Siguza/psychicpaper external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

Siguza/psychicpaper

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Siguza/psychicpaper)

Close

Siguza / psychicpaperView on GitHubMore

• External links
• Readme badge

iOS <13.5 sandbox escape/entitlement 0day

☆339Jan 5, 2026Updated 2 months ago

Alternatives and similar repositories for psychicpaper

Users that are interested in psychicpaper are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• Siguza / cuck00

  View on GitHub
  Twenty-twenty, bugs aplenty!
  ☆54Jan 10, 2023Updated 3 years ago
• jakeajames / sock_port

  View on GitHub
  iOS 10.0-12.2 tfp0
  ☆132Sep 3, 2019Updated 6 years ago
• jakeajames / time_waste

  View on GitHub
  iOS 12.0-13.3 tfp0
  ☆153Nov 16, 2020Updated 5 years ago
• xerub / acorn

  View on GitHub
  untethered+unsandboxed code execution in iOS 11
  ☆189Feb 16, 2020Updated 6 years ago
• Siguza / libkrw

  View on GitHub
  Lib kernel r/w
  ☆190Nov 1, 2021Updated 4 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• jsherman212 / svc_stalker

  View on GitHub
  iOS system call/Mach trap interception for checkra1n'able devices
  ☆159Aug 10, 2021Updated 4 years ago
• JakeBlair420 / Spice

  View on GitHub
  Spice - an unfinished iOS 11 untether
  ☆112Oct 16, 2021Updated 4 years ago
• googleprojectzero / ktrw

  View on GitHub
  An iOS kernel debugger based on a KTRR bypass for A11 iPhones; works with LLDB and IDA Pro.
  ☆691Oct 22, 2022Updated 3 years ago
• c0ntextomy / c0ntextomy

  View on GitHub
  CVE-2020-9992 - A design flaw in MobileDevice.framework/Xcode and iOS/iPadOS/tvOS Development Tools allows an attacker in the same networ…
  ☆74Sep 23, 2020Updated 5 years ago
• Proteas / ios13-sandbox-profile-format

  View on GitHub
  Binary Format of iOS 13 Sandbox Profile Collection
  ☆52Oct 30, 2019Updated 6 years ago
• Synacktiv-contrib / lightspeed

  View on GitHub
  PoC for the iOS 11.4.1 and MacOS 10.13 kernel vulnerability in lio_listio
  ☆78Oct 31, 2018Updated 7 years ago
• opa334 / sandbox_extension_generator

  View on GitHub
  iOS 15.0 - 15.3.1 sandbox escape technique using kernel read/write primitives
  ☆132Jun 10, 2022Updated 3 years ago
• bazad / blanket

  View on GitHub
  CVE-2018-4280: Mach port replacement vulnerability in launchd on iOS 11.2.6 leading to sandbox escape, privilege escalation, and codesign…
  ☆258Nov 13, 2018Updated 7 years ago
• 0x36 / oob_events

  View on GitHub
  kernel exploit for Apple iOS 13.X
  ☆184Nov 27, 2020Updated 5 years ago
• NordVPN Special Discount Offer • Ad
  Save on top-rated NordVPN 1 or 2-year plans with secure browsing, privacy protection, and support for for all major platforms.
• jsherman212 / xnuspy

  View on GitHub
  an iOS kernel function hooking framework for checkra1n'able devices
  ☆589Oct 6, 2021Updated 4 years ago
• 0x36 / ghidra_kernelcache

  View on GitHub
  a Ghidra framework for iOS kernelcache reverse engineering
  ☆364Nov 6, 2022Updated 3 years ago
• Siguza / iometa

  View on GitHub
  arm64 IOKit class dumper
  ☆292Jan 5, 2026Updated 2 months ago
• Siguza / APRR

  View on GitHub
  Apple hardware secrets
  ☆120Jan 10, 2023Updated 3 years ago
• DanyL / lockdownd_playground

  View on GitHub
  Lockdown related research, tools and POCs.
  ☆90May 18, 2019Updated 6 years ago
• LIJI32 / SnatchBox

  View on GitHub
  SnatchBox (CVE-2020-27935) is a sandbox escape vulnerability and exploit affecting macOS up to version 10.15.x
  ☆32Dec 18, 2020Updated 5 years ago
• Siguza / iokit-utils

  View on GitHub
  Dev tools for probing IOKit
  ☆202Sep 23, 2023Updated 2 years ago
• LinusHenze / Fugu

  View on GitHub
  Fugu is the first open source jailbreak based on the checkm8 exploit
  ☆668May 11, 2021Updated 4 years ago
• jakeajames / jelbrekLib

  View on GitHub
  Give me tfp0, I give you jelbrek
  ☆260Oct 28, 2020Updated 5 years ago
• End-to-end encrypted email - Proton Mail • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
• blacktop / go-hypervisor

  View on GitHub
  Apple Hypervisor.framework bindings for Golang
  ☆36Jan 12, 2026Updated 2 months ago
• oleavr / dyld-tools

  View on GitHub
  Experiment to attempt to build Apple's dyld tools.
  ☆64May 29, 2020Updated 5 years ago
• JohnCoates / flexdecrypt

  View on GitHub
  Decrypt iOS Apps and Mach-O binaries
  ☆725Jun 24, 2023Updated 2 years ago
• Siguza / ios-resources

  View on GitHub
  Useful resources for iOS hacking
  ☆1,915May 24, 2025Updated 10 months ago
• argp / iBoot64helper

  View on GitHub
  IDAPython loader to help with AArch64 iBoot, iBEC, and SecureROM reverse engineering
  ☆264Feb 21, 2022Updated 4 years ago
• A2nkF / unauthd

  View on GitHub
  A local privilege escalation chain from user to kernel for MacOS < 10.15.5. CVE-2020–9854
  ☆86Oct 15, 2020Updated 5 years ago
• 0x3c3e / pocs

  View on GitHub
  My collection of PoCs
  ☆26Nov 9, 2023Updated 2 years ago
• bazad / ida_kernelcache

  View on GitHub
  An IDA Toolkit for analyzing iOS kernelcaches.
  ☆301Jul 24, 2020Updated 5 years ago
• arandomdev / DyldExtractor

  View on GitHub
  Extract Binaries from Apple's Dyld Shared Cache
  ☆469Jan 27, 2025Updated last year
• Proton VPN Special Offer - Get 70% off • Ad
  Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
• Muirey03 / CVE-2022-42864

  View on GitHub
  Proof-of-concept for the CVE-2022-42864 IOHIDFamily race condition
  ☆66Jan 20, 2023Updated 3 years ago
• Siguza / cl0ver

  View on GitHub
  tfp0 for iOS 9.0-9.3.4
  ☆153Jan 10, 2023Updated 3 years ago
• EthanArbuckle / unredact-private-os_logs

  View on GitHub
  An explanation on unredacting iOS's <private> os_log privacy mechanism
  ☆226May 29, 2023Updated 2 years ago
• Siguza / misc

  View on GitHub
  ☆38Feb 19, 2025Updated last year
• jamf / FreeTheSandbox_LPE_POC_13.7

  View on GitHub
  Jailbreak for iOS 13.7 and earlier
  ☆227Dec 29, 2020Updated 5 years ago
• 0x36 / powend

  View on GitHub
  powerd exploit : Sandbox escape to root for Apple iOS < 12.2 on A11 devices
  ☆110Mar 28, 2019Updated 7 years ago
• pgarba / King

  View on GitHub
  port of checkm8 to C
  ☆140Jun 14, 2024Updated last year