Android Dynamic Class Dumper — dump all DEX files from running Android apps using Frida - TheQmaks/clsdumper

Command-line tool that allows searching and downloading app packages (known as ipa files) from the iOS App Store - majd/ipatool

How to Install OpenClaw on an Android Phone and Control It via WhatsApp - androidmalware/OpenClaw_Termux

Android WebView is a system component that allows applications to render web content directly inside a native app, and it is one of the most widely used building blocks in the Android ecosystem. At the same time, deep links have become the primary way apps…

Build anti-detection Frida server from source. ~90 patches covering 16 detection vectors, weekly auto-builds with random names. - TheQmaks/phantom-frida

Download any APK by package name. 6 sources, automatic fallback, Cloudflare bypass. CLI + Python API. - TheQmaks/justapk

Powerful Android pentesting toolkit running fully on rooted devices. - zahidaz/jezail

Android Wiki of Attacks, Knowledge & Exploits

If you’ve ever wondered how apps written in Python, JavaScript, or C++ can run on Android when everyone says “Android is for Java and Kotlin,” you’re asking the right question. The answer isn’t complicated, but it does require understanding what Android actually…

Application-level virtualization in Android is an advanced technology that allows users to run multiple instances of the same app on a single device. Essentially, one app acts as a host, creating isolated virtual spaces where guest apps run as if they were…

Kaspersky experts have uncovered Keenadu, a sophisticated new backdoor targeting tablet firmware as well as system-level and Google Play apps. They also revealed connections between the world's most prolific Android botnets.

ESET researchers discover PromptSpy, the first known Android malware to abuse generative AI in its execution flow.

Massiv is a new Device Takeover (DTO) malware family without direct links to other known threats, masquerading as an IPTV app.

MythDetector is a lightweight Android application designed to help developers and testers detect presence of Frida in Android apps. - arvinjangid/MythDetector

بِسْمِ اللَّـهِ الرَّحْمَـٰنِ الرَّحِيمِ

The world of mobile security is getting its very first dedicated online conference - and you’re invited! Get ready for summit dedicated entirely to mobile hacking, organized by Mobile Hacking Lab - a one of leading platform for offensive mobile security training…

Cyble uncovers SURXRAT’s evolution across versions, built on ArsinkRAT code, and now downloading large LLM modules signaling an expansion of its operational capabilities.

Several mental health mobile apps with millions of downloads on Google Play contain security vulnerabilities that could expose users' sensitive medical information.

An analysis documenting how a commercial spyware sample, Predator, operates post-compromise.

Contribute to wh1te4ever/super-tart-vphone-writeup development by creating an account on GitHub.