DanyL / lockdownd_playground

Related projects ⓘ

Alternatives and complementary repositories for lockdownd_playground

• xerub / patchfinder64
  iOS ARM64 kernel patchfinder
  ☆74Updated 5 years ago
• tihmstar / libtakeover
  call functions in a remote process using Mach API
  ☆100Updated 9 months ago
• Synacktiv-contrib / lightspeed
  PoC for the iOS 11.4.1 and MacOS 10.13 kernel vulnerability in lio_listio
  ☆76Updated 6 years ago
• shinvou / decrypt0r
  Automatically download and decrypt SecureRom stuff (iBSS, iBEC, iBoot, etc.) for all iOS versions available.
  ☆50Updated 4 years ago
• NyanSatan / Image3RE
  iBoot-1145.3 Image3/heap stack RE (+unholy tools)
  ☆71Updated 9 months ago
• 0x7ff / dimentio
  Tool for getting and setting nonce without triggering KPP/KTRR/PAC.
  ☆109Updated last year
• Haifisch / kuzz
  ios iokit fuzzer (really probably isn't that useful anymore tbh)
  ☆61Updated 7 years ago
• jsherman212 / svc_stalker
  iOS system call/Mach trap interception for checkra1n'able devices
  ☆151Updated 3 years ago
• xerub / acorn
  untethered+unsandboxed code execution in iOS 11
  ☆189Updated 4 years ago
• PsychoTea / machswap
  An iOS kernel exploit for iOS 11 through 12.1.2. Non-SMAP (<=A9) devices only.
  ☆80Updated 5 years ago
• bazad / presentations
  Slides from my conference presentations.
  ☆79Updated 4 years ago
• MTJailed / XNU-Kernel-Fuzzer
  A fuzzer for the iOS kernel and userland
  ☆44Updated 6 years ago
• JakeBlair420 / Spice
  Spice - an unfinished iOS 11 untether
  ☆113Updated 3 years ago
• sbingner / kerneldec
  iOS Kernel Decompressor
  ☆85Updated 4 years ago
• userlandkernel / ios-unstripped-kexts
  Unstripped iOS kernel extensions and more. More coming soon.
  ☆57Updated 4 years ago
• dayt0n / kairos
  64-bit iOS boot image patcher written in C
  ☆147Updated 2 years ago
• chr1s0x1 / pwnedOS11
  WIP iOS 11 - 12.2 & 13b1,b2 Safari Jailbreak
  ☆43Updated 4 years ago
• citruz / pongoOS-QEMU
  Fork of PongoOS which can be run in QEMU
  ☆63Updated 3 years ago
• jakeajames / multi_path
  multi_path with root and sandbox escape
  ☆101Updated 6 years ago
• tjkr0wn / xnu_gym
  xnu_gym is a pongoOS module that patches XNU to reintroduce previously known and patched vulnerabilities. This is an easy way to practice…
  ☆55Updated 3 years ago
• lilang-wu / p-joker
  p-joker -- iOS/MacOS kernelcache/kexts analysis tool
  ☆107Updated 4 years ago
• tihmstar / v3ntex
  getf tfp0 on iOS 12.0 - 12.1.2
  ☆65Updated 5 years ago
• 0x36 / powend
  powerd exploit : Sandbox escape to root for Apple iOS < 12.2 on A11 devices
  ☆109Updated 5 years ago
• jakeajames / sock_port
  iOS 10.0-12.2 tfp0
  ☆129Updated 5 years ago
• in7egral / ios-jailbreak-patchfinder64
  Analyzes a binary iOS kernel to determine function offsets and where to apply the canonical jailbreak patches.
  ☆65Updated 7 years ago
• pwn20wndstuff / iOS-Apfs-Persistence-Exploit
  A 0day exploit for ur0‘s apfs bug by me (Pwn20wnd)
  ☆127Updated 6 years ago
• xerub / kexty
  iOS KEXT loader 7.x-9.x
  ☆94Updated 7 years ago
• GuardianFirewall / grandmaster
  A simplistic python tool that assists in automating iOS firmware decryption.
  ☆86Updated 4 years ago
• jakeajames / time_waste
  iOS 12.0-13.3 tfp0
  ☆151Updated 4 years ago