LeakValue. Exploit for CVE-2022-20452, privilege escalation on Android from installed app to system app (or another app) via LazyValue using Parcel after recycle()
347ReparcelBug2. Writeup and exploit for installed app to system privilege escalation on Android 12 Beta through CVE-2021-0928, a `writeToParcel`/`createFromParcel` serialization mismatch in `OutputConfiguration`
123ResourcePoison. Writeup and exploit for CVE-2025-22441: Privilege escalation from installed app to SystemUI process on Android due to pass of untrusted ApplicationInfo to LoadedApk
104TheLastBundleMismatch. Writeup and exploit for CVE-2023-45777, bypass for Intent validation inside AccountManagerService on Android 13 despite "Lazy Bundle" mitigation
100AbxOverflow. Writeup and exploit for CVE-2024-34740, integer overflow in Android's BinaryXmlSerializer to system_server file write and then to system_server code execution from normal installed app
66ThisSeemsWrong. Writeup and exploit for CVE-2024-49746: Android's Parcel::continueWrite closing File Descriptors that are later used
46OrganizerTransaction. PoC for CVE-2021-39749, allowing starting arbitrary Activity on Android 12L Beta
37ReparcelBug. CVE-2017-0806 PoC (Android GateKeeperResponse writeToParcel/createFromParcel mismatch)
26side-strace. Run `strace` on program that is under another debugger
18IntentsLab. Android app for trying Intents, Content Providers and Binder interfaces
18TermuxAm. [MOVED] Android Oreo-compatible am command reimplementation
15prefixfree. Break free from CSS prefix hell!
4android-autostarts. Tool to manage autostarts (broadcast receivers) on an Android device.
2termux-packages. Android terminal emulator and Linux environment - packages repository.
1