secmob / TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices

Related projects ⓘ

Alternatives and complementary repositories for TiYunZong-An-Exploit-Chain-to-Remotely-Root-Modern-Android-Devices

• chompie1337 / s8_2019_2215_poc
  PoC 2019-2215 exploit for S8/S8 active with DAC + SELinux + Knox/RKP bypass
  ☆221Updated 4 years ago
• quarkslab / CVE-2020-0069_poc
  ☆99Updated 4 years ago
• bluefrostsecurity / CVE-2020-0041
  Exploits for Android Binder bug CVE-2020-0041
  ☆221Updated 4 years ago
• lntrx / CVE-2021-28663
  A basic PoC leak for CVE-2021-28663 (Internal of the Android kernel backdoor vulnerability)
  ☆116Updated 3 years ago
• vngkv123 / articles
  Research related
  ☆89Updated 2 years ago
• ThomasKing2014 / slides
  ☆54Updated last year
• m-y-mo / android_nfc_fuzzer
  ☆84Updated 2 years ago
• FrenchYeti / frida-trick
  My own collection of Frida scripts and tricks
  ☆66Updated 3 years ago
• airbus-seclab / android_emuroot
  Android_Emuroot is a Python script that allows granting root privileges on the fly to shells running on Android virtual machines that use…
  ☆124Updated 3 years ago
• demantz / frizzer
  Frida-based general purpose fuzzer
  ☆212Updated 4 years ago
• meme / hotwax
  Coverage-guided binary fuzzing powered by Frida Stalker
  ☆180Updated 3 years ago
• ant4g0nist / Sloth
  Sloth 🦥 is a coverage guided fuzzing framework for fuzzing Android Native libraries that makes use of libFuzzer and QEMU user-mode emula…
  ☆119Updated last year
• timwr / CVE-2019-2215
  ☆73Updated 5 years ago
• quarkslab / android-fuzzing
  ☆107Updated last year
• andreafioraldi / frida-js-afl-instr
  An example on how to do performant in-memory fuzzing with AFL++ and Frida
  ☆136Updated 5 years ago
• alephsecurity / research
  Research material and Proof-of-Concepts for Aleph Research Findings
  ☆86Updated 3 years ago
• CheckPointSW / android_appfuzz
  ☆30Updated last year
• michalbednarski / ReparcelBug2
  Writeup and exploit for installed app to system privilege escalation on Android 12 Beta through CVE-2021-0928, a `writeToParcel`/`createF…
  ☆109Updated 2 years ago
• Hamz-a / frida-android-libbinder
  PoC Frida script to view Android libbinder traffic
  ☆132Updated 3 months ago
• parallelbeings / CVE-2019-14079
  USB device fuzzing on Android Phone
  ☆29Updated 3 years ago
• ttdennis / fpicker
  fpicker is a Frida-based fuzzing suite supporting various modes (including AFL++ in-process fuzzing)
  ☆259Updated last week
• leommxj / cve-2020-0022
  poc for cve-2020-0022
  ☆65Updated 4 years ago
• flankerhqd / bindump4j
  A portable utility to locate android binder service
  ☆90Updated 5 years ago
• ghassani / mclf-ida-loader
  An IDA file loader for Mobicore trustlet and driver binaries
  ☆58Updated 4 years ago
• dayzerosec / IDA-Android-Kernel-Symbolizer
  An IDA plugin that allows you to use /proc/kallsyms output to import function and data labels into an extracted Android kernel image.
  ☆65Updated 5 years ago
• quarkslab / samsung-trustzone-research
  Reverse-engineering tools and exploits for Samsung's implementation of TrustZone
  ☆147Updated 4 years ago
• quarkslab / AERoot
  AERoot is a command line tool that allows you to give root privileges on-the-fly to any process running on the Android emulator with Goog…
  ☆197Updated last year
• sharif-dev / AndroidKernelVulnerability
  Triggering and Analyzing Android Kernel Vulnerability CVE-2019-2215
  ☆55Updated 2 years ago
• SpiralBL0CK / Browser-Pwning-
  A proper well structured documentation for getting started with chrome pwning & v8 pwning
  ☆188Updated 2 years ago