alephsecurity / xnu-qemu-arm64-tools
☆175Updated 4 years ago
Alternatives and similar repositories for xnu-qemu-arm64-tools:
Users that are interested in xnu-qemu-arm64-tools are comparing it to the libraries listed below
- Another Virtualization.framework demo project, with focus to iBoot (WIP)☆165Updated last year
- 64-bit iOS boot image patcher written in C☆146Updated 2 years ago
- Unstripped iOS kernel extensions and more. More coming soon.☆56Updated 5 years ago
- Fork of PongoOS which can be run in QEMU☆66Updated 3 years ago
- Patched version of QEMU for exploring XNU arm64 emulation.☆95Updated last year
- IDAPython loader to help with AArch64 iBoot, iBEC, and SecureROM reverse engineering☆261Updated 3 years ago
- Lib kernel r/w☆191Updated 3 years ago
- Lockdown related research, tools and POCs.☆91Updated 5 years ago
- arm64 IOKit class dumper☆268Updated this week
- An IDA Toolkit for analyzing iOS kernelcaches.☆288Updated 4 years ago
- A set of tools for fuzzing SecureROM. Managed to find and trigger checkm8.☆160Updated 3 years ago
- kernel exploit for Apple iOS 13.X☆185Updated 4 years ago
- XNU kernel, Kernel Collection and CodeQL build scripts☆229Updated 2 weeks ago
- port of checkm8 to C☆141Updated 10 months ago
- A tool for debugging macOS virtual machines☆112Updated 4 years ago
- Tool to decrypt 64 bits iOS firmware images (iBoot/LLB/iBSS/iBEC).☆178Updated last year
- untethered+unsandboxed code execution in iOS 11☆186Updated 5 years ago
- p-joker -- iOS/MacOS kernelcache/kexts analysis tool☆108Updated 4 years ago
- Dev tools for probing IOKit☆202Updated last year
- IDA loader for Apple's 64 bits iBoot, SecureROM and AVPBooter☆153Updated 5 months ago
- iOS system call/Mach trap interception for checkra1n'able devices☆155Updated 3 years ago
- Research into porting the XNU kernel to ARM devices.☆81Updated 4 years ago
- Automate extraction from iOS firmware files (.ipsw)☆203Updated last month
- iBoot-1145.3 Image3/heap stack RE (+unholy tools)☆77Updated last year
- An IDA Toolkit for analyzing iOS kernelcaches.☆107Updated last year
- CVE-2018-4280: Mach port replacement vulnerability in launchd on iOS 11.2.6 leading to sandbox escape, privilege escalation, and codesign…☆254Updated 6 years ago
- Tool for getting and setting nonce without triggering KPP/KTRR/PAC.☆114Updated 2 years ago
- Reversing the Apple sandbox☆233Updated last year
- A tool to parse Apple's binary device tree format.☆55Updated 5 years ago
- iOS 10.0-12.2 tfp0☆132Updated 5 years ago