KpwnZ / d22-qemu

Related projects ⓘ

Alternatives and complementary repositories for d22-qemu

• Proteas / a7-sep-bug
  a7 sep bug
  ☆50Updated last year
• Cryptiiiic / hookra1n
  A custom shellcode hook for checkra1n 0.1337 written in c!
  ☆37Updated 11 months ago
• haiyuidesu / iBoot64Patcher
  Patch the iBoot64 with generic patches.
  ☆49Updated 8 months ago
• KpwnZ / my_bugs_and_CVE_collection
  Collection of my bugs and CVE, with PoC or writeup
  ☆48Updated 7 months ago
• opa334 / Presentations
  ☆70Updated 5 months ago
• SongXiaoXi / Reductant
  Translate and patch arm64e binaries or macOS arm64 binaries to run on an arm64 iPhone at runtime.
  ☆45Updated 2 years ago
• jonpalmisc / respawn
  Experimentation environment for checkm8-vulnerable devices
  ☆54Updated 10 months ago
• haiyuidesu / iBoot64Finder
  Find some iBoot functions in an iBoot64.
  ☆41Updated 3 years ago
• haiyuidesu / sephelper
  IDA loader to help with SEPROM reverse engineering.
  ☆32Updated 5 months ago
• dora2ios / t8015_bootkit
  ☆35Updated 2 years ago
• tihmstar / desc_race-fun_public
  ☆67Updated 2 years ago
• citruz / pongoOS-QEMU
  Fork of PongoOS which can be run in QEMU
  ☆63Updated 3 years ago
• matteyeux / seprom-loader
  Binary Ninja loader for 64 bits Apple SEPROMs
  ☆49Updated 5 months ago
• NyanSatan / Anya
  iBoot/SEPOS decryption kit for JTAGgable iOS device prototypes
  ☆81Updated 2 weeks ago
• alfiecg24 / Achilles
  A checkm8 utility for A7-A11 devices
  ☆56Updated 6 months ago
• asdfugil / m1n1-idevice
  m1n1 with support for A7-A11, T2 SoCs
  ☆24Updated last week
• ProcursusTeam / launchctl
  An open source implemention of Apple's `launchctl(1)`
  ☆69Updated 3 months ago
• 0x7ff / golb
  Mapping physical memory to user space (EL0) on iOS.
  ☆67Updated last year
• CRKatri / trustcache
  Interact with trustcaches
  ☆39Updated last year
• xerub / busybox-apple
  A working busybox for iOS and macOS
  ☆27Updated 2 years ago
• Proteas / sep-fw-dyld-cache-loader
  IDA loader for SEP firmware with dyld cache support.
  ☆52Updated 3 months ago
• iOSForensics / pyimg4
  A python lib for manipulating IMG4, IM4M and IM4P files
  ☆11Updated last year
• 0cyn / iBoot-IDA
  32/64 bit SecureROM/iBoot loader for IDA Pro. Also supports loading and decrypting encrypted .im4ps within IDA.
  ☆68Updated 2 years ago
• Siguza / IOKernelRW
  Insecurity as an IOService
  ☆76Updated last year
• Muirey03 / CVE-2022-42864
  Proof-of-concept for the CVE-2022-42864 IOHIDFamily race condition
  ☆62Updated last year
• matteyeux / ida-iboot-loader
  IDA loader for Apple's 64 bits iBoot, SecureROM and AVPBooter
  ☆138Updated 2 weeks ago
• m1stadev / eyepatch
  An *OS bootchain patching library.
  ☆16Updated this week
• ifpdz / CVE-2024-44258
  CVE-2024-44258
  ☆53Updated 2 weeks ago
• alfiecg24 / coretrust_cli
  A tool to call CoreTrust evaluation from userland
  ☆15Updated 6 months ago
• opa334 / sandbox_extension_generator
  iOS 15.0 - 15.3.1 sandbox escape technique using kernel read/write primitives
  ☆123Updated 2 years ago