TL;DR#1: This is the first part of our series on Android Game Hacking. We will cover lab environments for rooted Android systems (on a…

TL;DR#1: The post will discuss a step-by-step guide of how mobile web traffic can be intercepted on current android and ios applications…

Cybersecurity professionals and enthusiasts often rely on scripting to automate tasks and execute penetration tests efficiently. Writing payloads manually for devices like Rubber Ducky, Evil Crow Cable, or Flipper Zero can be time-consuming and error-prone.…

<p>In recent years, Android malware campaigns in India have increasingly abused the trust associated with government services and official digital platforms. By imitating well-known portals and leveraging social engineering through messaging applications…

Android Dynamic Class Dumper — dump all DEX files from running Android apps using Frida - TheQmaks/clsdumper

Command-line tool that allows searching and downloading app packages (known as ipa files) from the iOS App Store - majd/ipatool

How to Install OpenClaw on an Android Phone and Control It via WhatsApp - androidmalware/OpenClaw_Termux

Android WebView is a system component that allows applications to render web content directly inside a native app, and it is one of the most widely used building blocks in the Android ecosystem. At the same time, deep links have become the primary way apps…

Build anti-detection Frida server from source. ~90 patches covering 16 detection vectors, weekly auto-builds with random names. - TheQmaks/phantom-frida

Download any APK by package name. 6 sources, automatic fallback, Cloudflare bypass. CLI + Python API. - TheQmaks/justapk

Android pentesting toolkit with REST API, web terminal, screen mirroring, Frida, and full device control from your rooted device - zahidaz/jezail

Android Wiki of Attacks, Knowledge & Exploits

If you’ve ever wondered how apps written in Python, JavaScript, or C++ can run on Android when everyone says “Android is for Java and Kotlin,” you’re asking the right question. The answer isn’t complicated, but it does require understanding what Android actually…

Application-level virtualization in Android is an advanced technology that allows users to run multiple instances of the same app on a single device. Essentially, one app acts as a host, creating isolated virtual spaces where guest apps run as if they were…

ESET researchers discover PromptSpy, the first known Android malware to abuse generative AI in its execution flow.

Massiv is a new Device Takeover (DTO) malware family without direct links to other known threats, masquerading as an IPTV app.

MythDetector is a lightweight Android application designed to help developers and testers detect presence of Frida in Android apps. - arvinjangid/MythDetector