A2nkF / unauthd
A local privilege escalation chain from user to kernel for MacOS < 10.15.5. CVE-2020–9854
☆84Updated 4 years ago
Alternatives and similar repositories for unauthd:
Users that are interested in unauthd are comparing it to the libraries listed below
- Slides from my conference presentations.☆80Updated 4 years ago
- Extreme Vulnerable IOKit driver☆89Updated 4 years ago
- CVE-2020-9992 - A design flaw in MobileDevice.framework/Xcode and iOS/iPadOS/tvOS Development Tools allows an attacker in the same networ…☆66Updated 4 years ago
- App sandbox escapes for macOS☆28Updated 4 years ago
- iBoot-1145.3 Image3/heap stack RE (+unholy tools)☆75Updated 11 months ago
- Apple SEP reverse☆51Updated 4 years ago
- CVE-2018-4248: Out-of-bounds read in libxpc during string serialization.☆52Updated 6 years ago
- xnu kernel heap info leak☆71Updated 5 years ago
- PoC for the iOS 11.4.1 and MacOS 10.13 kernel vulnerability in lio_listio☆76Updated 6 years ago
- A library to execute code in the context of other processes on iOS 11.☆81Updated 6 years ago
- Collection of (at time of release) iOS bugs I found☆54Updated 5 years ago
- CVE-2018-4280: Mach port replacement vulnerability in launchd on macOS 10.13.5 leading to local privilege escalation and SIP bypass.☆58Updated 6 years ago
- p-joker -- iOS/MacOS kernelcache/kexts analysis tool☆106Updated 4 years ago
- ☆38Updated 4 years ago
- Host your own *OS Entitlement Database☆44Updated 6 months ago
- A fuzzer for the iOS kernel and userland☆44Updated 6 years ago
- A new XNU kernel fuzzer with some extra features.☆13Updated 7 years ago
- A plugin for Binary Ninja containing tools for iOS reversing☆29Updated 7 years ago
- dyld_shared_cache processing / Single-Image loading for BinaryNinja☆85Updated last year
- Binary Format of iOS 13 Sandbox Profile Collection☆50Updated 5 years ago
- powerd exploit : Sandbox escape to root for Apple iOS < 12.2 on A11 devices☆109Updated 5 years ago
- xnu_gym is a pongoOS module that patches XNU to reintroduce previously known and patched vulnerabilities. This is an easy way to practice…☆55Updated 3 years ago
- A tool for debugging macOS virtual machines☆111Updated 4 years ago
- An iOS kernel debugger based on a KTRR bypass for A11 iPhones; works with LLDB and IDA Pro.☆55Updated 3 years ago
- CVE-2018-4280: Mach port replacement vulnerability in launchd on iOS 11.2.6 leading to sandbox escape, privilege escalation, and codesign…☆247Updated 6 years ago
- crappy "debugger"-like memory reader, to inspect 32bit ios kernel after it paniced☆15Updated 6 years ago
- Binary View plugin for reverse engineering iBoot like binaries with Binary Ninja☆51Updated last year
- Utility to manipulate codesigned application in Mac OS X. Demonstrate the use of csops system call.☆73Updated 10 months ago
- Bare-bones iOS debugger written in C☆41Updated 4 years ago
- Sniff XPC goodies on your iOS device.☆87Updated 4 years ago