Mapping physical memory to user space (EL0) on iOS.
☆74Jan 3, 2023Updated 3 years ago
Alternatives and similar repositories for golb
Users that are interested in golb are comparing it to the libraries listed below
Sorting:
- Accessing physical memory on iOS.☆52Sep 21, 2020Updated 5 years ago
- A tool for listing/reversing XPC services inside container sandbox. Reference: https://www.blackhat.com/docs/us-15/materials/us-15-Wang-R…☆22Sep 6, 2018Updated 7 years ago
- Tool for getting and setting nonce without triggering KPP/KTRR/PAC.☆113Apr 22, 2023Updated 2 years ago
- See https://github.com/0x7ff/iBootMaybeDumper/issues/1#issuecomment-426731516 for more info.☆20Sep 6, 2018Updated 7 years ago
- Fun with iOS☆13Aug 3, 2013Updated 12 years ago
- An old, ugly and deprecated script to download, decrypt and upload .ipa files to appdb. Check out the new one: https://github.com/n3d1117…☆15Mar 5, 2018Updated 7 years ago
- A tool for reversing IOKit classes from the iOS 12's new kernelcache format.☆23Aug 2, 2018Updated 7 years ago
- iOS ARM64 kernel patchfinder☆16Jul 1, 2019Updated 6 years ago
- mount tool for Darwin's bindfs (only tested on iOS)☆14Sep 16, 2021Updated 4 years ago
- Python scripts for iOS stuff☆30Oct 21, 2020Updated 5 years ago
- ☆25May 19, 2022Updated 3 years ago
- A pre-jailbreak library for devices running iOS 12 - 14.☆44Dec 31, 2024Updated last year
- ☆20May 24, 2021Updated 4 years ago
- A tool for extracting kernel extensions from the iOS 12's new kernelcache format.☆13Aug 2, 2018Updated 7 years ago
- App with PoC of CVE-2024-44285☆44Nov 30, 2024Updated last year
- load iOS12 kernelcaches and PAC code in IDA☆60Oct 4, 2018Updated 7 years ago
- 32/64 bit SecureROM/iBoot loader for IDA Pro. Also supports loading and decrypting encrypted .im4ps within IDA.☆73Mar 2, 2022Updated 4 years ago
- PoC for the iOS 11.4.1 and MacOS 10.13 kernel vulnerability in lio_listio☆78Oct 31, 2018Updated 7 years ago
- Lib kernel r/w☆189Nov 1, 2021Updated 4 years ago
- iOS 15.0 - 15.3.1 sandbox escape technique using kernel read/write primitives☆132Jun 10, 2022Updated 3 years ago
- call functions in a remote process using Mach API☆106Mar 19, 2025Updated 11 months ago
- untethered+unsandboxed code execution in iOS 11☆189Feb 16, 2020Updated 6 years ago
- I hate this iPad 2☆10Oct 13, 2013Updated 12 years ago
- iBoot/SEPOS decryption kit for JTAGgable iOS device prototypes☆132Feb 23, 2026Updated last week
- A custom shellcode hook for checkra1n 0.1337 written in c!☆35Dec 20, 2023Updated 2 years ago
- Lockdown related research, tools and POCs.☆90May 18, 2019Updated 6 years ago
- iOS ARM64 kernel patchfinder☆77Aug 23, 2019Updated 6 years ago
- Unstripped iOS kernel extensions and more. More coming soon.☆59Feb 18, 2020Updated 6 years ago
- kfund, short for my fun with kfd exploit.☆134Jan 14, 2024Updated 2 years ago
- A tool for re-jailbreak devices jailbroken by checkra1n/odysseyra1n on iOS/iPadOS/macOS platforms. (opensource pongo loader)☆225Jul 9, 2023Updated 2 years ago
- IDA loader to help with SEPROM reverse engineering.☆36Aug 26, 2025Updated 6 months ago
- Binary Format of iOS 13 Sandbox Profile Collection☆52Oct 30, 2019Updated 6 years ago
- Sniff XPC goodies on your iOS device.☆96Nov 14, 2020Updated 5 years ago
- ☆49May 14, 2021Updated 4 years ago
- Apple Hypervisor.framework bindings for Golang☆35Jan 12, 2026Updated last month
- An open source implemention of Apple's `launchctl(1)`☆90Sep 18, 2025Updated 5 months ago
- powerd exploit : Sandbox escape to root for Apple iOS < 12.2 on A11 devices☆17May 21, 2019Updated 6 years ago
- some research results of sep☆20Apr 9, 2021Updated 4 years ago
- ☆69Jan 13, 2023Updated 3 years ago