JakeBlair420 / SpiceView external linksLinks
Spice - an unfinished iOS 11 untether
☆112Oct 16, 2021Updated 4 years ago
Alternatives and similar repositories for Spice
Users that are interested in Spice are comparing it to the libraries listed below
Sorting:
- iOS 12.0-13.3 tfp0☆153Nov 16, 2020Updated 5 years ago
- iOS 5.x iBoot fun for the whole family!☆43Apr 23, 2020Updated 5 years ago
- untethered+unsandboxed code execution in iOS 11☆189Feb 16, 2020Updated 5 years ago
- Fugu is the first open source jailbreak based on the checkm8 exploit☆669May 11, 2021Updated 4 years ago
- PoC for the iOS 11.4.1 and MacOS 10.13 kernel vulnerability in lio_listio☆78Oct 31, 2018Updated 7 years ago
- Writes to nand_llb and triggers the Image3 SHSH overlap bug☆14Dec 2, 2023Updated 2 years ago
- webkit; but pwned☆131Jan 10, 2023Updated 3 years ago
- iOS <13.5 sandbox escape/entitlement 0day☆338Jan 5, 2026Updated last month
- Lib kernel r/w☆189Nov 1, 2021Updated 4 years ago
- iBoot-1145.3 Image3/heap stack RE (+unholy tools)☆84Feb 10, 2024Updated 2 years ago
- port of checkm8 to C☆140Jun 14, 2024Updated last year
- You don't need to be as fast as lightspeed, but a run on a treadm1ll surely doesn't hurt.☆53Jan 23, 2020Updated 6 years ago
- 64-bit iOS boot image patcher written in C☆145Sep 18, 2022Updated 3 years ago
- Apple hardware secrets☆118Jan 10, 2023Updated 3 years ago
- ☆22Oct 27, 2022Updated 3 years ago
- kernel exploit for Apple iOS 13.X☆185Nov 27, 2020Updated 5 years ago
- Tiny arm64 LZ4 decompressor☆43Apr 4, 2022Updated 3 years ago
- Fork of PongoOS which can be run in QEMU☆68Jun 7, 2021Updated 4 years ago
- An open-source, multipurpose macOS GUI utility for checkm8-vulnerable iOS/iPadOS devices☆189Jul 8, 2021Updated 4 years ago
- powerd exploit : Sandbox escape to root for Apple iOS < 12.2 on A11 devices☆110Mar 28, 2019Updated 6 years ago
- Slides from my conference presentations.☆80Aug 5, 2020Updated 5 years ago
- Give me tfp0, I give you jelbrek☆260Oct 28, 2020Updated 5 years ago
- use https://github.com/argp/iBoot64helper which is the orginal repo and far more advanced☆33Sep 2, 2019Updated 6 years ago
- xnu_gym is a pongoOS module that patches XNU to reintroduce previously known and patched vulnerabilities. This is an easy way to practice…☆57Jun 17, 2021Updated 4 years ago
- Checkm8 PoC tool for A8, A8X and A9 devices that allows you to boot untrusted images (macOS only, credits: checkra1n team).☆90Apr 23, 2021Updated 4 years ago
- Exploit for CVE-2021-30807☆131Nov 29, 2021Updated 4 years ago
- Proof-of-concept for the CVE-2022-42864 IOHIDFamily race condition☆66Jan 20, 2023Updated 3 years ago
- I hate this iPad 2☆10Oct 13, 2013Updated 12 years ago
- Plugin for loading MachO kernelcache and dSYM files to Binary Ninja☆40Mar 23, 2025Updated 10 months ago
- iOS system call/Mach trap interception for checkra1n'able devices☆159Aug 10, 2021Updated 4 years ago
- 64-bit nonce setter for iOS 9.3.4-9.3.5☆96Aug 16, 2017Updated 8 years ago
- A set of tools for fuzzing SecureROM. Managed to find and trigger checkm8.☆164Sep 18, 2021Updated 4 years ago
- Binary Ninja loader for 64 bits Apple SEPROMs☆58Sep 7, 2025Updated 5 months ago
- Binary Format of iOS 13 Sandbox Profile Collection☆52Oct 30, 2019Updated 6 years ago
- IDA loader for Apple SecureROM☆13Sep 29, 2019Updated 6 years ago
- ☆444Mar 5, 2021Updated 4 years ago
- iOS ARM64 kernel patchfinder☆77Aug 23, 2019Updated 6 years ago
- Find some iBoot functions in an iBoot64.☆40Feb 10, 2021Updated 5 years ago
- ☆25Jan 5, 2022Updated 4 years ago