JAADAS. Joint Advanced Defect assEsment for android applications
352vendor-android-cves. Collections of my POCs for android vendor CVEs
287jebmcp. Python
250bindump4j. A portable utility to locate android binder service
100jebPlugins. Various Jeb plugins, including obfuscation restore
91wifimonster. Wifi sniffing and hijacking tool
82mediacodecoob. Infoleak and PC control poc for CVE-2015-6620 (24445127), I'll add after conference
53CVE-2015-6620-POC. POC for CVE-2015-6620, AMessage unmarshal arbitrary write
38descriptor-describes-toctou. POCs for IOMemoryDescriptor racing bugs in iOS/OSX kernels
20IOUSBHID-IOHID-Overflow. Integer overflow in IOHIDDevice/IOUSBHIDDevice
20cve-2015-6612poc-forM. C++
16protostar-solutions. Automatically exported from code.google.com/p/protostar-solutions
13blitzard. Will release EXPs soon after BHUSA
8presentations. Various presentations and related materials
6cc98-worm. cc98-xss-worm at 2012.12.31
6mosec2016. The slides and exploit of mosec2016
5Introspy-Android. Security profiling for blackbox Android
3drozer-py3. The Leading Security Assessment Framework for Android.
3unmap_poc.
2feishu-chatgpt. Go
2VirtualApp. An open source implementation of MultiAccount.(Support 4.0 - N).
2idaplugins-list. A list of IDA Plugins
2BadKernel. Full exploit of CVE-2016-6754(BadKernel) and slide of SyScan360 2016
2iWooyun. iOS client for wooyun.org
2dexposed. dexposed enable 'god' mode for single application.
2ApkProtect. 通付盾第一代安全加固方案
2MFFA. Media Fuzzing Framework for Android
2wixss. Traffic Hijack Tool via NodeJS
2appshark. Appshark is a static taint analysis platform to scan vulnerabilities in an Android app.
2type-inference. Automatically exported from code.google.com/p/type-inference
1dpt-shell. An android Dex protects shell implementation
1VirtualAppDoc.
1sqlchop. A novel SQL injection detection engine built on top of SQL tokenizing and syntax analysis.
1ShakaApktool. ShakaApktool
1GitHack. A `.git` folder disclosure exploit
1BinAbsInspector. BinAbsInspector: Vulnerability Scanner for Binaries
1mate7_TZ_exploit. Huawei mate 7 TrustZone exploit
1mobile-security-wiki. HTML
1training. Training materials crafted and publicly provided by Red Naga members
1uxss. uxss在线测试页面
1bifuz. Broadcast Intent FUZzing Framework for Android
1pine. Dynamic java method hook framework on ART.
1closurether. network traffic hijack via Node
1AndroidKernelExploitationPlayground. C
1navicat-keygen. A keygen for Navicat Premium
1mitmproxy. An interactive SSL-capable intercepting HTTP proxy for penetration testers and software developers
1canhazaxs. A tool for enumerating the access to entries in the file system of an Android device.
1ovaa. Oversecured Vulnerable Android App
1my-notes.
1PyWxDump. SharpWxDump的Python语言版。微信客户端取证,可获取用户个人信息(昵称/账号/手机/邮箱/数据库密钥(用来解密聊天记录)),解密脚本,获取数据库脚本;持获取多用户信息,目前支持所有新版本、正式版版本
1androrat. Remote Administration Tool for Android devices
1