Pinned Repositories
a-tale-of-four-gates
A Tale of Four Gates | Privilege Escalation and Permission Bypasses on Android through App Components
AIDLService-sample
This is the source code related to this blog: http://www.race604.com/communicate-with-remote-service-1
android-14-framework
Android 14 Beta 1 framework/services source code, reverse engineered from a Pixel 7 Pro (upb1.230309.014)
Android-Security-Exploits-YouTube-Curriculum
🔓A curated list of modern Android exploitation conference talks.
Android-Security-Teryaagh
Android security guides, roadmap, docs, courses, write-ups, and teryaagh.
Android-Tools-Storage
To do a good job, one must first sharpen one's tools.
AndroidPictureInPictureSample
A basic sample app demonstrating how to implement Picture-in-Picture (PiP) mode in Android.
OrganizerTransaction
PoC for CVE-2021-39749, allowing starting arbitrary Activity on Android 12L Beta
StrawFuzzer
virtualpatch_evaluation
Patches and exploits used for the evaluation of VirtualPatch
dy9bala's Repositories
dy9bala/StrawFuzzer
dy9bala/virtualpatch_evaluation
Patches and exploits used for the evaluation of VirtualPatch
dy9bala/a-tale-of-four-gates
A Tale of Four Gates | Privilege Escalation and Permission Bypasses on Android through App Components
dy9bala/android-14-framework
Android 14 Beta 1 framework/services source code, reverse engineered from a Pixel 7 Pro (upb1.230309.014)
dy9bala/Android-Security-Exploits-YouTube-Curriculum
🔓A curated list of modern Android exploitation conference talks.
dy9bala/Android-Security-Teryaagh
Android security guides, roadmap, docs, courses, write-ups, and teryaagh.
dy9bala/Android-Tools-Storage
To do a good job, one must first sharpen one's tools.
dy9bala/bypassHiddenApiRestriction
This is a library that can bypass the hidden api restriction on Android 9-12.
dy9bala/ConPresentations
Slide decks from my conference presentations
dy9bala/CVE-2020-0001
POC to run system component in an untrusted-app process
dy9bala/FreeReflection
A library that lets you use reflection without any restriction above Android P
dy9bala/GetAllPackage-BinderFuzzer
Binder fuzz 扫描器
dy9bala/HackersCave4StaticAndroidSec
A comprehensive resource for Android static analysis and vulnerability assessment. Tutorials, tools, and resources for identifying and mitigating security vulnerabilities in Android applications.
dy9bala/hfs
HFS is a web file server to run on your computer. Share folders or even a single file thanks to the virtual file system.
dy9bala/hpAndro1337
Repository for download all version of @hpAndro1337 (Android AppSec) application. All application listed on play store. https://play.google.com/store/apps/details?id=hpandro.android.security
dy9bala/owasp-mastg
The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).
dy9bala/pinduoduo_backdoor
拼多多apk内嵌提权代码,及动态下发dex分析
dy9bala/simpread
简悦导入文章
dy9bala/CVE-2023-35671
Android App Pin Security Issue Allowing Unauthorized Payments via Google Wallet
dy9bala/hackerone-reports
Top disclosed reports from HackerOne
dy9bala/Inure
An elegant and beautiful premium Android app manager for both rooted and non-rooted devices and a built-in terminal, analytics panel and an independent custom theme engine, developed with purely custom APIs created for this app.
dy9bala/joern
Open-source code analysis platform for C/C++/Java/Binary/Javascript/Python/Kotlin based on code property graphs. Discord https://discord.gg/vv4MH284Hc
dy9bala/MaterialDesign
Material Design Samples。ConstraintLayout、MaterialButton、ShapeableImageView、TabLayout、SearchView...
dy9bala/pinduoduo_backdoor_unpacker
Samples and Unpacker of malicious backdoors and exploits developed and used by Pinduoduo
dy9bala/PoC-in-GitHub
📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.
dy9bala/rce-finder
A tool to find good RCE
dy9bala/StrangeLoop
This contains notes, slides, and code for my Strange Loop talk
dy9bala/Tiktok-SSL-Pinning-Bypass
Bypass Tiktok SSL pinning on Android devices.
dy9bala/TTDeDroid
一键反编译工具(不需要手动安装Python) One key for quickly decompile apk/aar/dex/jar, support by jadx/dex2jar/enjarify.
dy9bala/user-interface-samples
Multiple samples showing the best practices in the user interface on Android.