The ActivityManagerService (https://androidreverse.wordpress.com/2018/03/11/aosp-activitymanager-and-activitymanagerservice/) is a component of Android that manages the Running Applications, non-system Services, ContentProviders and much more. The StartFlag DoS Exploit sends a manipulated startActivity event telling to start another Application in "native debugging" mode (in our Test we use the PermissionGrant Activtiy wich is marked as not debuggable". A bug in the ActivityManagerService doesn't answer with forwarding a SecurityException to the Attacker, instead it throws the SecurityException without catching it. This causes the ActivityManagerService to crash and all other Services depending on it also die.

Project Samples

Play Video

Project Activity

See All Activity >

Follow StartFlagExploit

StartFlagExploit Web Site

Other Useful Business Software
Gemini 3 and 200+ AI Models on One Platform Icon
Gemini 3 and 200+ AI Models on One Platform

Access Google's best plus Claude, Llama, and Gemma. Fine-tune and deploy from one console.

Build, govern, and optimize agents and models with Gemini Enterprise Agent Platform.
Start Free
Rate This Project
Login To Rate This Project

User Reviews

Be the first to post a review of StartFlagExploit!

Additional Project Details

Operating Systems

Android

Programming Language

Kotlin

Registered

2020-05-04
Report inappropriate content