Proteas / a7-sep-bug

Related projects ⓘ

Alternatives and complementary repositories for a7-sep-bug

• Proteas / sep-fw-dyld-cache-loader
  IDA loader for SEP firmware with dyld cache support.
  ☆51Updated 2 months ago
• haiyuidesu / sephelper
  IDA loader to help with SEPROM reverse engineering.
  ☆32Updated 4 months ago
• jonpalmisc / respawn
  Experimentation environment for checkm8-vulnerable devices
  ☆53Updated 10 months ago
• opa334 / Presentations
  ☆70Updated 5 months ago
• matteyeux / seprom-loader
  Binary Ninja loader for 64 bits Apple SEPROMs
  ☆49Updated 5 months ago
• blacktop / yardens-sb-profs
  Output from running Yarden's sandblaster on an iPhone15,2's iOS17 kernelcaches
  ☆16Updated 3 months ago
• 0x7ff / golb
  Mapping physical memory to user space (EL0) on iOS.
  ☆66Updated last year
• haiyuidesu / iBoot64Finder
  Find some iBoot functions in an iBoot64.
  ☆40Updated 3 years ago
• citruz / pongoOS-QEMU
  Fork of PongoOS which can be run in QEMU
  ☆63Updated 3 years ago
• Siguza / IOKernelRW
  Insecurity as an IOService
  ☆75Updated 11 months ago
• xerub / busybox-apple
  A working busybox for iOS and macOS
  ☆27Updated last year
• matteyeux / sepfw-loader
  Binary Ninja loader for A12 SEP firmware
  ☆26Updated 3 years ago
• haiyuidesu / iBoot64Patcher
  Patch the iBoot64 with generic patches.
  ☆48Updated 7 months ago
• justtryingthingsout / sepsplit-rs
  SEP firmware splitter, made in rust.
  ☆32Updated 3 weeks ago
• pwn0rz / xnu-build
  xnu build script
  ☆72Updated last year
• Siguza / aea1
  AEA metadata dumper
  ☆45Updated 3 months ago
• skr0x1c0 / binja_kc
  Plugin for loading MachO kernelcache and dSYM files to Binary Ninja
  ☆35Updated 3 months ago
• 0cyn / ksuite
  My BinaryNinja toolkit I use for iOS centric RE || Prerelease!
  ☆41Updated last year
• felix-pb / remote_pocs
  Some old unexploited remote kernel memory corruption PoCs
  ☆22Updated 2 months ago
• CRKatri / trustcache
  Interact with trustcaches
  ☆39Updated last year
• alfiecg24 / Vertex
  iOS 14 kernel exploit based on PhysPuppet
  ☆53Updated last month
• synacktiv / CVE-2021-1782
  ☆38Updated 3 years ago
• tjkr0wn / xnu_gym
  xnu_gym is a pongoOS module that patches XNU to reintroduce previously known and patched vulnerabilities. This is an easy way to practice…
  ☆55Updated 3 years ago
• alfiecg24 / coretrust_cli
  A tool to call CoreTrust evaluation from userland
  ☆15Updated 6 months ago
• NyanSatan / checkm8_bootkit
  Boot arbitrary iBoot on S5L8747X, S5L8947X and S7002, T8002, T8004 ("watch" branch)
  ☆43Updated 3 years ago
• b1n4r1b01 / rasengan
  extract various firmware blobs from iBoot
  ☆42Updated 4 years ago
• EliseZeroTwo / iBoot-Binja-Loader
  iBoot/SecureROM Loader
  ☆32Updated last year
• ChiChou / ios-debug.py
  Shortcut to automate your iproxy, debugserver, lldb workflow
  ☆35Updated last week
• Muirey03 / CVE-2022-42864
  Proof-of-concept for the CVE-2022-42864 IOHIDFamily race condition
  ☆62Updated last year