A2nkF / unauthd
A local privilege escalation chain from user to kernel for MacOS < 10.15.5. CVE-2020–9854
☆85Updated 3 years ago
Related projects: ⓘ
- CVE-2020-9992 - A design flaw in MobileDevice.framework/Xcode and iOS/iPadOS/tvOS Development Tools allows an attacker in the same networ…☆65Updated 3 years ago
- Slides from my conference presentations.☆78Updated 4 years ago
- Extreme Vulnerable IOKit driver☆87Updated 3 years ago
- Apple SEP reverse☆49Updated 4 years ago
- Host your own *OS Entitlement Database☆44Updated last month
- CVE-2018-4248: Out-of-bounds read in libxpc during string serialization.☆52Updated 6 years ago
- dyld_shared_cache processing / Single-Image loading for BinaryNinja☆81Updated 9 months ago
- Collection of (at time of release) iOS bugs I found☆54Updated 4 years ago
- PoC for the iOS 11.4.1 and MacOS 10.13 kernel vulnerability in lio_listio☆76Updated 5 years ago
- iOS kernel heap memory profiler for sprayers☆84Updated 2 years ago
- ☆36Updated 4 years ago
- App sandbox escapes for macOS☆28Updated 4 years ago
- Demo exploit code for CVE-2020-27904, a tfp0 bug.☆65Updated 3 years ago
- A library to execute code in the context of other processes on iOS 11.☆80Updated 6 years ago
- ☆18Updated this week
- xnu_gym is a pongoOS module that patches XNU to reintroduce previously known and patched vulnerabilities. This is an easy way to practice…☆55Updated 3 years ago
- ☆53Updated 2 years ago
- Utility to manipulate codesigned application in Mac OS X. Demonstrate the use of csops system call.☆69Updated 5 months ago
- iBoot-1145.3 Image3/heap stack RE (+unholy tools)☆71Updated 7 months ago
- powerd exploit : Sandbox escape to root for Apple iOS < 12.2 on A11 devices☆109Updated 5 years ago
- A fuzzer for the iOS kernel and userland☆44Updated 6 years ago
- ☆24Updated this week
- ☆105Updated this week
- Research into Apple PPP and CCL components☆19Updated 5 years ago
- ios iokit fuzzer (really probably isn't that useful anymore tbh)☆60Updated 7 years ago
- Binary Ninja plugin & workflow to help analyze Objective-C code☆81Updated 2 years ago
- Objective-C runtime tracing tool☆40Updated last year
- ☆38Updated 3 years ago
- CVE-2018-4280: Mach port replacement vulnerability in launchd on macOS 10.13.5 leading to local privilege escalation and SIP bypass.☆58Updated 5 years ago
- ☆28Updated this week