30 open-source projects similar to alibaba/dexposed, ranked by how many features they have in common. Compare stars, activity and what each one does to find the best Dexposed alternative.
Xposed is a native Android runtime hooking framework and instrumentation tool. It provides a modified version of the Android app process binary to intercept and modify the behavior of system and application processes at the binary level. The framework enables Android operating system customization by altering internal function calls and runtime execution flow. It achieves this through native process instrumentation, allowing for the modification of functionality without altering original application files. The tool covers several low-level capabilities, including native library injection and
Epic is a toolkit for Android runtime instrumentation, method interception, and security posture auditing. It functions as an aspect-oriented programming framework and a dynamic method interceptor designed to monitor and alter the behavior of Java methods within the Android Runtime. The project provides capabilities for intercepting and modifying both core Android framework components and specific application logic. This allows for the injection of custom Java behavior and the redirection of method execution without altering the original source code. The framework includes tools for applicat
VirtualApp is an Android application virtualization engine and user-space sandbox that enables the execution of applications within an isolated environment. It allows for the running of multiple independent instances of the same application on a single device and supports private application installation without requiring system-level root access. The project features a comprehensive hooking framework for intercepting Java and native layer functions to modify application behavior. It includes tools for hardware simulation to spoof device models and system information, as well as a non-root pr
LSPosed_mod is a system for Android system hooking and module management. It enables the installation and configuration of system-level modifications to change device behavior without altering the original system image or source files. The project utilizes zygote-based process injection and runtime method hooking to intercept execution flows in memory. It includes a version-agnostic execution layer to maintain a consistent interface across different Android operating system versions and environments, as well as dynamic proxy interception to modify method arguments and return values. Manageme
This project provides a collection of patches and modification sets for Android applications. It focuses on enhancing media consumption through the removal of advertisements and sponsored segments, while enabling deep customization of application interfaces and internal behaviors. The project employs system-level modifications, including binary hooking, bytecode manipulation, and dynamic memory patching, to override default application restrictions. These capabilities allow for the restoration of push notifications via signature spoofing, the suppression of screenshot alerts, and the automati
Hooker is a toolkit for the dynamic instrumentation, memory analysis, and deobfuscation of Android applications. It functions as a reverse engineering framework that uses Frida to inject scripts into running processes, monitor native calls, and extract executable DEX files. The project provides specialized utilities for bypassing security controls, including tools to disable SSL certificate validation and BoringSSL pinning to enable HTTPS traffic interception. It includes capabilities for detecting application packing, extracting cryptographic keys by hooking encryption algorithms, and circum
JustTrustMe is an Android security auditing tool and mobile application penetration testing utility. Its primary purpose is to bypass hardcoded certificate requirements and disable SSL pinning in mobile applications to allow the inspection of encrypted API requests and responses. The project functions as a dynamic method hooking module that integrates with the Xposed framework. It uses system-level instrumentation to intercept Java runtime function calls and override security checks within third-party Android applications. The tool covers a range of capabilities including the disabling of SS
This project provides a collection of reference materials, guides, and cheatsheets designed to optimize the Android development workflow. It serves as a comprehensive resource for implementing best practices in application building, debugging, and user interface design. The repository covers specialized techniques for build optimization, including methods to reduce binary sizes and accelerate compilation. It also provides detailed references for device debugging, memory leak detection, and the application of Material Design principles. The project further details productivity enhancements fo
xHook is a low-level instrumenter and hooking library for Android ELF binaries. It functions as a framework for intercepting native symbols and redirecting function calls by modifying the procedure linkage table. The tool utilizes regular expressions to filter specific binary files and symbols for interception. It enables the redirection of native calls toward custom function implementations without altering the original binary files. The framework covers dynamic symbol resolution, ELF table modification, and security analysis of native libraries. It also includes stability mechanisms that u
This project is a static site project homepage and software distribution website. It serves as an Android modification portal and a central web portal for downloading official releases and accessing documentation for Android system modifications. The site functions as a markdown-based documentation site and an open source project hosting platform. It provides a central location for technical references and guides regarding the Android system framework, while distributing stable software versions and installation guides to the developer community. The website is built using static site genera
This project is an Xposed Framework module and runtime code injector designed to modify Android application behavior. It functions as an app modifier and feature unlock tool that enables the injection of custom code and the bypassing of subscription restrictions and payment walls to grant access to premium capabilities. The system extends application user interfaces by embedding functional toggles and custom control menus directly into the settings and user pages of target apps. It allows for the injection of additional tools and enhancements through a dedicated configuration menu. The techn
