Alternatives and similar repositories for memctl

Users that are interested in memctl are comparing it to the libraries listed below

• Siguza / iometa
  arm64 IOKit class dumper
  ☆285Updated last month
• bazad / ida_kernelcache
  An IDA Toolkit for analyzing iOS kernelcaches.
  ☆299Updated 5 years ago
• argp / iBoot64helper
  IDAPython loader to help with AArch64 iBoot, iBEC, and SecureROM reverse engineering
  ☆262Updated 3 years ago
• Siguza / ios-kern-utils
  iOS Kernel utilities
  ☆247Updated 6 years ago
• xerub / acorn
  untethered+unsandboxed code execution in iOS 11
  ☆189Updated 5 years ago
• bazad / blanket
  CVE-2018-4280: Mach port replacement vulnerability in launchd on iOS 11.2.6 leading to sandbox escape, privilege escalation, and codesign…
  ☆257Updated 7 years ago
• Siguza / iokit-utils
  Dev tools for probing IOKit
  ☆201Updated 2 years ago
• Proteas / unstripped-ios-kernels
  Unstripped iOS Kernels
  ☆219Updated 5 years ago
• tihmstar / libtakeover
  call functions in a remote process using Mach API
  ☆106Updated 10 months ago
• Siguza / libkrw
  Lib kernel r/w
  ☆189Updated 4 years ago
• DanyL / lockdownd_playground
  Lockdown related research, tools and POCs.
  ☆90Updated 6 years ago
• saelo / ios-kern-utils
  iOS Kernel utilities
  ☆163Updated 10 years ago
• xerub / patchfinder64
  iOS ARM64 kernel patchfinder
  ☆77Updated 6 years ago
• jsherman212 / svc_stalker
  iOS system call/Mach trap interception for checkra1n'able devices
  ☆159Updated 4 years ago
• deepinstinct / dsc_fix
  Aids in reverse engineering libraries from dyld_shared_cache in IDA
  ☆100Updated 8 years ago
• bazad / threadexec
  A library to execute code in the context of other processes on iOS 11.
  ☆82Updated 7 years ago
• lilang-wu / p-joker
  p-joker -- iOS/MacOS kernelcache/kexts analysis tool
  ☆111Updated 5 years ago
• Haifisch / kuzz
  ios iokit fuzzer (really probably isn't that useful anymore tbh)
  ☆62Updated 8 years ago
• 0x36 / ghidra_kernelcache
  a Ghidra framework for iOS kernelcache reverse engineering
  ☆362Updated 3 years ago
• jakeajames / jelbrekLib
  Give me tfp0, I give you jelbrek
  ☆260Updated 5 years ago
• potmdehex / multipath_kfree
  low effort jb
  ☆140Updated 7 years ago
• malus-security / sandblaster
  Reversing the Apple sandbox
  ☆246Updated 9 months ago
• NyanSatan / Image3RE
  iBoot-1145.3 Image3/heap stack RE (+unholy tools)
  ☆84Updated last year
• cellebrite-labs / PacXplorer
  IDA plugin to find code cross references to virtual functions using PAC codes
  ☆147Updated 3 years ago
• xerub / kexty
  iOS KEXT loader 7.x-9.x
  ☆96Updated 8 years ago
• doronz88 / hilda
  LLDB wrapped and empowered by iPython's features
  ☆155Updated this week
• hot3eed / objtree
  tree but for Objective-C messages.
  ☆125Updated 2 years ago
• oleavr / ios-inject-custom
  Example showing how to use Frida for standalone injection of a custom payload
  ☆167Updated 5 years ago
• malus-security / iextractor
  Automate extraction from iOS firmware files (.ipsw)
  ☆214Updated 2 weeks ago
• 0x36 / powend
  powerd exploit : Sandbox escape to root for Apple iOS < 12.2 on A11 devices
  ☆110Updated 6 years ago