cellebrite-labs/sandblaster external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

cellebrite-labs/sandblaster

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/cellebrite-labs/sandblaster)

Close

cellebrite-labs / sandblasterView on GitHubMore

• External links
• Readme badge

Reversing the Apple sandbox

☆168Dec 7, 2025Updated 2 months ago

Alternatives and similar repositories for sandblaster

Users that are interested in sandblaster are comparing it to the libraries listed below

• ReverseApple / gxpc

  View on GitHub
  Sniff XPC communication using Frida and Go
  ☆157Feb 10, 2026Updated 3 weeks ago
• skr0x1c0 / binja_kc

  View on GitHub
  Plugin for loading MachO kernelcache and dSYM files to Binary Ninja
  ☆40Mar 23, 2025Updated 11 months ago
• m1stadev / apple-compress

  View on GitHub
  Python bindings for Apple's libcompression.
  ☆15Updated this week
• cellebrite-labs / ida_kcpp

  View on GitHub
  An IDAPython module for enhancing c++ support on top of ida_kernelcache
  ☆140May 15, 2025Updated 9 months ago
• cellebrite-labs / ida_kernelcache

  View on GitHub
  An IDA Toolkit for analyzing iOS kernelcaches.
  ☆110May 15, 2025Updated 9 months ago
• blacktop / yardens-sb-profs

  View on GitHub
  Output from running Yarden's sandblaster on an iPhone15,2's iOS17 kernelcaches
  ☆18Aug 7, 2024Updated last year
• blacktop / darwin-xnu-build

  View on GitHub
  XNU kernel, Kernel Collection and CodeQL build scripts
  ☆274Updated this week
• fmyyss / XNU_KERNEL_RESEARCH

  View on GitHub
  ☆139Feb 17, 2024Updated 2 years ago
• cellebrite-labs / PPLorer

  View on GitHub
  IDA plugin that resolves PPL calls to the actual underlying PPL function.
  ☆56Feb 28, 2023Updated 3 years ago
• ChiChou / XpcScope

  View on GitHub
  Yet another xpc sniffer
  ☆213Feb 15, 2026Updated 2 weeks ago
• opa334 / sandbox_extension_generator

  View on GitHub
  iOS 15.0 - 15.3.1 sandbox escape technique using kernel read/write primitives
  ☆132Jun 10, 2022Updated 3 years ago
• alfiecg24 / KextRW

  View on GitHub
  macOS kext with kernel R/W, kalloc and kcall
  ☆107Jun 21, 2025Updated 8 months ago
• 0xilis / libNeoAppleArchive

  View on GitHub
  Cross-compat library for parsing Apple Archive + Apple Encrypted Archive (.aar/.yaa/.aea).
  ☆34Jun 17, 2025Updated 8 months ago
• wangtielei / POCs

  View on GitHub
  ☆125Aug 3, 2024Updated last year
• alfiecg24 / Trigon

  View on GitHub
  Deterministic kernel exploit based on CVE-2023-32434.
  ☆123Aug 7, 2025Updated 6 months ago
• Siguza / IOKernelRW

  View on GitHub
  Insecurity as an IOService
  ☆96Mar 25, 2025Updated 11 months ago
• Cisco-Talos / snap_wtf_macos

  View on GitHub
  WTF Snapshot fuzzing of macOS targets
  ☆98May 31, 2024Updated last year
• cellebrite-labs / PacXplorer

  View on GitHub
  IDA plugin to find code cross references to virtual functions using PAC codes
  ☆147Mar 16, 2022Updated 3 years ago
• doronz88 / swift_reversing

  View on GitHub
  My ongoing primer on reversing Swift
  ☆117Sep 11, 2025Updated 5 months ago
• EthanArbuckle / objfind

  View on GitHub
  Search running processes on iOS for instances of a given objc class.
  ☆55Jan 3, 2025Updated last year
• CRKatri / trustcache

  View on GitHub
  Interact with trustcaches
  ☆41Feb 12, 2023Updated 3 years ago
• DerekSelander / dsc_symbols

  View on GitHub
  symbol dumps of iOS shared caches
  ☆34Oct 15, 2022Updated 3 years ago
• jeffssh / CVE-2021-30860

  View on GitHub
  Collection of materials relating to FORCEDENTRY
  ☆100Mar 30, 2024Updated last year
• jprx / CVE-2024-27815

  View on GitHub
  macOS/ XNU kernel buffer overflow. Introduced in macOS 14.0 (xnu-10002.1.13), fixed in macOS 14.5 (xnu-10063.121.3)
  ☆48Jul 18, 2025Updated 7 months ago
• malus-security / sandblaster

  View on GitHub
  Reversing the Apple sandbox
  ☆251Apr 24, 2025Updated 10 months ago
• 0x36 / ghidra_kernelcache

  View on GitHub
  a Ghidra framework for iOS kernelcache reverse engineering
  ☆363Nov 6, 2022Updated 3 years ago
• justtryingthingsout / sepsplit-rs

  View on GitHub
  SEP firmware splitter, made in rust.
  ☆45Oct 11, 2024Updated last year
• 0x36 / weightBufs

  View on GitHub
  ANE kernel r/w exploit for iOS 15 and macOS 12
  ☆302Nov 20, 2022Updated 3 years ago
• Siguza / aea1

  View on GitHub
  AEA metadata dumper
  ☆49May 15, 2025Updated 9 months ago
• EthanArbuckle / oslo

  View on GitHub
  iOS `os_log` viewer that supports both real-time and archived logs
  ☆32May 5, 2025Updated 10 months ago
• Siguza / iokit-utils

  View on GitHub
  Dev tools for probing IOKit
  ☆200Sep 23, 2023Updated 2 years ago
• tony-go / snixpc

  View on GitHub
  XPC sniffer using LLDB
  ☆50Oct 3, 2024Updated last year
• Proteas / sep-fw-dyld-cache-loader

  View on GitHub
  IDA loader for SEP firmware with dyld cache support.
  ☆67Aug 22, 2024Updated last year
• 0x3c3e / pocs

  View on GitHub
  My collection of PoCs
  ☆26Nov 9, 2023Updated 2 years ago
• Muirey03 / CVE-2022-42864

  View on GitHub
  Proof-of-concept for the CVE-2022-42864 IOHIDFamily race condition
  ☆66Jan 20, 2023Updated 3 years ago
• jonpalmisc / respawn

  View on GitHub
  Experimentation environment for checkm8-vulnerable devices
  ☆57Dec 30, 2023Updated 2 years ago
• EthanArbuckle / objsee-ios

  View on GitHub
  toy project for tracing objc_msgSend
  ☆61Feb 9, 2026Updated 3 weeks ago
• Ingan121 / FSUntether

  View on GitHub
  Fucking Simple Untether for iOS 15-17
  ☆213Dec 20, 2023Updated 2 years ago
• opa334 / ChOma

  View on GitHub
  C library for manipulating MachO/FAT files and their code signatures
  ☆415Feb 4, 2026Updated last month