/Settings/.cloudConfigRecordNotFound
-    echo -e "${GRN}MDM enrollement has been bypassed!${NC}"
+
+            echo -e "${GRN}MDM enrollment has been bypassed!${NC}"
            echo -e "${NC}Exit terminal and reboot your Mac.${NC}"
            break
            ;;
        "Disable Notification (SIP)")
+            # Disable Notification (SIP)
            echo -e "${RED}Please Insert Your Password To Proceed${NC}"
            sudo rm /var/db/ConfigurationProfiles/Settings/.cloudConfigHasActivationRecord
            sudo rm /var/db/ConfigurationProfiles/Settings/.cloudConfigRecordFound
@@ -64,14 +74,15 @@ select opt in "${options[@]}"; do
            break
            ;;
        "Disable Notification (Recovery)")
+            # Disable Notification (Recovery)
            rm -rf /Volumes/Macintosh\ HD/var/db/ConfigurationProfiles/Settings/.cloudConfigHasActivationRecord
            rm -rf /Volumes/Macintosh\ HD/var/db/ConfigurationProfiles/Settings/.cloudConfigRecordFound
            touch /Volumes/Macintosh\ HD/var/db/ConfigurationProfiles/Settings/.cloudConfigProfileInstalled
            touch /Volumes/Macintosh\ HD/var/db/ConfigurationProfiles/Settings/.cloudConfigRecordNotFound
-
            break
            ;;
        "Check MDM Enrollment")
+            # Check MDM Enrollment
            echo ""
            echo -e "${GRN}Check MDM Enrollment. Error is success${NC}"
            echo ""
@@ -81,6 +92,7 @@ select opt in "${options[@]}"; do
            break
            ;;
        "Exit")
+            # Exit
            echo "Rebooting..."
            reboot
            break