Android虚拟化研究

IDA插件集合，含项目名称及项目地址，每日定时Clone项目。

Traces syscalls on iOS via Frida, including Mach syscalls

an iOS kernel function hooking framework for checkra1n'able devices

Android 14 kernel exploit for Pixel7/8 Pro

An IDA Toolkit for analyzing iOS kernelcaches.

An iOS kernel debugger based on a KTRR bypass for A11 iPhones; works with LLDB and IDA Pro.

CVE-2018-4280: Mach port replacement vulnerability in launchd on iOS 11.2.6 leading to sandbox escape, privilege escalation, and codesigning bypass.

RetDec is a retargetable machine-code decompiler based on LLVM.

Playing with the VMProtect software protection. Automatic deobfuscation of pure functions using symbolic execution and LLVM.

Triton is a dynamic binary analysis library. Build your own program analysis tools, automate your reverse engineering, perform software verification or just emulate code.

A fork of Hikari Obfuscator [WIP]

用来辅助分析易语言程序的IDA插件

inject luajit bytecode

Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.

Dynamic Instrumentation Tool Platform

linux(android) payload module

log4j2 rce漏洞扫描器

Direct Memory Access (DMA) Attack Software

Source code of ASAN--

基于eBPF的堆栈追踪工具

It can help you better use Frida in SO binaries

android免root native层与java层注入框架

Modify Android linker to provide loading module and hook function

A tool that traces system calls using eBPF

Windows Anti-Rootkit Tool

一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具，可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如：Title、Domain、CDN、指纹信息、状态信息等。