Quarkslab conference talks

A Gradio web UI for Large Language Models.

blu_spark kernel for Pixel 6/Pro

Resources related to GitHub Security Lab

btrace：binder_transaction+eBPF+Golang实现通用的Android APP动态行为追踪工具

Proof-of-concept code for Android APEX key reuse vulnerability

收集整理漏洞EXP/POC,大部分漏洞来源网络，目前收集整理了900多个poc/exp，长期更新。

Disclosures of third party vulnerabilities found by Meta

tiny, portable SOCKS5 server with very moderate resource usage

Unpack UPDATE.APP files

2023 HVV情报速递~

This is a one-time signature verification bypass. For persistent signature verification bypass, check https://github.com/TomKing062/CVE-2022-38691_38692

Security-related Slide Presentation & Security Research Report（大安全各领域各公司各会议分享的PPT以及各类安全研究报告）

大安全各领域各公司各会议分享的PPT

Virtual Engine for Android(Support 14.0 in business version)

Starter workspace to use with the CodeQL extension for Visual Studio Code.

🔥🔥hooker是一个基于frida实现的逆向工具包。为逆向开发人员提供统一化的脚本包管理方式、通杀脚本、自动化生成hook脚本、内存漫游探测activity和service、firda版JustTrustMe、disable ssl pinning

Samples and Unpacker of malicious backdoors and exploits developed and used by Pinduoduo

Postcat 是一个可扩展的 API 工具平台。集合基础的 API 管理和测试功能，并且可以通过插件简化你的 API 开发工作，让你可以更快更好地创建 API。An extensible API tool.

apk.sh makes reverse engineering Android apps easier, automating some repetitive tasks like pulling, decoding, rebuilding and patching an APK.

拼多多apk内嵌提权代码，及动态下发dex分析

A CAT called tabby ( Code Analysis Tool )

Exploit for CVE-2022-20452, privilege escalation on Android from installed app to system app (or another app) via LazyValue using Parcel after recycle()

华为 framework 源码

Android IPC. C++ binder demo

https://lixiaogang03.github.io/2019/01/21/Android-Native-Service/