Starred repositories
Writeup and exploit for CVE-2025-22441: Privilege escalation from installed app to SystemUI process on Android due to pass of untrusted ApplicationInfo to LoadedApk
Writeup and exploit for CVE-2024-34740, integer overflow in Android's BinaryXmlSerializer to system_server file write and then to system_server code execution from normal installed app
Writeup and exploit for CVE-2024-49746: Android's Parcel::continueWrite closing File Descriptors that are later used
fancyss is a project providing tools to across the GFW on asuswrt/merlin based router.
Tool to decompile & extract Android Dex bytecode from Vdex files
Get started with building Fullstack Agents using Gemini 2.5 and LangGraph
📡 PoC auto collect from GitHub.
real time face swap and one-click video deepfake with only a single image
AI-powered reverse engineering assistant that bridges IDA Pro with language models through MCP.
Free Full Source: X-Argus, X-Ladon, X-Gorgon, TTEncrypt, XLog - Educational Purposes
An Android traceroute app using Nexttrace API
PoC and writeup for bypassing the initial patch of CVE-2024-0044, Android run-as any app vulnerability allowing privilege escalation from adb to installed app
LSPass: Bypass restrictions on non-SDK interfaces
VPS 融合怪服务器测评项目 更推荐使用无环境依赖的Go版本 VPS Fusion Monster Server Test Script – More recommended to use the Go version with no environment dependencies: https://github.com/oneclickvirt/ecs
An efficient, small mobile key-value storage framework developed by WeChat. Works on Android, iOS, macOS, Windows, POSIX, and OHOS.
miticollo / frida-ios-dump
Forked from AloneMonkey/frida-ios-dumppull decrypted ipa from jailbreak device
Link Identity Editor. Put real or fake signatures in a Mach-O.
Home of CodeT5: Open Code LLMs for Code Understanding and Generation
This is a library that can bypass the hidden api restriction on Android 9-12.
A frida tool to dump dex in memory to support security engineers analyzing malware.
Collection of publicly available IPTV channels from all over the world