bazad/blanket external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

bazad/blanket

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/bazad/blanket)

Close

bazad / blanketView on GitHubMore

• External links
• Readme badge

CVE-2018-4280: Mach port replacement vulnerability in launchd on iOS 11.2.6 leading to sandbox escape, privilege escalation, and codesigning bypass.

☆259Nov 13, 2018Updated 7 years ago

Alternatives and similar repositories for blanket

Users that are interested in blanket are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• bazad / ida_kernelcache

  View on GitHub
  An IDA Toolkit for analyzing iOS kernelcaches.
  ☆301Jul 24, 2020Updated 5 years ago
• bazad / presentations

  View on GitHub
  Slides from my conference presentations.
  ☆80Aug 5, 2020Updated 5 years ago
• bazad / threadexec

  View on GitHub
  A library to execute code in the context of other processes on iOS 11.
  ☆82Jul 25, 2018Updated 7 years ago
• Synacktiv-contrib / lightspeed

  View on GitHub
  PoC for the iOS 11.4.1 and MacOS 10.13 kernel vulnerability in lio_listio
  ☆78Oct 31, 2018Updated 7 years ago
• bazad / launchd-portrep

  View on GitHub
  CVE-2018-4280: Mach port replacement vulnerability in launchd on macOS 10.13.5 leading to local privilege escalation and SIP bypass.
  ☆59Oct 28, 2018Updated 7 years ago
• bazad / xpc-string-leak

  View on GitHub
  CVE-2018-4248: Out-of-bounds read in libxpc during string serialization.
  ☆54Jul 10, 2018Updated 7 years ago
• 0x36 / powend

  View on GitHub
  powerd exploit : Sandbox escape to root for Apple iOS < 12.2 on A11 devices
  ☆110Mar 28, 2019Updated 6 years ago
• FSecureLABS / CVE-2018-4121

  View on GitHub
  macOS 10.13.3 (17D47) Safari Wasm Exploit
  ☆119Apr 19, 2018Updated 7 years ago
• bazad / memctl

  View on GitHub
  An iOS kernel introspection tool.
  ☆264Sep 19, 2019Updated 6 years ago
• Proteas / unstripped-ios-kernels

  View on GitHub
  Unstripped iOS Kernels
  ☆219Feb 11, 2020Updated 6 years ago
• googleprojectzero / ktrw

  View on GitHub
  An iOS kernel debugger based on a KTRR bypass for A11 iPhones; works with LLDB and IDA Pro.
  ☆690Oct 22, 2022Updated 3 years ago
• bazad / x18-leak

  View on GitHub
  CVE-2018-4185: iOS 11.2-11.2.6 kernel pointer disclosure introduced by Apple's Meltdown mitigation.
  ☆87Mar 7, 2018Updated 8 years ago
• Synacktiv-contrib / kernelcache-laundering

  View on GitHub
  load iOS12 kernelcaches and PAC code in IDA
  ☆60Oct 4, 2018Updated 7 years ago
• bazad / physmem

  View on GitHub
  Local privilege escalation through macOS 10.12.1 via CVE-2016-1825 or CVE-2016-7617.
  ☆66Jan 16, 2017Updated 9 years ago
• externalist / exploit_playground

  View on GitHub
  Analysis of public exploits or my 1day exploits
  ☆617Oct 1, 2020Updated 5 years ago
• pattern-f / xattr-oob-swap

  View on GitHub
  Demo exploit code for CVE-2020-27904, a tfp0 bug.
  ☆69Apr 29, 2021Updated 4 years ago
• jakeajames / rootlessJB

  View on GitHub
  ☆307Apr 6, 2019Updated 6 years ago
• jakeajames / jelbrekLib

  View on GitHub
  Give me tfp0, I give you jelbrek
  ☆260Oct 28, 2020Updated 5 years ago
• Siguza / iometa

  View on GitHub
  arm64 IOKit class dumper
  ☆292Jan 5, 2026Updated 2 months ago
• bazad / ctl_ctloutput-leak

  View on GitHub
  CVE-2017-13868: Information leak of uninitialized kernel heap data in XNU.
  ☆27Dec 7, 2017Updated 8 years ago
• argp / iBoot64helper

  View on GitHub
  IDAPython loader to help with AArch64 iBoot, iBEC, and SecureROM reverse engineering
  ☆264Feb 21, 2022Updated 4 years ago
• ret2 / P2O_2018

  View on GitHub
  ☆97Jan 9, 2021Updated 5 years ago
• PsychoTea / machswap

  View on GitHub
  An iOS kernel exploit for iOS 11 through 12.1.2. Non-SMAP (<=A9) devices only.
  ☆80Apr 30, 2019Updated 6 years ago
• Siguza / v0rtex

  View on GitHub
  IOSurface exploit
  ☆228Jul 2, 2024Updated last year
• bazad / rootsh

  View on GitHub
  Local privilege escalation for OS X 10.10.5 via CVE-2016-1828.
  ☆86May 18, 2016Updated 9 years ago
• Siguza / libkrw

  View on GitHub
  Lib kernel r/w
  ☆190Nov 1, 2021Updated 4 years ago
• maximehip / Safari-iOS10.3.2-macOS-10.12.4-exploit-Bugs

  View on GitHub
  ☆79Jul 7, 2017Updated 8 years ago
• phoenhex / files

  View on GitHub
  ☆522Feb 22, 2020Updated 6 years ago
• Siguza / ios-kern-utils

  View on GitHub
  iOS Kernel utilities
  ☆248Feb 11, 2019Updated 7 years ago
• Darm64 / XNU

  View on GitHub
  Research into porting the XNU kernel to ARM devices.
  ☆84Aug 14, 2020Updated 5 years ago
• Siguza / IOHIDeous

  View on GitHub
  IOHIDFamily 0day
  ☆443Jan 10, 2023Updated 3 years ago
• Siguza / psychicpaper

  View on GitHub
  iOS <13.5 sandbox escape/entitlement 0day
  ☆339Jan 5, 2026Updated 2 months ago
• DanyL / lockdownd_playground

  View on GitHub
  Lockdown related research, tools and POCs.
  ☆90May 18, 2019Updated 6 years ago
• doadam / ziVA

  View on GitHub
  An iOS kernel exploit designated to work on all iOS devices <= 10.3.1
  ☆338Aug 31, 2017Updated 8 years ago
• saelo / pwn2own2018

  View on GitHub
  A Pwn2Own exploit chain
  ☆756Nov 8, 2018Updated 7 years ago
• Coalfire-Research / iOS-11.1.2-15B202-Jailbreak

  View on GitHub
  iOS 11.1.2 (15B202) Jailbreak
  ☆438Apr 6, 2021Updated 4 years ago
• omerporze / brokentooth

  View on GitHub
  POC for CVE-2018-4327
  ☆42Sep 13, 2018Updated 7 years ago
• LIJI32 / SnatchBox

  View on GitHub
  SnatchBox (CVE-2020-27935) is a sandbox escape vulnerability and exploit affecting macOS up to version 10.15.x
  ☆32Dec 18, 2020Updated 5 years ago
• raymontag / chain3

  View on GitHub
  ☆51Jul 20, 2020Updated 5 years ago