A2nkF / unauthdLinks
A local privilege escalation chain from user to kernel for MacOS < 10.15.5. CVE-2020–9854
☆85Updated 4 years ago
Alternatives and similar repositories for unauthd
Users that are interested in unauthd are comparing it to the libraries listed below
Sorting:
- Slides from my conference presentations.☆80Updated 4 years ago
- A library to execute code in the context of other processes on iOS 11.☆82Updated 6 years ago
- Extreme Vulnerable IOKit driver☆91Updated 4 years ago
- PoC for the iOS 11.4.1 and MacOS 10.13 kernel vulnerability in lio_listio☆76Updated 6 years ago
- CVE-2020-9992 - A design flaw in MobileDevice.framework/Xcode and iOS/iPadOS/tvOS Development Tools allows an attacker in the same networ…☆71Updated 4 years ago
- xnu_gym is a pongoOS module that patches XNU to reintroduce previously known and patched vulnerabilities. This is an easy way to practice…☆55Updated 3 years ago
- p-joker -- iOS/MacOS kernelcache/kexts analysis tool☆109Updated 5 years ago
- Host your own *OS Entitlement Database☆44Updated 10 months ago
- powerd exploit : Sandbox escape to root for Apple iOS < 12.2 on A11 devices☆108Updated 6 years ago
- A fuzzer for the iOS kernel and userland☆44Updated 6 years ago
- CVE-2018-4248: Out-of-bounds read in libxpc during string serialization.☆54Updated 6 years ago
- iBoot-1145.3 Image3/heap stack RE (+unholy tools)☆79Updated last year
- Apple SEP reverse☆52Updated 5 years ago
- Collection of (at time of release) iOS bugs I found☆54Updated 5 years ago
- Demo exploit code for CVE-2020-27904, a tfp0 bug.☆66Updated 4 years ago
- CVE-2018-4280: Mach port replacement vulnerability in launchd on macOS 10.13.5 leading to local privilege escalation and SIP bypass.☆59Updated 6 years ago
- Sniff XPC goodies on your iOS device.☆88Updated 4 years ago
- ☆38Updated 5 years ago
- Lockdown related research, tools and POCs.☆91Updated 6 years ago
- Research into Apple PPP and CCL components☆19Updated 5 years ago
- ☆54Updated 3 years ago
- ios iokit fuzzer (really probably isn't that useful anymore tbh)☆62Updated 8 years ago
- Research into Security of Apple Smart Keyboard and Apple Pencil☆36Updated 6 years ago
- load iOS12 kernelcaches and PAC code in IDA☆60Updated 6 years ago
- dyld_shared_cache processing / Single-Image loading for BinaryNinja☆85Updated last year
- A plugin for Binary Ninja containing tools for iOS reversing☆29Updated 7 years ago
- A tool to parse Apple's binary device tree format.☆55Updated 5 years ago
- CVE-2020-27950 exploit☆34Updated 4 years ago
- macOS notes☆118Updated 5 years ago
- An iOS kernel debugger based on a KTRR bypass for A11 iPhones; works with LLDB and IDA Pro.☆57Updated 4 years ago