ant4g0nist / Vulnerable-KextView external linksLinks
A WIP "Vulnerable by Design" kext for iOS/macOS to play & learn *OS kernel exploitation
☆234Dec 29, 2020Updated 5 years ago
Alternatives and similar repositories for Vulnerable-Kext
Users that are interested in Vulnerable-Kext are comparing it to the libraries listed below
Sorting:
- kernel exploit for Apple iOS 13.X☆185Nov 27, 2020Updated 5 years ago
- Extreme Vulnerable IOKit driver☆93Jan 23, 2021Updated 5 years ago
- Binary code-coverage fuzzer for macOS, based on libFuzzer and LLVM☆177May 19, 2025Updated 8 months ago
- Here is some resources about macOS/iOS system security.☆537Feb 19, 2025Updated 11 months ago
- ☆51Jul 20, 2020Updated 5 years ago
- Compromising the macOS Kernel through Safari by Chaining Six Vulnerabilities☆411Mar 19, 2021Updated 4 years ago
- an iOS kernel function hooking framework for checkra1n'able devices☆581Oct 6, 2021Updated 4 years ago
- An IDA Toolkit for analyzing iOS kernelcaches.☆109May 15, 2025Updated 9 months ago
- A set of tools for fuzzing SecureROM. Managed to find and trigger checkm8.☆164Sep 18, 2021Updated 4 years ago
- xnu_gym is a pongoOS module that patches XNU to reintroduce previously known and patched vulnerabilities. This is an easy way to practice…☆57Jun 17, 2021Updated 4 years ago
- a Ghidra framework for iOS kernelcache reverse engineering☆363Nov 6, 2022Updated 3 years ago
- ☆146Aug 17, 2022Updated 3 years ago
- ☆244Sep 21, 2021Updated 4 years ago
- ☆446Oct 3, 2024Updated last year
- An iOS kernel debugger based on a KTRR bypass for A11 iPhones; works with LLDB and IDA Pro.☆687Oct 22, 2022Updated 3 years ago
- p-joker -- iOS/MacOS kernelcache/kexts analysis tool☆111May 18, 2020Updated 5 years ago
- ☆37Jun 7, 2019Updated 6 years ago
- Sniff XPC goodies on your iOS device.☆96Nov 14, 2020Updated 5 years ago
- PoC☆212Jan 13, 2025Updated last year
- Project Zero Docs and Tools☆835Feb 4, 2026Updated last week
- iOS 15.1 kernel exploit POC for CVE-2021-30955☆268Mar 1, 2022Updated 3 years ago
- Lib kernel r/w☆189Nov 1, 2021Updated 4 years ago
- use https://github.com/argp/iBoot64helper which is the orginal repo and far more advanced☆33Sep 2, 2019Updated 6 years ago
- ☆523Sep 28, 2025Updated 4 months ago
- Sniff XPC communication using Frida and Go☆156Updated this week
- WTF Snapshot fuzzing of macOS targets☆99May 31, 2024Updated last year
- PoC for the iOS 11.4.1 and MacOS 10.13 kernel vulnerability in lio_listio☆78Oct 31, 2018Updated 7 years ago
- some research results of sep☆20Apr 9, 2021Updated 4 years ago
- Experiment to attempt to build Apple's dyld tools.☆63May 29, 2020Updated 5 years ago
- arm64 IOKit class dumper☆289Jan 5, 2026Updated last month
- SnatchBox (CVE-2020-27935) is a sandbox escape vulnerability and exploit affecting macOS up to version 10.15.x☆32Dec 18, 2020Updated 5 years ago
- An IDA Toolkit for analyzing iOS kernelcaches.☆299Jul 24, 2020Updated 5 years ago
- ☆444Mar 5, 2021Updated 4 years ago
- Tool to patch the ASLR slide generation in the kernel to disable user-land ASLR on 32-bit iOS☆31Dec 6, 2020Updated 5 years ago
- Binary, coverage-guided fuzzer for Windows, macOS, Linux and Android☆1,287Jan 13, 2026Updated last month
- Find some iBoot functions in an iBoot64.☆40Feb 10, 2021Updated 5 years ago
- Useful resources for iOS hacking☆1,884May 24, 2025Updated 8 months ago
- Coverage-guided binary fuzzing powered by Frida Stalker☆185May 2, 2021Updated 4 years ago
- Binary Format of iOS 13 Sandbox Profile Collection☆52Oct 30, 2019Updated 6 years ago