Writeup and exploit for installed app to system privilege escalation on Android 12 Beta through CVE-2021-0928, a `writeToParcel`/`createFromParcel` serialization mismatch in `OutputConfiguration`
☆118Mar 3, 2022Updated 4 years ago
Alternatives and similar repositories for ReparcelBug2
Users that are interested in ReparcelBug2 are comparing it to the libraries listed below
Sorting:
- Exploit for CVE-2022-20452, privilege escalation on Android from installed app to system app (or another app) via LazyValue using Parcel …☆339Apr 12, 2023Updated 2 years ago
- CVE-2017-0806 PoC (Android GateKeeperResponse writeToParcel/createFromParcel mismatch)☆24Jun 3, 2018Updated 7 years ago
- ☆81Oct 12, 2021Updated 4 years ago
- PoC for CVE-2021-39749, allowing starting arbitrary Activity on Android 12L Beta☆31Apr 16, 2022Updated 3 years ago
- Writeup and exploit for CVE-2023-45777, bypass for Intent validation inside AccountManagerService on Android 13 despite "Lazy Bundle" mit…☆100Jan 21, 2024Updated 2 years ago
- PoC of CVE-2022-20474☆19Feb 3, 2025Updated last year
- Android app for trying Intents, Content Providers and Binder interfaces☆18Oct 29, 2017Updated 8 years ago
- CVE-2023-20963 PoC (Android WorkSource parcel/unparcel logic mismatch)☆70Apr 27, 2024Updated last year
- Bad Spin: Android Binder Privilege Escalation Exploit (CVE-2022-20421)☆281May 27, 2023Updated 2 years ago
- Proof of concept app for Android permanent denial-of-service vulnerability CVE-2020-0443☆17Mar 15, 2022Updated 3 years ago
- PoC and writeup for bypassing the initial patch of CVE-2024-0044, Android run-as any app vulnerability allowing privilege escalation from…☆171Sep 30, 2024Updated last year
- A search-based Android static analysis tool with much better performance than Amandroid and FlowDroid☆50Jul 6, 2021Updated 4 years ago
- The Frida based fuzzer all in one☆30Mar 13, 2021Updated 4 years ago
- Slim dockerized Android ndk☆12Mar 3, 2023Updated 3 years ago
- Exploit code for CVE-2021-1961☆121Sep 7, 2022Updated 3 years ago
- Human-friendly cross-platform system call tracing and hooking library based on Frida's Stalker☆356Jul 21, 2023Updated 2 years ago
- Kernel sources for the Pixel 4, Pixel 4 XL and Pixel 4a.☆19Jan 27, 2025Updated last year
- FANS: Fuzzing Android Native System Services☆265Sep 23, 2020Updated 5 years ago
- A bunch of JEB python scripts☆46Jun 23, 2021Updated 4 years ago
- ☆12May 24, 2022Updated 3 years ago
- Collections of my POCs for android vendor CVEs☆287Aug 26, 2023Updated 2 years ago
- ☆137May 1, 2023Updated 2 years ago
- Android Security Bug Queries for CheckMarx☆20Sep 13, 2022Updated 3 years ago
- Fuzzing harness for testing proprietary image codecs supported by Skia on Android☆356Jan 10, 2021Updated 5 years ago
- Code Scanner For Android Privacy☆38Mar 26, 2023Updated 2 years ago
- ☆171Aug 6, 2020Updated 5 years ago
- Android Kernel Exploitation☆638Feb 13, 2022Updated 4 years ago
- Is a protect Android App anti any attacks and environments.☆356Dec 28, 2023Updated 2 years ago
- Proof-of-concept code for Android APEX key reuse vulnerability☆104Jan 31, 2024Updated 2 years ago
- Disables FBE, proca, Vaultkeeper and auto-reflash of stock recovery on Samsung Pie devices, TESTED on S10, N10, A10 - A50 and Tab A 10.1 …☆12Dec 31, 2021Updated 4 years ago
- A small script to get syscall info from its number (intented to be used with Frida)☆21Aug 11, 2021Updated 4 years ago
- Plugins for reversing android apps in JEB☆78Oct 6, 2024Updated last year
- 👴的毕设,打算从native层到java层的hook都搞一遍,最终目标是能支持hook用户apk的东西☆23May 9, 2022Updated 3 years ago
- Run command with specific selinux context for Android☆29Oct 3, 2022Updated 3 years ago
- blabla☆50Oct 28, 2020Updated 5 years ago
- Oversecured Vulnerable Android App☆733Jul 18, 2024Updated last year
- 主要记入自己复现过的android cve☆53Feb 28, 2022Updated 4 years ago
- Analysis of different techniques to bypass Network Security Config with Frida☆33Dec 7, 2020Updated 5 years ago
- Android Kernel Vulnerability (CVE-2019-2215) temporary root PoC☆14Dec 21, 2023Updated 2 years ago