Udex. dump dex for android 14
63ZygiskFrida. Injects frida gadget using zygisk to bypass anti-tamper checks.
7ptracer. System calls monitor and analyzer for x86_64 and AARCH64 (Android)
2proxydroid. 编译版https://github.com/madeye/proxydroid
2crdroid_android_prebuilts_clang_host_linux-x86_clang-r536225. C++
2DexAnalyze. 解析Dex文件结构
1arrow_android_manifest. ArrowOS manifest - your journey starts here! GottaSyncThemAll
1arrow_android_packages_apps_ParanoidSense. Kotlin
1google-keys.
1gdbserver. A tiny debugger implement the GDB Remote Serial Protocol. Can work on i386, x86_64, ARM and PowerPC.
1arrow_android_vendor_gapps. Makefile
1Manifest_Tester. Test AOSP/git repo manifests
1arrow_local_manifest.
1dex2c. 🎇 AOT compiler to translate dalvikvm code into cpp code
1kernelscript. KernelScript is a modern, type-safe, domain-specific programming language for eBPF-Centric kernel customization
1AndroidMethodHook. android art hook like Sophix
1AOSP-study. 对AOSP定制 了解原理以及脱壳机制作
1crdroid_android_packages_apps_FaceUnlock.
1ajeossida. Customized Frida build for bypassing basic detections and helping ajeossideul (guys) test mobile apps with Frida
1HookwormForAndroid. 一个基于Magisk&Riru的Module,可以助你用超低成本开发各种Hook插件,无须Xposed
1YukiHookAPI. ⛱️ An efficient Hook API and Xposed Module solution built in Kotlin.
1crdroid_android. Build crDroid and some general information
1urhook. 一个安卓/Linux Arm64的多功能hook库
1GlossHook. A simple android NativeHook library.
1bpfhacks. eBPF hacks
1analysis_claude_code. 本仓库包含对 Claude Code v1.0.33 进行逆向工程的完整研究和分析资料。包括对混淆源代码的深度技术分析、系统架构文档,以及重构 Claude Code agent 系统的实现蓝图。主要发现包括实时 Steering 机制、多 Agent 架构、智能上下文管理和工具执行管道。该项目为理解现代 AI agent 系统设计和实现提供技术参考。
1LSPTools. LSPosed模块的两个利器:classmonitor和jnitrace
1BPFroid. Trace Android framework API, native libraries, system calls and other events using eBPF
1ApkShelling. 脱Apk使用360加固、梆梆加固、腾讯乐固、百度加固免费版加的壳
1Jiagu. Android apk jiagu
1AlbatrossAndroid. a next-generation hooking and reflection framework built for performance, safety, and extensibility.
1kyanos. Kyanos is a networking analysis tool using eBPF. It can visualize the time packets spend in the kernel, capture requests/responses, makes troubleshooting more efficient.
1nmmp. dex-vm used to protect the android classes.dex file
1DirtyPipe-Android. Dirty Pipe root exploit for Android (Pixel 6)
1hello-rootkit. 一个基于LKM的Linux内核级rootkit的实现,包含模块隐藏、提权、文件隐藏、进程隐藏、端口隐藏功能
1bpftrace_local_manifest. Local manifest instructing repo to pick bpftrace-related projects from https://github.com/michalgr/
1eStrace. A tool that traces system calls using eBPF
1aosp-env. 快速搭建aosp(Android源码)的开发环境
1retsnoop. Investigate kernel error call stacks
1ptrace_do. A ptrace library for easy syscall injection in Linux.
1dexbox. A lightweight dex file parsing library
1bpf-inside. C
1Action-Build. Build OnePlus SukiSU Ultra KPM+VFS+LZ4KD Kernel
1HwBpApp. hwBreakpoint Test App
1oumi. Easily fine-tune, evaluate and deploy Qwen3, DeepSeek-R1, Llama 4 or any open source LLM / VLM!
1AppProtect. 整理一些app常见的加固方法,包括java层、native层和资源文件加固等
1RDex. 基于Xposoed的QContainer容器版本脱壳机,目前支持二代填充式类抽取加固
1Anti-Anti-Debug. Be able to use developer tools again on user-hostile websites
1Skroot-Next. 适用于 Android 的patch内核 root 解决方案
1Android_Kernel_hwBreakPoint. C++
1VmwareHardenedLoader. Vmware Hardened VM detection mitigation loader (anti anti-vm)
1TSBattery. A new way to save your battery avoid cancer apps hacker it.
1bpftrace. bpftrace is a kernel live tracing (debugging) tool, similar to dtrace on Illumos. Ubuntu doesn't provide this package.
1TimTool. Tim功能性增强XPosed模块,为Tim增加更多趣味功能
1UnifiedReward. Official implementation of UnifiedReward & [NeurIPS 2025] UnifiedReward-Think
1ResourcePoison. Writeup and exploit for CVE-2025-22441: Privilege escalation from installed app to SystemUI process on Android due to pass of untrusted ApplicationInfo to LoadedApk
1ebpf_dev_tool. Rust
1LKM. Examples on Linux Kernel Modules Hacking
1Build-Mem-Module-Workflow. Workflow file for build memory read kernel module for android.
1DexKit. An easy-to-use, high-performance dex deobfuscation library.
1