This is your work, valued
JustTrustMe. An xposed module that disables SSL certificate checking for the purposes of auditing an app with cert pinning
5.3kAndroidKernelExploitationPlayground. C
571AndroidObfuscation-NDK. Example of obfuscating an Android NDK project using O-LLVM
216AndroidZipArbitrage. Exploit for Android Zip bugs: 8219321, 9695860, and 9950697
147OSX_Swizzler. Demonstrates cracking an app without modifying it using SIMBL + method swizzling
83AndroidHostileEnvironmentDetection. Contains many different ways to identify hostile environments.
65WebAPKCrawler. Uses Google to search for .apks hosted on websites and downloads them
20KindleXposed. Xposed module for Android that will remove DRM from your Kindle books
19AndroidIntentFuzzer. Fork of iSec Partners Android Intent Fuzzer (https://www.isecpartners.com/tools/mobile-security/intent-fuzzer.aspx)
16CardLibrary. Read Magnetic stripe data using square card reader
13Permission-Control. Viewing and revocation of Android permissions
12LLVM-Linux-Kernel. C
7teamviewerpoc. Java
6vUSBf. Python
5AndroidPermissionWebScraper. A real quick ruby script to scrape Androids permission website and export permission name, since API, and description to a .csv file
5BroadcastAnywhere. Java
5obfuscator.
5Newz4Droid. A usenet client for android
5SafetyNetTestApp. Java
4SM-G900V_NA_KK_Opensource-S5-Kernel-. C
4android-bins.
4boot-unlocker. Automatically exported from code.google.com/p/boot-unlocker-gnex
4MinMinGuard. Cancelled
4secure-mobile-development. Secure Mobile Development - A collection of best practices
4rootcloak. Open source module for Xposed Framework that hides root from specific apps
3magspoof. MagSpoof is a portable device that can spoof/emulate any magnetic stripe or credit card "wirelessly", even on standard magstripe readers.
3drozer. The Leading Security Assessment Framework for Android.
3fuzzer-android. Unnamed repository; edit this file 'description' to name the repository.
3HipChatXSSExploit. %3C%73%63%72%69%70%74%3E%61%6C%65%72%74%28%22%43%72%6F %73%73%53%69%74%65%53%63%72%69%70%74%69%6E%67%32%22%29%3C%2F %73%63%72%69%70%74%3E
3googleplay-api. Google Play Unofficial Python API
3Node-Password-Manager. A (not quite functional) password manager written in coffescript
3mitmproxy. An interactive SSL-capable intercepting HTTP proxy for penetration testers and software developers
3smali. smali/baksmali
3android-vts. In the spirit of open data collection, and with the help of the community, let's take a pulse on the state of Android security. NowSecure presents Android VTS
3samsung-ime-rce-poc. Samsung Remote Code Execution as System User
3Nexus-5-4.4.2-Local-DOS. Causes a reboot with 0 permissions on a Nexus 5 <= 4.4.2
3Signal-Android. A private messenger for Android.
3AndroidViewClient. Android ViewServer client
3SuperPoster. yenc NNTP poster in java
3bootimg-tools. Android boot.img creation and extraction tools (also MinGW compatible)
2androguard. Reverse engineering, Malware and goodware analysis of Android applications ... and more (ninja !)
2httpswatch. https://httpswatch.com
2Xposed. The native part of the Xposed framework (mainly the modified app_process binary).
2syzkaller. syzkaller is a distributed, unsupervised, coverage-guided Linux syscall fuzzer
2freebsd. FreeBSD src tree (read-only mirror)
2libping_unhash_exploit_POC. CVE-2015-3636 exploit
2iodine. Official iodine git repo
2cve-2015-1538-2. An exploit for CVE-2015-1538-1 - Google Stagefright ‘stsc’ MP4 Atom Integer Overflow Remote Code Execution
2drozer-agent. The Android Agent for the Mercury Security Assessment Framework.
2PlayAppInstaller. Java
2google-play-crawler. Play with Google Play API :)
2android-cluster-toolkit. The Android Cluster Toolkit helps organize and manipulate a collection of Android devices.
2unfiltered. A toolkit for servicing HTTP requests in Scala
2maven.
2platform_dalvik. C++
2S3Client. An Scala S3 Library that uses finagle for evented, asynchronous IO.
2DrawSomethingHelper. This game allows you to play CUSTOM WORDS on Draw Something. It also allows you to overlay and image to trace out.
2img4tool. image4
1evilarc. Create tar/zip archives that can exploit directory traversal vulnerabilities
1