• Stars
    star
    226
  • Rank 176,514 (Top 4 %)
  • Language
  • Created almost 2 years ago
  • Updated 5 months ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Collection of Some Publically Available POC Apps to Detect Root/Magisk presence.

MagiskDetection

Collection of Some Publically Available POC Apps to Detect Root/Magisk presence.

These applications have following detections:

Detect Magisk(com.darvin.security) -

"Magisk Detection"
"Magisk Hide Detection"

Hunter(com.zhenxi.hunter) -

"Apk Signature Verification"
"Magisk & Root Detection"
"Sandbox & Sandbox Detection"
"Frida & IDA Detection"
"libc Memory Detection"
"Unidbg Detection"
"Key function inlinehook & got table Detection"
"Anti-Debugging Detection"
"ISO strong Detection"
"Magisk Hide Detection"
"Custom ROM Detection"

Magisk Detector(io.github.vvb2060.magiskdetector) -

"Magisk Detection"
"Magisk Hide Detection"

MinotaurPoc(icu.nullptr.nativetest) -

"Magisk Detection"
"Zygisk Detection"

Momo(io.github.vvb2060.mahoshojo) -

"Frida Detection"
"Magisk Detection"
"Zygisk Detection"
"Magisk Modules Detection"
"Debugging Mode Detection"
"Developer Mode Detection"
"Bootloader Detection"
"System Files Modified By Magisk Detection"
"Package Manager abnormal Detection"
"Custom ROM Detection"
"SELinux State Detection"

NativeTest(icu.nullptr.nativetest) -

"Magisk Detection"
"Magisk Hide Detection"

Oprek Detector(com.godevelopers.OprekCek) -

"Root Specific App Checks"
"Magisk Detection"
"Magisk Module Detection"
"SU Binary Detection"
"SELinux State Detection"
"Xposed Detection"

Rootbeer Sample(com.scottyab.rootbeer.sample) -

"Root Specific Apps Checks"
"SU Binary Check"
"Magisk Detection"
"Prop Detection"
"SELinux State Detection"

Ruru(com.byxiaorun.detector) -

"Root Specific Apps Check w/o Syscalls"
"Root Specific Apps Check with PackageManager"
"Xposed Hook Detection"
"Magisk Binary Detection"
"Zygisk Detection"
"Riru Detection"
"Prop Detection"

SafeCheck(com.ysh.hookapkverify) -

"Application Signature Detection"
"Magisk SU Detection"
"Syscall Hook Detection"
"Magisk Hide Detection"
"Zygisk Detection"
"Riru Detection"

SHA256 of Each Files(Just to trace them back on VT/Koodous or somewhere else)

52141ed109fb3e199d714deb99f0f794706de8420b180872c9801dbf247dbb80
a327f0ce5af72ee53cbd39d93c41d4c7ab8cd931ccd128c2d4cc89d41ee20b80
1ed654af2f99cf60c51e125d5a1ee3a9e3c7b37854c1f5862fcb49ecccff5ec9
f150900a62a651899cee8767adaf057ff83b3b383400eb198a9ae3cb698409a8
b4a3b33a3b3a9c423543bda59e0c9b1c5b74799da4c4ed272ff7971ecd3c8264
4605779cf733995d0a26cca54ab055d5cecbcf68fd710f5c7a4cb2e230826717
91da21e8a9103b283e0dba45e708af0ca94dd93eefe95740e87708937743e06d
3f027fbd5320f4def0271cf5425abe8a9081f655507236a1d4ceee8795d1f310
607ec962ba93cc9817129cb693ff0f335f500a297b5a297e71fbb998d0f6849c
066802ca09fe49ee9b62c4d94fd232886251d386baca010753d9975e201d3429
7844448585ee7357aba550c5cde03a3b5e9a247dc36c5fc79fa73905fb3a4ccf