CVE-2018-4280: Mach port replacement vulnerability in launchd on iOS 11.2.6 leading to sandbox escape, privilege escalation, and codesigning bypass.
☆258Nov 13, 2018Updated 7 years ago
Alternatives and similar repositories for blanket
Users that are interested in blanket are comparing it to the libraries listed below
Sorting:
- An IDA Toolkit for analyzing iOS kernelcaches.☆299Jul 24, 2020Updated 5 years ago
- Slides from my conference presentations.☆80Aug 5, 2020Updated 5 years ago
- A library to execute code in the context of other processes on iOS 11.☆82Jul 25, 2018Updated 7 years ago
- CVE-2018-4280: Mach port replacement vulnerability in launchd on macOS 10.13.5 leading to local privilege escalation and SIP bypass.☆59Oct 28, 2018Updated 7 years ago
- PoC for the iOS 11.4.1 and MacOS 10.13 kernel vulnerability in lio_listio☆78Oct 31, 2018Updated 7 years ago
- CVE-2018-4248: Out-of-bounds read in libxpc during string serialization.☆54Jul 10, 2018Updated 7 years ago
- macOS 10.13.3 (17D47) Safari Wasm Exploit☆119Apr 19, 2018Updated 7 years ago
- powerd exploit : Sandbox escape to root for Apple iOS < 12.2 on A11 devices☆110Mar 28, 2019Updated 6 years ago
- An iOS kernel introspection tool.☆263Sep 19, 2019Updated 6 years ago
- Unstripped iOS Kernels☆219Feb 11, 2020Updated 6 years ago
- CVE-2018-4185: iOS 11.2-11.2.6 kernel pointer disclosure introduced by Apple's Meltdown mitigation.☆87Mar 7, 2018Updated 7 years ago
- An iOS kernel debugger based on a KTRR bypass for A11 iPhones; works with LLDB and IDA Pro.☆688Oct 22, 2022Updated 3 years ago
- load iOS12 kernelcaches and PAC code in IDA☆60Oct 4, 2018Updated 7 years ago
- IOSurface exploit☆226Jul 2, 2024Updated last year
- ☆306Apr 6, 2019Updated 6 years ago
- Give me tfp0, I give you jelbrek☆260Oct 28, 2020Updated 5 years ago
- Analysis of public exploits or my 1day exploits☆617Oct 1, 2020Updated 5 years ago
- Local privilege escalation through macOS 10.12.1 via CVE-2016-1825 or CVE-2016-7617.☆66Jan 16, 2017Updated 9 years ago
- POC for CVE-2018-4327☆42Sep 13, 2018Updated 7 years ago
- IDAPython loader to help with AArch64 iBoot, iBEC, and SecureROM reverse engineering☆262Feb 21, 2022Updated 4 years ago
- ☆97Jan 9, 2021Updated 5 years ago
- An iOS kernel exploit for iOS 11 through 12.1.2. Non-SMAP (<=A9) devices only.☆80Apr 30, 2019Updated 6 years ago
- CVE-2017-13868: Information leak of uninitialized kernel heap data in XNU.☆27Dec 7, 2017Updated 8 years ago
- macOS kext for host_special_port(4) patch☆90Nov 13, 2023Updated 2 years ago
- IOHIDFamily 0day☆444Jan 10, 2023Updated 3 years ago
- iOS 11.1.2 (15B202) Jailbreak☆437Apr 6, 2021Updated 4 years ago
- Demo exploit code for CVE-2020-27904, a tfp0 bug.☆68Apr 29, 2021Updated 4 years ago
- iOS Kernel utilities☆248Feb 11, 2019Updated 7 years ago
- ☆522Feb 22, 2020Updated 6 years ago
- PoC☆212Jan 13, 2025Updated last year
- Local privilege escalation for OS X 10.10.5 via CVE-2016-1828.☆86May 18, 2016Updated 9 years ago
- ☆79Jul 7, 2017Updated 8 years ago
- Lib kernel r/w☆189Nov 1, 2021Updated 4 years ago
- A Pwn2Own exploit chain☆756Nov 8, 2018Updated 7 years ago
- An iOS kernel exploit designated to work on all iOS devices <= 10.3.1☆337Aug 31, 2017Updated 8 years ago
- Great iOS Jailbreak Material! - I read hundreds of papers and PPTs. Only list the most useful materials here!☆467Jun 14, 2018Updated 7 years ago
- iOS 10.0-12.2 tfp0☆131Sep 3, 2019Updated 6 years ago
- ☆121Apr 1, 2018Updated 7 years ago
- tfp0 for iOS 9.0-9.3.4☆152Jan 10, 2023Updated 3 years ago