DroidGuard

November 11, 2021

This is a PoC that shows basic integrity bypass without MagiskHide by modifying the execution of DroidGuard.

Here are, for instance, some modules detected by DroidGuard:

 1frida-agent-32.so
 2frida-agent-64.so
 3libarthook_native.so
 4libfrida-gadget.so
 5libmemtrack_real.so
 6librfbinder-cpp.so
 7libriru_edxp.so
 8libriru_edxposed.so
 9libriru_snet-tweak-riru.so
10libsandhook-native.so
11libsandhook.edxp.so
12libsandhook.so
13libva++.so
14libva-native.so
15libwhale.edxp.so
16libxposed_art.so