heeeeen

MySlide

CVE-PoC

android_vuln_poc-exp

This project contains pocs and exploits for android vulneribilities

blueborne

Contains PoC scripts demonstrating the BlueBorne vulnerabilities

Coeus

Android apk/sdk Scan包括android apk/sdk 安全审计代码扫描以及国内政策扫描

cSploit-3g

a customized csploit branch based on csploit 1.5.3

CVE-2017-13253

PoC code for CVE-2017-13253

CVE-2018-9411

Exploit code for CVE-2018-9411 for MediaCasService

CVE_Writeups

heeeeen.github.io

My Personal Security Articles

LeakValue

Exploit for CVE-2022-20452, privilege escalation on Android from installed app to system app (or another app) via LazyValue using Parcel after recycle()

OrganizerTransaction

PoC for CVE-2021-39749, allowing starting arbitrary Activity on Android 12L Beta

ovaa

Oversecured Vulnerable Android App

ReparcelBug2

Writeup and exploit for installed app to system privilege escalation on Android 12 Beta through CVE-2021-0928, a `writeToParcel`/`createFromParcel` serialization mismatch in `OutputConfiguration`

2017-Security-ppt

Bluedroid

PoCs of Vulnerabilities on Bluedroid

CVE-2016-5195

CVE-2016-5195 (dirtycow/dirtyc0w) proof of concept for Android

CVE-2017-0785

dirtycow-arm32

dirtycow-vdso

PoC for Dirty COW (CVE-2016-5195)

exploits

practice

flexidie

Source code and binaries of FlexiSpy from the Flexidie dump

Frida-Android-unpack

this unpack script for Android O and Android P

house

A runtime mobile application analysis toolkit with a Web GUI, powered by Frida, written in Python.

kernel-exploits

A bunch of proof-of-concept exploits for the Linux kernel

littl_tools

ReparcelBug

CVE-2017-0806 PoC (Android GateKeeperResponse writeToParcel/createFromParcel mismatch)

static-arm-bins

Statically compiled ARM binaries for debugging and runtime analysis

Street-Party

Street Party is a suite of tools that allows the RTP streams of video conferencing implementations to be viewed and modified.

VIKIROOT

CVE-2016-5195 (Dirty COW) PoC for Android 6.0.1 Marshmallow