SeeFlowerX

stackplz

基于eBPF的堆栈追踪工具

estrace

基于eBPF的syscall追踪工具，适用于安卓平台

frida_dump

frida dump android elf, support spawn and attach mode

FGum

BTFHubForAndroid

BTFHub, but for Android

unwinddaemon

elf-dump-fix

Utils use to dump android ELF from memory and do some fix including the ELF section header rebuilding

unwindbcc

ndk-build-ebpf-example

通过ndk编译安卓平台的ebpf程序

ARTHookScripts

frida runtime resolves smali

anti_IDA

反ida内联汇编花指令

ebpf

ebpf-go is a pure-Go library to read, modify and load eBPF programs and attach them to various hooks in the Linux kernel.

AndKittyInjector

Inject a shared library into a process using ptrace

AndroidFridaFuzz

android app native so fuzz. efficiently run in a real machine with frida environment.

BootloaderSpoofer

Spoof locked bootloader on local attestations

ebpfmanager

A golang ebpf libary based on cilium/ebpf and datadog/ebpf.

badspin

Bad Spin: Android Binder Privilege Escalation Exploit (CVE-2022-20421)

bcc

BCC - Tools for BPF-based Linux IO analysis, networking, monitoring, and more

CreatorMismatch

io_uring_LPE-CVE-2024-0582

LPE exploit for CVE-2024-0582 (io_uring)

kernel_hack

安卓内存读写驱动 linux kernel (Android) memory tool

libbpf

Automated upstream mirror for libbpf stand-alone build.

mac_wxapkg_decrypt

mac 端wxpkg文件解密（非解包）

my-notes

obpo-server

obpo backend server written by golang

openssl_tracer

openssl tracer using eBPF

play_with_oneplus7pro

use for unlock research

Reprogram-TEE-on-Qualcomm-devices

Guide to reprogram the TEE on Qualcomm devices to fix lost attestation keys

TheLastBundleMismatch

Writeup and exploit for CVE-2023-45777, bypass for Intent validation inside AccountManagerService on Android 13 despite "Lazy Bundle" mitigation

Unlock-Vivo

Unlock Vivo Bootloader of Vivo Phone on MacOS