安卓逆向开源库

qq:交流群：1037044062

Il2cppDumper

IIIImmmyyy/frida-il2cppDumper: Riru Il2cppDumper 加强版 内存里直接dump出源码信息 ( 已支持易盾)

vfsfitvnm/frida-il2cpp-bridge: 一个 Frida 模块，可以在运行时导出、跟踪或劫持任何 IL2CPP 应用程序，无需全局元数据文件。 — vfsfitvnm/frida-il2cpp-bridge: A Frida module to dump, trace or hijack any IL2CPP application at runtime, without needing the global-metadata.dat file.

AndroidReverser-Test/PtraceIl2cppDumper: 一个用于在安卓平台上进行主动调用来dump unity手游的so模块。

Perfare/Zygisk-Il2CppDumper: Using Zygisk to dump il2cpp data at runtime

AndnixSH/Il2CppDumper-GUI: Simple GUI version of Il2CppDumper

Perfare/Il2CppDumper: Unity il2cpp reverse engineer

djkaty/Il2CppInspector: Powerful automated tool for reverse engineering Unity IL2CPP binaries

so注入

lico-n/ZygiskFrida: Injects frida gadget using zygisk to bypass anti-tamper checks.

Mrack/TInjector: 劫持Zygote在App启动前注入so

reveny/Android-Ptrace-Injector: Android Ptrace Injector

frida

frida/frida: 克隆此仓库以构建 Frida — frida/frida: Clone this repo to build Frida

去特征frida

Ylarod/Florida: 基础反检测 frida-server / Basic anti-detection frida-server

抓包

mitmproxy/mitmproxy: An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.

alufers/mitmproxy2swagger: Automagically reverse-engineer REST APIs via capturing traffic

lqqyt2423/go-mitmproxy: mitmproxy implemented with golang. 用 Golang 实现的中间人攻击（Man-in-the-middle），解析、监测、篡改 HTTP/HTTPS 流量。

root

topjohnwu/Magisk: The Magic Mask for Android

bmax121/APatch: The patching of Android kernel and Android system

tiann/KernelSU: A Kernel based root solution for Android

证书迁移

ys1231/MoveCertificate: 支持Android7-15移动证书，兼容magiskv20.4+/kernelsu/APatch, Support Android7-15, compatible with magiskv20.4+/kernelsu/APatch

java 反编译

skylot/jadx: Dex to Java decompiler

iBotPeaches/Apktool：用于逆向工程 Android apk 文件的工具 — iBotPeaches/Apktool: A tool for reverse engineering Android apk files

pxb1988/dex2jar: 工具，用于处理安卓 .dex 和 Java .class 文件 — pxb1988/dex2jar: Tools to work with android .dex and java .class files

CodingGay/BlackDex: BlackDex 是一个 Android 解包（dexdump）工具，它支持 Android 5.0~12，无需依赖任何环境。BlackDex 可以在任何 Android 手机或模拟器上运行，您可以在几秒钟内解包 APK 文件。 — CodingGay/BlackDex: BlackDex is an Android unpack(dexdump) tool, it supports Android 5.0~12 and need not rely to any environment. BlackDex can run on any Android mobile phone or emulator, you can unpack APK File in several seconds.

zygisk

Developer Guides | Magisk

topjohnwu/zygisk-module-sample：构建 Zygisk 模块的示例项目 — topjohnwu/zygisk-module-sample: A sample project for building Zygisk modules

Dr-TSNG/ZygiskNext: Standalone implementation of Zygisk

xposed

LSPosed/LSPosed: LSPosed Framework

mywalkb/LSPosed_mod: My changes to LSPosed