noxen is an Android runtime interception tool for security research. It uses Frida to hook Java methods in live apps, map component communication, and captur...

Seriously, How hard can it be?

In this video, I break down a critical Android vulnerability ( CVE‑2026‑0073 ) affecting modern versions of Android (14, 15, 16), where a flaw in ADB’s authentication logic can allow an attacker on the same network to gain shell access without user interaction.…

Google has today announced the launch of a new ‘Android Intrusion Logging’ feature as part of Android Advanced Protection Mode (AAPM). The new intrusion logging feature promises to be a major aid to digital forensics researchers undertaking investigations…

A full technical teardown of a malware campaign hiding behind India’s traffic fine system

Android Penetration Testing Tool — Auto Root Detection & SSL Pinning Bypass with Frida Script Generation - Whitehat987/apkshield-pt

An unprivileged Android app can leak the user's real IP past Always-On VPN + lockdown by handing system_server a UDP payload to fire on its behalf.

Cleafy's TIR team identified and analyzed two previously undocumented Android NFC relay malware families, DevilNFC and NFCMultiPay, actively targeting European and LATAM banking customers.

I pointed an autonomous coding agent at a $35 projector. It found a big RAT.

true

Flipper OneBigger. More powerful. Way more capable.Flipper One is shaping up to be a serious upgrade—and we’ve broken it all down in our latest video and blo...

Cyble analyzes OverlayPhantom, an Android banking trojan targeting 180+ apps across 10 countries, stealing credentials via fake overlays and real-time screen streaming.

The BTMOB malware pairs remote access capabilities with ready-made campaign tools, lowering the barrier for full device compromise.

Intent Runtime Inspection System. Contribute to Ch0pin/iris development by creating an account on GitHub.

Demystifying phone unlocking tools: A technical overview

Hello folks,