Exploit for CVE-2022-20452, privilege escalation on Android from installed app to system app (or another app) via LazyValue using Parcel after recycle()
☆341Apr 12, 2023Updated 2 years ago
Alternatives and similar repositories for LeakValue
Users that are interested in LeakValue are comparing it to the libraries listed below
Sorting:
- Writeup and exploit for installed app to system privilege escalation on Android 12 Beta through CVE-2021-0928, a `writeToParcel`/`createF…☆119Mar 3, 2022Updated 4 years ago
- Writeup and exploit for CVE-2023-45777, bypass for Intent validation inside AccountManagerService on Android 13 despite "Lazy Bundle" mit…☆100Jan 21, 2024Updated 2 years ago
- Bad Spin: Android Binder Privilege Escalation Exploit (CVE-2022-20421)☆281May 27, 2023Updated 2 years ago
- PoC for CVE-2021-39749, allowing starting arbitrary Activity on Android 12L Beta☆31Apr 16, 2022Updated 3 years ago
- CVE-2017-0806 PoC (Android GateKeeperResponse writeToParcel/createFromParcel mismatch)☆24Jun 3, 2018Updated 7 years ago
- PoC and writeup for bypassing the initial patch of CVE-2024-0044, Android run-as any app vulnerability allowing privilege escalation from…☆171Sep 30, 2024Updated last year
- Android kernel exploitation for CVE-2022-20409☆203Oct 17, 2024Updated last year
- Exploit code for CVE-2021-1961☆121Sep 7, 2022Updated 3 years ago
- PoC of CVE-2022-20474☆19Feb 3, 2025Updated last year
- ☆82Oct 12, 2021Updated 4 years ago
- Collections of my POCs for android vendor CVEs☆288Aug 26, 2023Updated 2 years ago
- Binder Trace is a tool for intercepting and parsing Android Binder messages. Think of it as "Wireshark for Binder".☆739Sep 11, 2025Updated 5 months ago
- Proof-of-concept code for Android APEX key reuse vulnerability☆104Jan 31, 2024Updated 2 years ago
- Android 14 kernel exploit for Pixel7/8 Pro☆543Apr 23, 2024Updated last year
- Dirty Pipe root exploit for Android (Pixel 6)☆848Jun 16, 2022Updated 3 years ago
- CVE-2024-0044: a "run-as any app" high-severity vulnerability affecting Android versions 12 and 13☆330Dec 2, 2024Updated last year
- Android Root Zap Framework, Lazy and Powerful :)☆55Jul 28, 2025Updated 7 months ago
- A Collection of Android (Samsung) Security Research References☆465Jul 16, 2025Updated 7 months ago
- CVE-2025-21479 proof-of-concept, I think☆205Aug 16, 2025Updated 6 months ago
- CVE-2022-2602☆86Dec 22, 2022Updated 3 years ago
- Slim dockerized Android ndk☆12Mar 3, 2023Updated 3 years ago
- Simple script to find kernel objects of a certain size in the Linux kernel☆112Dec 1, 2022Updated 3 years ago
- Android Kernel Exploitation☆639Feb 13, 2022Updated 4 years ago
- ☆137May 1, 2023Updated 2 years ago
- A black-box fuzzer to detect custom permission related privilege escalation vulnerabilities in Android.☆33Feb 9, 2022Updated 4 years ago
- Fuzzing harness for testing proprietary image codecs supported by Skia on Android☆356Jan 10, 2021Updated 5 years ago
- android app native so fuzz. efficiently run in a real machine with frida environment. See Background: https://idhyt.blogspot.com/2020/02/…☆43Jan 18, 2024Updated 2 years ago
- FANS: Fuzzing Android Native System Services☆265Sep 23, 2020Updated 5 years ago
- 🔓A Curated List Of Modern Android Exploitation Conference Talks.☆711Updated this week
- some vul☆790Apr 25, 2025Updated 10 months ago
- An android Dex protection shell implementation☆902Updated this week
- Code injection on Android without ptrace☆283Mar 20, 2024Updated last year
- Samples and Unpacker of malicious backdoors and exploits developed and used by Pinduoduo☆1,236Mar 27, 2023Updated 2 years ago
- A portable utility to locate android binder service☆99Sep 28, 2019Updated 6 years ago
- ☆216Mar 29, 2024Updated last year
- Mobile Edge-Dynamic Unified Security Analysis☆2,192Feb 26, 2026Updated last week
- Files related to the Pwn2Own Toronto 2023 exploit against the Xiaomi 13 Pro.☆31Oct 14, 2024Updated last year
- Android app for trying Intents, Content Providers and Binder interfaces☆18Oct 29, 2017Updated 8 years ago
- Android Security Bug Queries for CheckMarx☆20Sep 13, 2022Updated 3 years ago