dy9bala's repositories
virtualpatch_evaluation
Patches and exploits used for the evaluation of VirtualPatch
a-tale-of-four-gates
A Tale of Four Gates | Privilege Escalation and Permission Bypasses on Android through App Components
android-14-framework
Android 14 Beta 1 framework/services source code, reverse engineered from a Pixel 7 Pro (upb1.230309.014)
Android-Security-Exploits-YouTube-Curriculum
🔓A curated list of modern Android exploitation conference talks.
Android-Security-Teryaagh
Android security guides, roadmap, docs, courses, write-ups, and teryaagh.
bypassHiddenApiRestriction
This is a library that can bypass the hidden api restriction on Android 9-12.
ConPresentations
Slide decks from my conference presentations
CVE-2020-0001
POC to run system component in an untrusted-app process
FreeReflection
A library that lets you use reflection without any restriction above Android P
GetAllPackage-BinderFuzzer
Binder fuzz 扫描器
HackersCave4StaticAndroidSec
A comprehensive resource for Android static analysis and vulnerability assessment. Tutorials, tools, and resources for identifying and mitigating security vulnerabilities in Android applications.
hfs
HFS is a web file server to run on your computer. Share folders or even a single file thanks to the virtual file system.
hpAndro1337
Repository for download all version of @hpAndro1337 (Android AppSec) application. All application listed on play store. https://play.google.com/store/apps/details?id=hpandro.android.security
owasp-mastg
The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).
pinduoduo_backdoor
拼多多apk内嵌提权代码,及动态下发dex分析
simpread
简悦导入文章
CVE-2023-35671
Android App Pin Security Issue Allowing Unauthorized Payments via Google Wallet
hackerone-reports
Top disclosed reports from HackerOne
Inure
An elegant and beautiful premium Android app manager for both rooted and non-rooted devices and a built-in terminal, analytics panel and an independent custom theme engine, developed with purely custom APIs created for this app.
joern
Open-source code analysis platform for C/C++/Java/Binary/Javascript/Python/Kotlin based on code property graphs. Discord https://discord.gg/vv4MH284Hc
MaterialDesign
Material Design Samples。ConstraintLayout、MaterialButton、ShapeableImageView、TabLayout、SearchView...
pinduoduo_backdoor_unpacker
Samples and Unpacker of malicious backdoors and exploits developed and used by Pinduoduo
PoC-in-GitHub
📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.
rce-finder
A tool to find good RCE
StrangeLoop
This contains notes, slides, and code for my Strange Loop talk
TapJacking-Attacks
TapJacking Attacks Demo
Tiktok-SSL-Pinning-Bypass
Bypass Tiktok SSL pinning on Android devices.
TTDeDroid
一键反编译工具(不需要手动安装Python) One key for quickly decompile apk/aar/dex/jar, support by jadx/dex2jar/enjarify.
user-interface-samples
Multiple samples showing the best practices in the user interface on Android.