RuneLite is an open-source game client for OldSchool RuneScape. It serves as a community-driven alternative to the official software, functioning as a modified client that allows for deep customization and feature extension. The project provides a programmable game plugin system that enables the development and injection of custom tools directly into the running game environment. This framework allows for the creation of interface enhancements and the integration of custom logic to modify client behavior. The system also includes a game cache data manager for reading and manipulating local a
r0capture is a tool for intercepting network traffic from Android applications. It serves as a traffic interceptor, packet sniffer, and client certificate exporter used to analyze application-layer communication on Android devices. The project provides mechanisms to bypass SSL pinning and certificate validation, allowing the decryption of encrypted traffic without modifying device trust stores. It also enables the extraction of client-side certificates from application memory for saving to local device storage. Captured network data is serialized into PCAP files to support offline protocol a
This project is a set of extensions for the WeChat macOS application designed to modify client behavior and unlock hidden features. It functions as a client modification framework and a multi-account manager, allowing users to launch and operate several independent instances of the application on a single machine. The tool distinguishes itself through deep integration with the operating system, enabling the execution of macOS system commands and remote administration via incoming chat messages. It also provides productivity extensions that connect chat lists and conversation histories to exte
HybridCLR is a hybrid C# execution engine and assembly loader designed for Unity. It provides a system for hot-updating C# logic across all platforms at runtime without requiring the application to be rebuilt or reinstalled. The project is distinguished by its mixed-mode execution, which runs unmodified code at native speed while using a high-performance interpreter for updated functions. It includes a generic type resolver that allows hot-updated code to use generic classes and functions regardless of whether they were pre-instantiated in the main binary. To protect proprietary source code,
LSPosed is an Android runtime hooking framework and system modification tool. It enables the modification of application and system behavior in memory without altering original installation files, serving as a platform for distributing and managing community-created extension modules. The project provides a comprehensive suite for device and identity spoofing, including the ability to mask hardware identifiers, simulate geographic locations, and conceal root access or hooking frameworks to bypass security and integrity checks. It also functions as an application modder to unlock premium featu
unidbg is a framework for emulating and debugging ARM32 and ARM64 native binaries on a host machine. It serves as an Android and iOS binary debugger and native library emulator, allowing for the execution of native code without the need for physical hardware. The project distinguishes itself through a native function hooking framework and a Model Context Protocol debugging tool that exposes emulator state to AI assistants for automated binary analysis. It also includes a specialized memory analyzer for tracking guest-side allocations and identifying leaks in native binaries. The toolset cove
Detours is a library for intercepting Win32 API calls and redirecting function calls at runtime on Windows, enabling binary-level instrumentation without requiring access to the original source code. It functions as an API hooking library and binary instrumentation toolkit, allowing developers to monitor or modify the behavior of compiled Windows binaries by hooking into their function execution paths. The project achieves this through detour-based function interception, where the first few instructions of a target function are replaced with a jump to a user-supplied detour function, while pr
Robust is an Android hotfix framework and runtime application updater designed for patching bugs in production environments. It functions as a bytecode patcher and dynamic code injection tool, allowing for the modification of application logic without requiring a full app update or device reboot. The project enables the remediation of Android defects by injecting new classes and methods into existing builds and modifying the implementations of existing methods. It utilizes a toolchain to generate binary patch files that update application behavior and introduce workarounds on the fly. The sy
Matrix is a suite of mobile application performance management and analysis tools. It provides a plugin-based monitoring system for capturing crashes, lags, and memory leaks, alongside a static binary auditor for reducing installation package size and a bytecode instrumentation tool for performance tracking. The project distinguishes itself through native memory debugging and a SQLite query linter that identifies inefficient database patterns. It employs native interception techniques to detect memory leaks and heap corruption without requiring source code recompilation, and uses a custom run
Aliucord is a modified version of the Discord Android application that functions as a plugin-based app extender. It allows for the installation of third-party plugins and deep customization of the mobile client without requiring a full rebuild of the binary. The project provides a framework for loading external code modules at runtime and includes a management system for installing and updating these extensions. It features a dedicated telemetry blocker designed to prevent the application from sending tracking and analytics data to remote servers. Additional capabilities include a crash logg
Steam Achievement Manager is a game achievement editor and specialized API client designed to modify and unlock game achievements and statistics for titles on the Steam platform. It functions as a utility for manually changing the state of earned rewards and milestones while the client is running. The tool provides capabilities for steam profile customization and game statistic manipulation, allowing users to adjust displayed progress and achievement states. It operates by interfacing with the platform backend to update user profile data.
