Alternatives and similar repositories for xnu-qemu-arm64-tools:

Users that are interested in xnu-qemu-arm64-tools are comparing it to the libraries listed below

• NyanSatan / Virtual-iBoot-Fun
  Another Virtualization.framework demo project, with focus to iBoot (WIP)
  ☆165Updated last year
• zhuowei / qemu
  Patched version of QEMU for exploring XNU arm64 emulation.
  ☆95Updated last year
• dayt0n / kairos
  64-bit iOS boot image patcher written in C
  ☆146Updated 2 years ago
• argp / iBoot64helper
  IDAPython loader to help with AArch64 iBoot, iBEC, and SecureROM reverse engineering
  ☆261Updated 3 years ago
• Siguza / iometa
  arm64 IOKit class dumper
  ☆267Updated 2 weeks ago
• malus-security / sandblaster
  Reversing the Apple sandbox
  ☆233Updated last year
• bazad / ida_kernelcache
  An IDA Toolkit for analyzing iOS kernelcaches.
  ☆287Updated 4 years ago
• userlandkernel / ios-unstripped-kexts
  Unstripped iOS kernel extensions and more. More coming soon.
  ☆56Updated 5 years ago
• xerub / acorn
  untethered+unsandboxed code execution in iOS 11
  ☆186Updated 5 years ago
• Siguza / libkrw
  Lib kernel r/w
  ☆191Updated 3 years ago
• DanyL / lockdownd_playground
  Lockdown related research, tools and POCs.
  ☆91Updated 5 years ago
• bazad / blanket
  CVE-2018-4280: Mach port replacement vulnerability in launchd on iOS 11.2.6 leading to sandbox escape, privilege escalation, and codesign…
  ☆253Updated 6 years ago
• galli-leo / emmutaler
  A set of tools for fuzzing SecureROM. Managed to find and trigger checkm8.
  ☆160Updated 3 years ago
• 0x36 / ghidra_kernelcache
  a Ghidra framework for iOS kernelcache reverse engineering
  ☆348Updated 2 years ago
• citruz / pongoOS-QEMU
  Fork of PongoOS which can be run in QEMU
  ☆65Updated 3 years ago
• malus-security / iextractor
  Automate extraction from iOS firmware files (.ipsw)
  ☆201Updated 3 weeks ago
• 0x36 / oob_events
  kernel exploit for Apple iOS 13.X
  ☆185Updated 4 years ago
• jsherman212 / svc_stalker
  iOS system call/Mach trap interception for checkra1n'able devices
  ☆155Updated 3 years ago
• pgarba / King
  port of checkm8 to C
  ☆140Updated 9 months ago
• Darm64 / XNU
  Research into porting the XNU kernel to ARM devices.
  ☆80Updated 4 years ago
• jakeajames / sock_port
  iOS 10.0-12.2 tfp0
  ☆129Updated 5 years ago
• NyanSatan / Image3RE
  iBoot-1145.3 Image3/heap stack RE (+unholy tools)
  ☆77Updated last year
• blacktop / darwin-xnu-build
  XNU kernel, Kernel Collection and CodeQL build scripts
  ☆224Updated 3 weeks ago
• lilang-wu / p-joker
  p-joker -- iOS/MacOS kernelcache/kexts analysis tool
  ☆108Updated 4 years ago
• sbingner / kerneldec
  iOS Kernel Decompressor
  ☆87Updated 4 years ago
• matteyeux / ida-iboot-loader
  IDA loader for Apple's 64 bits iBoot, SecureROM and AVPBooter
  ☆151Updated 5 months ago
• jakeajames / jelbrekLib
  Give me tfp0, I give you jelbrek
  ☆262Updated 4 years ago
• jsherman212 / ktrw
  An iOS kernel debugger based on a KTRR bypass for A11 iPhones; works with LLDB and IDA Pro.
  ☆57Updated 3 years ago
• JakeBlair420 / Spice
  Spice - an unfinished iOS 11 untether
  ☆115Updated 3 years ago
• 0cyn / iBoot-IDA
  32/64 bit SecureROM/iBoot loader for IDA Pro. Also supports loading and decrypting encrypted .im4ps within IDA.
  ☆74Updated 3 years ago