Alternatives and similar repositories for KextRW

Users that are interested in KextRW are comparing it to the libraries listed below

• Proteas / sep-fw-dyld-cache-loader
  IDA loader for SEP firmware with dyld cache support.
  ☆58Updated last year
• opa334 / Presentations
  ☆81Updated 3 months ago
• Proteas / a7-sep-bug
  a7 sep bug
  ☆54Updated last year
• blacktop / symbolicator
  `ipsw` symbolication signatures
  ☆67Updated last week
• Siguza / IOKernelRW
  Insecurity as an IOService
  ☆91Updated 5 months ago
• alfiecg24 / Trigon
  Deterministic kernel exploit based on CVE-2023-32434.
  ☆104Updated 2 weeks ago
• droe / binja-blocks
  Apple Blocks Plugin for Binary Ninja
  ☆33Updated 3 months ago
• jonpalmisc / respawn
  Experimentation environment for checkm8-vulnerable devices
  ☆54Updated last year
• 0cyn / ksuite
  My BinaryNinja toolkit I use for iOS centric RE || Prerelease!
  ☆45Updated 2 years ago
• pwn0rz / xnu-build
  xnu build script
  ☆71Updated last year
• cellebrite-labs / sandblaster
  Reversing the Apple sandbox
  ☆147Updated 9 months ago
• WHW0x455 / CVE-2023-41992
  ☆50Updated 3 months ago
• Siguza / tachy0n
  iOS 13.5 ✌️
  ☆45Updated 3 months ago
• CRKatri / trustcache
  Interact with trustcaches
  ☆42Updated 2 years ago
• cellebrite-labs / PacXplorer
  IDA plugin to find code cross references to virtual functions using PAC codes
  ☆145Updated 3 years ago
• felix-pb / remote_pocs
  Some old unexploited remote kernel memory corruption PoCs
  ☆24Updated last year
• ChiChou / ios-debug.py
  Shortcut to automate your iproxy, debugserver, lldb workflow
  ☆40Updated 9 months ago
• opa334 / sandbox_extension_generator
  iOS 15.0 - 15.3.1 sandbox escape technique using kernel read/write primitives
  ☆131Updated 3 years ago
• aemmitt-ns / funtime
  Objective-C runtime tracing tool
  ☆41Updated last year
• cellebrite-labs / ida_kernelcache
  An IDA Toolkit for analyzing iOS kernelcaches.
  ☆111Updated 3 months ago
• alfiecg24 / Presentations
  ☆44Updated 3 months ago
• alfiecg24 / Vertex
  iOS kernel exploit for iOS 14 and 15
  ☆96Updated last month
• 0x7ff / golb
  Mapping physical memory to user space (EL0) on iOS.
  ☆74Updated 2 years ago
• Muirey03 / CVE-2022-42864
  Proof-of-concept for the CVE-2022-42864 IOHIDFamily race condition
  ☆66Updated 2 years ago
• Proteas / bindiff-tool
  An assistant for BinDiff
  ☆26Updated 2 years ago
• ifpdz / CVE-2025-24104
  ☆35Updated 6 months ago
• mwpcheung / AppleSEPFirmware
  Apple SEP reverse
  ☆53Updated 5 years ago
• citruz / pongoOS-QEMU
  Fork of PongoOS which can be run in QEMU
  ☆69Updated 4 years ago
• Vector35 / workflow_objc
  Binary Ninja plugin & workflow to help analyze Objective-C code
  ☆52Updated 2 months ago
• justtryingthingsout / sepsplit-rs
  SEP firmware splitter, made in rust.
  ☆40Updated 10 months ago