Untrusted is a web-based programming puzzle and meta-programming game where progress is achieved by rewriting the active JavaScript source code while the application is running. It functions as a code-editing adventure game that combines programming education with puzzle gameplay. The experience centers on real-time logic modification, requiring players to edit scripts to change environmental rules, manipulate game behavior, and resolve puzzle-based objectives. This interactive code editing allows players to overwrite active functions and variables to overcome obstacles. The project includes
jvm-sandbox is a bytecode instrumentation framework and plugin container for the Java Virtual Machine. It acts as a runtime application modifier that enables the injection and modification of bytecode in a running process without requiring an application restart or changes to the original source code. The system provides a non-invasive aspect-oriented programming framework to intercept method execution and alter behavior in live processes. It functions as an isolated environment for functional modules, employing a custom class loader hierarchy to prevent dependency conflicts between plugins a
Blackbone is a collection of specialized tools for memory scanning, process injection, and kernel-driver interfaces used to manipulate the Windows execution environment. It provides a framework for executing remote code, mapping portable executable images, and managing threads across different process boundaries. The project includes a kernel memory driver to access kernel memory and modify handle rights to hide allocations from user-mode detection. It also features a library for intercepting function calls in remote processes using software interrupts and hardware breakpoints. The toolkit c
SuperWeChatPC is a modifier for the WeChat desktop client that unlocks hidden features through memory patching and binary hooks. It functions as a multi-account messaging manager, a messaging data archiver, and a software interface that exposes internal messaging functions to external programs. The project enables the simultaneous operation of multiple independent client instances on a single computer through process isolation. It allows for the transmission of large attachments by bypassing standard file size restrictions and provides a wrapper for programmatic message automation. The tool
Theos is a cross-platform mobile development toolchain and build system designed for compiling and packaging software for mobile operating systems. It functions as a system tweak kit and runtime hooking framework, allowing developers to create modifications that alter the internal behavior of mobile OS environments. The project distinguishes itself by providing specialized preprocessor syntax that generates low-level API calls, removing the boilerplate code typically required for function and method hooking. It enables dynamic runtime method swizzling and class extensions, allowing developers
Dopamine is an iOS jailbreak tool designed to provide root access and administrative privileges for devices running iOS 15 and 16. It functions as a system privilege escalation exploit that grants elevated permissions without modifying the read-only system partition. The project employs a semi-untethered root exploit model, meaning it requires a manual trigger after every reboot to restore root access. This approach allows for the bypass of system restrictions and the installation of unauthorized software. The tool manages root access and system customization through a variety of low-level c
This project is a modification for the WeChat mini program developer environment designed to bypass account identity requirements and server-side domain validation. It functions as a set of utilities and patches that enable the creation and testing of mini programs without a registered account identifier or an official developer account. The tool specifically disables AppID registration requirements and removes domain whitelist restrictions. This allows developers to perform network requests to any external endpoint and proceed with local development without a validated project ID. The imple
Chucker is an on-device HTTP inspector for Android applications that captures and records network traffic for the OkHttp library. It functions as a network interceptor and proxy-like utility, allowing for the analysis of API calls directly within the mobile application environment. The tool provides a local interface for analyzing API interactions, which includes the ability to decode binary response bodies into human-readable text. It also includes security features to mask sensitive information in request and response headers through redaction rules. Captured transactions are managed via a