0x7ff / maphys
Accessing physical memory on iOS.
☆51Updated 4 years ago
Alternatives and similar repositories for maphys:
Users that are interested in maphys are comparing it to the libraries listed below
- ☆36Updated last month
- A tool for reversing IOKit classes from the iOS 12's new kernelcache format.☆24Updated 6 years ago
- Get kernel symbols on device. No jailbreak required (note: unslid addresses)☆26Updated 6 years ago
- Research on Apple's USB protocols☆30Updated 5 years ago
- iOS-related command line goodies☆56Updated 5 years ago
- See https://github.com/0x7ff/iBootMaybeDumper/issues/1#issuecomment-426731516 for more info.☆20Updated 6 years ago
- Automatically download and decrypt SecureRom stuff (iBSS, iBEC, iBoot, etc.) for all iOS versions available.☆51Updated 5 years ago
- ios iokit fuzzer (really probably isn't that useful anymore tbh)☆62Updated 8 years ago
- empty_list - exploit for p0 issue 1564 (CVE-2018-4243) iOS 11.0 - 11.3.1 kernel r/w☆19Updated 6 years ago
- ios kernel class tree☆23Updated 5 years ago
- Slides from my conference presentations.☆80Updated 4 years ago
- iOS Userland Forensic Dumping Framework for iOS 7/8☆19Updated 6 years ago
- A fuzzer for the iOS kernel and userland☆44Updated 6 years ago
- A tool for extracting kernel extensions from the iOS 12's new kernelcache format.☆12Updated 6 years ago
- xnu_gym is a pongoOS module that patches XNU to reintroduce previously known and patched vulnerabilities. This is an easy way to practice…☆55Updated 3 years ago
- Binary Format of iOS 13 Sandbox Profile Collection☆51Updated 5 years ago
- powerd exploit : Sandbox escape to root for Apple iOS < 12.2 on A11 devices☆16Updated 5 years ago
- not a jailbreak☆35Updated 7 years ago
- PoC for the iOS 11.4.1 and MacOS 10.13 kernel vulnerability in lio_listio☆76Updated 6 years ago
- use https://github.com/argp/iBoot64helper which is the orginal repo and far more advanced☆33Updated 5 years ago
- experimental iOS debugger☆27Updated 4 years ago
- CVE-2018-4280: Mach port replacement vulnerability in launchd on macOS 10.13.5 leading to local privilege escalation and SIP bypass.☆59Updated 6 years ago
- just a kernelgrabber, for those who can't reach out of sandbox☆16Updated last year
- iOS ARM64 kernel patchfinder☆75Updated 5 years ago
- iBoot64 Payload Development Toolkit☆42Updated 7 years ago
- crappy "debugger"-like memory reader, to inspect 32bit ios kernel after it paniced☆15Updated 6 years ago
- CVE-2018-4248: Out-of-bounds read in libxpc during string serialization.☆54Updated 6 years ago
- A NEW 64-bit JAILBREAK FOR iOS 10.3,10.3.1,10.3.2,10.3.x. (Untethered).☆43Updated 7 years ago
- Unstripped iOS kernel extensions and more. More coming soon.☆56Updated 5 years ago
- A tool for listing/reversing XPC services inside container sandbox. Reference: https://www.blackhat.com/docs/us-15/materials/us-15-Wang-R…☆22Updated 6 years ago