SeeFlowerX

stackplz

基于eBPF的堆栈追踪工具

estrace

基于eBPF的syscall追踪工具，适用于安卓平台

frida_dump

frida dump android elf, support spawn and attach mode

FGum

BTFHubForAndroid

BTFHub, but for Android

unwinddaemon

elf-dump-fix

Utils use to dump android ELF from memory and do some fix including the ELF section header rebuilding

unwindbcc

Frida-Seccomp

一个Android通用svc跟踪以及hook方案——Frida-Seccomp

ARTHookScripts

frida runtime resolves smali

anti_IDA

反ida内联汇编花指令

ebpf

ebpf-go is a pure-Go library to read, modify and load eBPF programs and attach them to various hooks in the Linux kernel.

AndKittyInjector

Inject a shared library into a process using ptrace

BootloaderSpoofer

Spoof locked bootloader on local attestations

ebpfmanager

A golang ebpf libary based on cilium/ebpf and datadog/ebpf.

VirtCam

Android Virtual Camera

XposedHookAndroid

Android platform Xposed/LSPosed hook project

AppSandbox-FrontEnd

The front end app for App Sandbox

AppSandbox-Hook

The LSPosed hook edition of App Sandbox

badspin

Bad Spin: Android Binder Privilege Escalation Exploit (CVE-2022-20421)

BundleMismatchExp

Bundle mismatch exploit of pdd

CreatorMismatch

CVE-2024-0015

a demo poc for CVE-2024-0015

ExploitFramework

Exploit Framework for Android

ExploitLoader

Exploit Loader for Android

frida-stealth

Stealth patch for Frida, stealth knowledge collection

io_uring_LPE-CVE-2024-0582

LPE exploit for CVE-2024-0582 (io_uring)

kernel_hack

安卓内存读写驱动 linux kernel (Android) memory tool

Reprogram-TEE-on-Qualcomm-devices

Guide to reprogram the TEE on Qualcomm devices to fix lost attestation keys

TheLastBundleMismatch

Writeup and exploit for CVE-2023-45777, bypass for Intent validation inside AccountManagerService on Android 13 despite "Lazy Bundle" mitigation