michalbednarski

Elite
@michalbednarski

LeakValue. Exploit for CVE-2022-20452, privilege escalation on Android from installed app to system app (or another app) via LazyValue using Parcel after recycle()

347

ReparcelBug2. Writeup and exploit for installed app to system privilege escalation on Android 12 Beta through CVE-2021-0928, a `writeToParcel`/`createFromParcel` serialization mismatch in `OutputConfiguration`

123

ResourcePoison. Writeup and exploit for CVE-2025-22441: Privilege escalation from installed app to SystemUI process on Android due to pass of untrusted ApplicationInfo to LoadedApk

104

TheLastBundleMismatch. Writeup and exploit for CVE-2023-45777, bypass for Intent validation inside AccountManagerService on Android 13 despite "Lazy Bundle" mitigation

100

AbxOverflow. Writeup and exploit for CVE-2024-34740, integer overflow in Android's BinaryXmlSerializer to system_server file write and then to system_server code execution from normal installed app

66

ThisSeemsWrong. Writeup and exploit for CVE-2024-49746: Android's Parcel::continueWrite closing File Descriptors that are later used

46

OrganizerTransaction. PoC for CVE-2021-39749, allowing starting arbitrary Activity on Android 12L Beta

37

ReparcelBug. CVE-2017-0806 PoC (Android GateKeeperResponse writeToParcel/createFromParcel mismatch)

26

side-strace. Run `strace` on program that is under another debugger

18

IntentsLab. Android app for trying Intents, Content Providers and Binder interfaces

18

TermuxAm. [MOVED] Android Oreo-compatible am command reimplementation

15

prefixfree. Break free from CSS prefix hell!

4

android-autostarts. Tool to manage autostarts (broadcast receivers) on an Android device.

2

termux-packages. Android terminal emulator and Linux environment - packages repository.

1
14
Apply