Newest releases
EkarAssignment Ekar Assignment for Mobile Engineers UI App consist of 3 different fragments and 1 root activity. Activity holds a container layout in
LLVM 13 based obfuscator This is a new and simplified implementation of a larger project, its development began in 2014 and was used to protect softwa
Binsecure-1.8.3 Latest release of the Binsecure obfuscator. If you build and attempt to run, it will crash. This is because the licensing system is st
Ambient Music Mod A hybrid Xposed & Magisk module that ports Pixel Ambient Music to other, compatible devices. If you don't know what Pixel Ambient Mu
fasm A F# to Jitted ASM / IL disassembler as a dotnet tool Getting Started Install fasm as a global dotnet tool dotnet tool install fasm -g or as a do
PEGASUS SPYWARE JAVA RECOMPILED - I have recompiled all JAVA from the Pegasus Spyware and the results are Shockingly Horrible! PEGASUS SPYWARE DECOMPI
llux ollvm de-obfuscator 移除ollvm中的控制流平坦化、不透明谓词 ll取自ollvm,ux取自lux,寓意混淆之中的光亮和线索 Description * 实现了在x86_64架构下,开启代码优化后,控制流平坦化以及不透明谓词的移除 * 实现原理不同于符号执行,无需条件约
Android security guides, roadmap, tools, docs, courses, write-ups and teryaagh.
1.3k
BlackDex is an Android unpack(dexdump) tool, it supports Android 5.0~12 and need not rely to any environment. BlackDex can run on any Android mobile phones or emulators, you can unpack APK File in several seconds.
The application is a PoC that helps in identifying modern bankers, potentially malicious and remote controlling applications abusing Android AccessibilityService.
AppFilter This is an Xposed module. It hooks com.android.server.pm.AppsFilter#shouldFilterApplication to make PackageManagerService filter out some sp
13.1k
A Riru module trying to provide an ART hooking framework (initially for Android Pie) which delivers consistent APIs with the OG Xposed, leveraging YAHFA hooking framework, supports Android 8.1 ~ 12 DP2.
4.3k
Scanning APK file for URIs, endpoints & secrets.
CVE-2020-26259: XStream is vulnerable to an Arbitrary File Deletion on the local host when unmarshalling as long as the executing process has sufficient rights.
Gradle plugin to deeply hide secrets keys on Android
Annotated Android Permissions takes care of ensuring Android runtime permissions for an EnsurePermissions-annotated method inside either an Activity or a Fragment.
A light-weight yet powerful solution library for detecting xposed installation.
A dlopen library that bypasses mobile system limitation
Dexbox is a lightweight dex file parsing library.
BoostMultiDex is a solution for quickly loading multiple DEXs on low Android version devices (4.X and below, SDK <21).
2.1k
EasyProtector,a simple way to check root/virtual app/emulator/xposed framework/tracer/debugger.
Resources About Hooking. For All Platforms. Currently 300+ Tools And 600+ Posts.
2.4k
Runtime Mobile Security
by @mobilesecurity_
Runtime Mobile Security (RMS), powered by FRIDA, is a powerful web interface that helps you to manipulate Android Java Classes and Methods at Runtime.
You can easily dump
Eazy Runtime Permission
A lightweight Android library which wraps boilerplate code of runtime permission and allows you to request permissions
from coroutines. (No callbacks yay
🎉
)
request and obs
Andromeda makes initial reverse engineering work of Android applications bit faster and easier. Compared to other alternatives, it's written in C/C++ and has a noticeable performance advantage.
DEMO
The tool is in
2.8k
APK Studio
Open-source, cross platform Qt based IDE for reverse-engineering Android application packages. It features a friendly IDE-like layout including code editor with syntax highlighting support for *.smali c
StartaskPermissions
StartaskPermissions is a library that helps to handle runtime permissions on Android, entirely written using Kotlin language.
Using in your projects
Gradle
The library is
Auth—Wrapper for the Authentication Framework
Provides a tested implementation for the Android Account Framework for you to get rid of SharedPreference based authentication.
Why not SharedPreferences?
Shared
Security Builders
This library implements a set of "fluent" API builders for the java.security classes, and provides more typesafe, intuitive API to access trust stores, key stores and keys. The primary purpose of
MayI is yet another library that simplifies the process of requesting permissions at runtime for devices that run Android Marshmallow and above.
As of Androids Marshmallow and above a new functionality has been added that lets
Token Core
TokenCore is a blockchain library. TokenCore provides the relatively consistent API that allows you to manage your wallets and sign transactions in BTC, ETH and EOS chains simultaneously. In addition, Token
based on llvm 5.0 release with ollvm and Armariris
