PoC and writeup for bypassing the initial patch of CVE-2024-0044, Android run-as any app vulnerability allowing privilege escalation from adb to installed app
☆179Sep 30, 2024Updated last year
Alternatives and similar repositories for CVE-2024-0044
Users that are interested in CVE-2024-0044 are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Writeup and exploit for CVE-2023-45777, bypass for Intent validation inside AccountManagerService on Android 13 despite "Lazy Bundle" mit…☆100Jan 21, 2024Updated 2 years ago
- Files related to the Pwn2Own Toronto 2023 exploit against the Xiaomi 13 Pro.☆31Oct 14, 2024Updated last year
- Code Scanner For Android Privacy☆39Mar 26, 2023Updated 3 years ago
- CVE-2024-0044: a "run-as any app" high-severity vulnerability affecting Android versions 12 and 13☆332Dec 2, 2024Updated last year
- Exploit for CVE-2022-20452, privilege escalation on Android from installed app to system app (or another app) via LazyValue using Parcel …☆346Apr 12, 2023Updated 3 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- ☆81Oct 12, 2021Updated 4 years ago
- PoC of CVE-2022-20474☆20Feb 3, 2025Updated last year
- Proof-of-concept code for Android APEX key reuse vulnerability☆108Jan 31, 2024Updated 2 years ago
- ☆30May 13, 2025Updated last year
- Android 14 kernel exploit for Pixel7/8 Pro☆550Apr 23, 2024Updated 2 years ago
- CVE-2025-21479 proof-of-concept, I think☆243Aug 16, 2025Updated 9 months ago
- eBPF-Based DexDumper for Android☆415Dec 8, 2025Updated 5 months ago
- PendingIntent exploit☆11Sep 26, 2023Updated 2 years ago
- obpo backend server written by golang☆33Jul 28, 2023Updated 2 years ago
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- PoC for CVE-2021-39749, allowing starting arbitrary Activity on Android 12L Beta☆33Apr 16, 2022Updated 4 years ago
- Android Security Bug Queries for CheckMarx☆20Sep 13, 2022Updated 3 years ago
- Bad Spin: Android Binder Privilege Escalation Exploit (CVE-2022-20421)☆286May 27, 2023Updated 3 years ago
- Binder Trace is a tool for intercepting and parsing Android Binder messages. Think of it as "Wireshark for Binder".☆748Sep 11, 2025Updated 8 months ago
- Android kernel exploitation for CVE-2022-20409☆208Oct 17, 2024Updated last year
- Some tools when playing with HarmonyOS NEXT☆33Feb 4, 2026Updated 3 months ago
- Dynamic java method hook for Android,Implemented by jvmti☆53Apr 6, 2024Updated 2 years ago
- Exploit and writeup for installed app to root privilege escalation through CVE-2024-48336 (Magisk Bug #8279), Privileges Escalation / Arb…☆204Nov 5, 2024Updated last year
- 关于Magisk生态的研究☆163Apr 29, 2024Updated 2 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- android app native so fuzz. efficiently run in a real machine with frida environment. See Background: https://idhyt.blogspot.com/2020/02/…☆44Jan 18, 2024Updated 2 years ago
- btrace:binder_transaction+eBPF+Golang实现通用的Android APP动态行为追踪工具☆203Jun 15, 2024Updated last year
- Open/HarmonyOS abc file parser and decompiler☆131May 17, 2026Updated last week
- ☆86Sep 19, 2024Updated last year
- A library for hiding and retrieving imports in ELF binaries.☆194Apr 18, 2025Updated last year
- CVE-2017-0806 PoC (Android GateKeeperResponse writeToParcel/createFromParcel mismatch)☆26Jun 3, 2018Updated 7 years ago
- eBPF-based lightweight debugger for Android with MCP support☆816Mar 27, 2026Updated 2 months ago
- Exploit code for CVE-2021-1961☆122Sep 7, 2022Updated 3 years ago
- 计算内存中的libc.so,libart.so的crc与文件中的对比检测apk是否处于异常环境。☆86Dec 13, 2022Updated 3 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- An Android Injector aimed to inject through Virtual Space without root permissions☆192Jan 21, 2025Updated last year
- System Call Hook for ARM64☆220Jan 19, 2026Updated 4 months ago
- 计算自身md5的最小ELF64程序.The minimum ELF64 program to calculate its own md5☆11Apr 20, 2020Updated 6 years ago
- 劫持Zygote在App启动前注入so☆353Jan 22, 2026Updated 4 months ago
- Writeup and exploit for installed app to system privilege escalation on Android 12 Beta through CVE-2021-0928, a `writeToParcel`/`createF…☆123Mar 3, 2022Updated 4 years ago
- This lab guides you through setting up an environment to explore CVE-2019-2215, a critical Android kernel vulnerability in the binder sub…☆43Apr 24, 2025Updated last year
- 主要记入自己复现过的android cve☆52Feb 28, 2022Updated 4 years ago