Alternatives and similar repositories for n-days:

Users that are interested in n-days are comparing it to the libraries listed below

• Siguza / libkrw
  Lib kernel r/w
  ☆192Updated 3 years ago
• opa334 / sandbox_extension_generator
  iOS 15.0 - 15.3.1 sandbox escape technique using kernel read/write primitives
  ☆124Updated 2 years ago
• jsherman212 / iomfb-exploit
  Exploit for CVE-2021-30807
  ☆130Updated 3 years ago
• Proteas / apple-cve
  apple cve list
  ☆136Updated last week
• 0x36 / oob_events
  kernel exploit for Apple iOS 13.X
  ☆184Updated 4 years ago
• potmdehex / multicast_bytecopy
  kernel r/w exploit for iOS 15.0 - 15.1.1
  ☆257Updated 2 years ago
• saaramar / IOMFB_integer_overflow_poc
  ☆147Updated 3 years ago
• jakeajames / time_waste
  iOS 12.0-13.3 tfp0
  ☆151Updated 4 years ago
• Muirey03 / CVE-2022-42864
  Proof-of-concept for the CVE-2022-42864 IOHIDFamily race condition
  ☆64Updated 2 years ago
• 0x36 / weightBufs
  ANE kernel r/w exploit for iOS 15 and macOS 12
  ☆291Updated 2 years ago
• b1n4r1b01 / desc_race
  iOS 15.1 kernel exploit POC for CVE-2021-30955
  ☆252Updated 2 years ago
• tihmstar / desc_race-fun_public
  ☆67Updated 2 years ago
• 0x7ff / dimentio
  Tool for getting and setting nonce without triggering KPP/KTRR/PAC.
  ☆114Updated last year
• matteyeux / ida-iboot-loader
  IDA loader for Apple's 64 bits iBoot, SecureROM and AVPBooter
  ☆149Updated 3 months ago
• Muirey03 / CVE-2022-32832
  Proof-of-concept and write-up for the CVE-2022-32832 vulnerability patched in iOS 15.6
  ☆96Updated 2 years ago
• tihmstar / libpatchfinder
  A arm offsetfinder. It finds offsets, patches, parses Mach-O and even supports IMG4/IMG3
  ☆145Updated 6 months ago
• jsherman212 / ktrw
  An iOS kernel debugger based on a KTRR bypass for A11 iPhones; works with LLDB and IDA Pro.
  ☆55Updated 3 years ago
• cellebrite-labs / ida_kernelcache
  An IDA Toolkit for analyzing iOS kernelcaches.
  ☆107Updated last year
• zhuowei / CoreTrustDemo
  Proof-of-concept for CVE-2022-26766 on macOS 12.3.1
  ☆84Updated 2 years ago
• jsherman212 / svc_stalker
  iOS system call/Mach trap interception for checkra1n'able devices
  ☆152Updated 3 years ago
• tjkr0wn / xnu_gym
  xnu_gym is a pongoOS module that patches XNU to reintroduce previously known and patched vulnerabilities. This is an easy way to practice…
  ☆55Updated 3 years ago
• 0x36 / ghidra_kernelcache
  a Ghidra framework for iOS kernelcache reverse engineering
  ☆346Updated 2 years ago
• dayt0n / kairos
  64-bit iOS boot image patcher written in C
  ☆146Updated 2 years ago
• JakeBlair420 / Spice
  Spice - an unfinished iOS 11 untether
  ☆114Updated 3 years ago
• Siguza / IOKernelRW
  Insecurity as an IOService
  ☆84Updated last year
• xerub / acorn
  untethered+unsandboxed code execution in iOS 11
  ☆187Updated 5 years ago
• alfiecg24 / Vertex
  iOS 14 kernel exploit based on PhysPuppet
  ☆58Updated 4 months ago
• NyanSatan / Virtual-iBoot-Fun
  Another Virtualization.framework demo project, with focus to iBoot (WIP)
  ☆164Updated last year
• opa334 / Presentations
  ☆69Updated 8 months ago
• 0cyn / iBoot-IDA
  32/64 bit SecureROM/iBoot loader for IDA Pro. Also supports loading and decrypting encrypted .im4ps within IDA.
  ☆72Updated 2 years ago