Android library to intercept ELF .init_array/.fini_array execution with pre/post callbacks. All ABIs, Android 5.0+.

Unlocking qualcomm bootloader via gbl exploit.

ARM64 ELF Virtual Machine Protection System

Opinionated defaults, documentation, and workflows for Claude Code at Trail of Bits

Reverse engineering skills for Claude Code | 逆向工程 Claude Code Skills 插件

A zygisk module that hooks `libdexfile.so` to dump dex

ELF static analysis and injection framework that parse, manipulate, patch and camouflage ELF files.

Rewrite and obfuscate code in compiled binaries

Quick and dirty "ngrok" alternative

Decompiler written in Rust

Trace Android framework API, native libraries, system calls and other events using eBPF

Config files for cellular testing lab network

Automated multi-engine framework for unpacking, analyzing, and devirtualizing binaries protected by commercial and custom Virtual Machine based protectors. Combines Dynamic Taint Tracking, Symbolic…

Binary Exploitation Phrack CTF Challenge

The Witchcraft Compiler Collection

Overview of the BLE Enabled Anker Prime 27650mAh Power Bank

Let's control MediaTek's bootchain

Out-of-tree LLVM passes in Rust

Android aarch64 kernel driver module providing efficient memory operations, touch simulation and IPC. Features include fast memory remapping.

a next-generation hooking and reflection framework built for performance, safety, and extensibility.

Gadget(s) for debugging, dumping and dissecting secneo protected applications

Android aarch64 kernel rootkit(driver module)

自定义linker加载so

An android Dex protection shell implementation

能自动实现Apk加固的Gradle插件

Everything you need to build and run Linux and Android kernels for exploit development

A fuzzing framework for Hexagon baseband firmware using QEMU system emulation.

CVE-2025-21479 proof-of-concept, I think

ARMv7 payload that provides arbitrary code execution on MediaTek bootloaders