LIJI32 / SnatchBoxLinks
SnatchBox (CVE-2020-27935) is a sandbox escape vulnerability and exploit affecting macOS up to version 10.15.x
☆31Updated 4 years ago
Alternatives and similar repositories for SnatchBox
Users that are interested in SnatchBox are comparing it to the libraries listed below
Sorting:
- A tool to find gadgets in the iOS kernelcache.☆33Updated 7 years ago
- ☆39Updated 4 years ago
- CVE-2017-13868: Information leak of uninitialized kernel heap data in XNU.☆28Updated 7 years ago
- use https://github.com/argp/iBoot64helper which is the orginal repo and far more advanced☆33Updated 5 years ago
- ☆50Updated 5 years ago
- Extract a decrypted iOS 64-bit kernelcache☆42Updated this week
- CVE-2018-4248: Out-of-bounds read in libxpc during string serialization.☆54Updated 7 years ago
- CVE-2018-4280: Mach port replacement vulnerability in launchd on macOS 10.13.5 leading to local privilege escalation and SIP bypass.☆59Updated 6 years ago
- PoC for the iOS 11.4.1 and MacOS 10.13 kernel vulnerability in lio_listio☆77Updated 6 years ago
- ☆54Updated 3 years ago
- An assistant for BinDiff☆26Updated 2 years ago
- My collection of PoCs☆26Updated last year
- Demo exploit code for CVE-2020-27904, a tfp0 bug.☆66Updated 4 years ago
- Slides from my conference presentations.☆81Updated 5 years ago
- CVE-2020-27950 exploit☆34Updated 4 years ago
- WebKit/JSC CodeQL Databases☆17Updated 2 months ago
- PCIDriverKit proof-of-concept for CVE-2022-26763☆38Updated 3 years ago
- ☆14Updated 6 years ago
- A tool for reversing IOKit classes from the iOS 12's new kernelcache format.☆25Updated 7 years ago
- some research results of sep☆20Updated 4 years ago
- MacOS kernel memory leak (4 bytes)☆30Updated 5 years ago
- UPDATED: All the action is at https://github.com/xsscx/srd☆12Updated 4 years ago
- extract various firmware blobs from iBoot☆45Updated 4 years ago
- Collection of (at time of release) iOS bugs I found☆56Updated 5 years ago
- IDA loader for Apple SecureROM☆13Updated 5 years ago
- POC for CVE-2018-4327☆41Updated 6 years ago
- Extract and generate code based on name and type for mig func/arg/request&reply member etc, ideal helper for creating monitor, tracker, f…☆17Updated 7 years ago
- Reexport symbols for Mach-O and ELF☆38Updated 7 years ago
- iOS/macOS: task_swap_mach_voucher() does not respect MIG semantics leading to use-after-free☆11Updated 6 years ago
- Browser based rce for iOS <= 14.3☆9Updated 2 months ago