This repository contains daily security research reports published by ChillHack404.
Our focus is on securing the network and the internet as a whole — not only for technical professionals, but also for the general public.
We believe security research should be transparent, practical, and accessible, so that risks can be understood and addressed before they are exploited.
All reports in this repository are based on real-world observations, hands-on analysis, and defensive security research.
- Protect users and organizations from real-world security threats
- Expose abusive, deceptive, or malicious software behavior
- Bridge the gap between technical security research and public internet safety
- Promote responsible disclosure and defensive awareness
Security is not only for engineers — it is for everyone who uses the internet.
Penetration Testing · Vulnerability Research · Bug Bounty · OWASP Top 10
- External black-box penetration testing
- Identification of critical web vulnerabilities
- Business logic and access control testing
- Real-world exploitation scenarios based on OWASP Top 10
Focus: uncovering high-impact vulnerabilities through structured, systematic assessments.
Android APK Analysis · Smali · Frida · Jadx · Static & Dynamic Analysis
- Reverse engineering Android applications
- Code and logic analysis at the Smali and Java layers
- Runtime inspection using dynamic instrumentation
- Detection of malicious behavior and hidden monetization logic
Focus: deconstructing mobile applications to identify security flaws, abuse patterns, and deceptive implementations.
C / C++ · GDB · Ghidra · Assembly · Native Library Debugging
- Reverse engineering native binaries and shared libraries
- Debugging and decompilation of compiled code
- Low-level logic reconstruction and vulnerability discovery
- Analysis of native-layer anti-analysis and obfuscation techniques
Focus: deep analysis of compiled binaries to extract hidden logic and identify exploitable weaknesses.
All research published in this repository is conducted for defensive and educational purposes.
No exploit code or weaponized payloads are released.
ChillHack404 is an independent security research initiative based in Hong Kong.
We conduct continuous research across web, mobile, and native platforms with the goal of making the internet safer for both professionals and everyday users.
- Official Website: https://chillhack.net
- Email: info@chillhack.net