vnodebypass using hidePath of jelbrekLib(Jakeashacks) and maphys (0x7ff) + special thanks to akusio

Apk控制流混淆；Apk-Dex2C；Res资源混淆；Dex、jar、smali文件的相互转换； Dex、Pdf文件合并； Apk、dex、jar混淆和字符串加密； Apk签名、共存； Res资源混淆； Dex、AXML、ARSC文件编辑及翻译；字符串加密(Apk、dex)； 一键添加Xposed检测，一键添加弹窗、对话框； axml反编译/回编译； 一键LOG添加； 一键添加字符串解密LO…

安卓逆向工具汇总 / Awsome Android Reverse Tools

The OWASP MASVS (Mobile Application Security Verification Standard) is the industry standard for mobile app security.

The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes technical processes for verifying the OWA…

OWASP iGoat (Swift) - A Damn Vulnerable Swift Application for iOS

Automate your mobile devices with natural language commands - an LLM agnostic mobile Agent 🤖

超强群控，可以实时查看和控制安卓手机的安卓远程控制软件，致力于完成一个高端的安卓群控软件 可以群控，录制运行脚本等等功能......

An all-in-one hacking tool to remotely exploit Android devices using ADB and Metasploit-Framework to get a Meterpreter session.

A collection of android security related resources

Mobile Hacker's Weapons / A collection of cool tools used by Mobile hackers. Happy hacking , Happy bug-hunting

Runtime Mobile Security (RMS) 📱🔥 - is a powerful web interface that helps you to manipulate Android and iOS Apps at Runtime

安卓平台 JavaScript 自动化工具 (Auto.js 二次开发项目)

Gray box end-to-end testing and automation framework for mobile apps

Android virtual machine and deobfuscator

🔓A Curated List Of Modern Android Exploitation Conference Talks.

pSlip is a static analysis tool kit designed to find potentially vulnerable escalation paths by analyzing exported components, intent filters, provider permissions, tapjacking vectors, and cryptogr…

Android in docker solution with noVNC supported and video recording

An overlay attack example

Software Engineering Project

Inter-App Collusion: Exploiting the Improper Export of Android Application Components for Privilege Elevation & Credential Theft

Appshark is a static taint analysis platform to scan vulnerabilities in an Android app.

Quark Agent - Your AI-powered Android APK Analyst

Android Kernel Exploitation

Some Useful Tricks for Pentest Android and iOS Apps

An app intended for fuzzing the Android Binder interface and System Services

Binder Trace is a tool for intercepting and parsing Android Binder messages. Think of it as "Wireshark for Binder".

🤖 A CLI application that automatically prepares Android APK files for HTTPS inspection

A library for loading ELF from memory and/or making Linux syscalls on Android written in pure Java.