flankerhqd/vendor-android-cves flankerhqd/vendor-android-cves

  • Stars
    star
    252
  • Rank 161,312 (Top 4 %)
  • Language
    C
  • License
    GNU Lesser Genera...
  • Created about 5 years ago
  • Updated over 1 year ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
flankerhqd/vendor-android-cves
github

flankerhqd

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Collections of my POCs for android vendor CVEs

vendor-android-cves

Collections of our POCs/fuzzing scripts/harness for vendor android CVEs, including those on BlackHat ASIA 2022: https://www.blackhat.com/asia-22/briefings/schedule/#the-hidden-rce-surfaces-that-control-the-droids-26083

Update:

I've received news about the SMT exploit in this thread being used in an XDA-thread releasing tool without proper credit. My original purpose to share my research is to help the community to better utilize and protect their devices, and to help the vendors to improve device security, and to help other researchers for technical insights. I'm glad to see this research is given a new life, and helped someone else, further development are welcome - however it should be legal, non-profit, with proper attribution, and in good faith. Sorry to hear someone not obeying these principles.

More Repositories

1

JAADAS

Joint Advanced Defect assEsment for android applications
Java
347
star
2

jebPlugins

Various Jeb plugins, including obfuscation restore
Python
91
star
3

bindump4j

A portable utility to locate android binder service
Java
89
star
4

wifimonster

Wifi sniffing and hijacking tool
Python
68
star
5

mediacodecoob

Infoleak and PC control poc for CVE-2015-6620 (24445127), I'll add after conference
C++
53
star
6

CVE-2015-6620-POC

POC for CVE-2015-6620, AMessage unmarshal arbitrary write
C++
39
star
7

IOUSBHID-IOHID-Overflow

Integer overflow in IOHIDDevice/IOUSBHIDDevice
Objective-C
21
star
8

descriptor-describes-toctou

POCs for IOMemoryDescriptor racing bugs in iOS/OSX kernels
Objective-C
19
star
9

cve-2015-6612poc-forM

C++
16
star
10

protostar-solutions

Automatically exported from code.google.com/p/protostar-solutions
C
13
star
11

blitzard

Will release EXPs soon after BHUSA
9
star
12

presentations

Various presentations and related materials
7
star
13

cc98-worm

cc98-xss-worm at 2012.12.31
JavaScript
6
star
14

unmap_poc

2
star
15

feishu-chatgpt

Go
2
star
16

iWooyun

iOS client for wooyun.org
Objective-C
2
star
17

type-inference

Automatically exported from code.google.com/p/type-inference
Java
2
star
18

zju-vpn-tools

Automatically exported from code.google.com/p/zju-vpn-tools
C++
1
star
19

infosec-exp-website

JavaScript
1
star