Writeup and exploit for CVE-2023-45777, bypass for Intent validation inside AccountManagerService on Android 13 despite "Lazy Bundle" mitigation

拼多多apk内嵌提权代码，及动态下发dex分析

The tool identifies the list of CVEs that will affect the given AOSP version using the data available on google security bulletin website.

PoC for vulnerability in Honda's Remote Keyless System(CVE-2022-27254)

BlackDex is an Android unpack tool, it supports Android 5.0~12 and need not rely to any environment. BlackDex can run on any Android mobile phones or emulators, you can unpack APK File in several s…

聚合Github上已有的Poc或者Exp，CVE信息来自CVE官网。Auto Collect Poc Or CVE from Github by CVE ID.

🔥🔥hooker是一个基于frida实现的逆向工具包。为逆向开发人员提供统一化的脚本包管理方式、通杀脚本、自动化生成hook脚本、内存漫游探测activity和service和其他任意对象。

安全补丁日期拉取工具; Security bulletin pulling tools.

Android-Syscall-Logger

✨ Purpose only! The dangers of Bluetooth Low Energy（BLE）implementations: Unveiling zero day vulnerabilities and security flaws in modern Bluetooth LE stacks.

Combined kernel source code for the Samsung Galaxy N970F (Note 10) and N975F (Note 10+). Use in combination with Magisk and TWRP.

Proof of Concept of Sweyntooth Bluetooth Low Energy (BLE) vulnerabilities.

List of Bluetooth BR/EDR/LE security resources

The Dumb Network Fuzzer

📡PoC auto collect from GitHub.

Another kernel self protection

APK 加固 dex 加密，解密 学习项目

Runtime Mobile Security (RMS) is a powerful web interface that helps you to manipulate Android Java Classes and Methods at Runtime

More than 21K security related open source tools, sorted by star count. Both in markdown and json format.

testtest

手机型号数据库

802.11 dos攻击

Security & Development