Alternatives and similar repositories for xnu:

Users that are interested in xnu are comparing it to the libraries listed below

• cocoahuke / ioskextdump_ios10
  iOS10~iOS13 Edition) Dump Kext information from iOS kernel cache. Applicable to the kernel which dump from memory. The disassembly framew…
  ☆20Updated 3 years ago
• userlandkernel / USBusted
  Research on Apple's USB protocols
  ☆30Updated 5 years ago
• Jailbreaks / empty_list
  empty_list - exploit for p0 issue 1564 (CVE-2018-4243) iOS 11.0 - 11.3.1 kernel r/w
  ☆19Updated 6 years ago
• matteyeux / srom64helper
  use https://github.com/argp/iBoot64helper which is the orginal repo and far more advanced
  ☆33Updated 5 years ago
• jzdziarski / kernelresolver
  macOS Private KPI Symbol Resolver
  ☆49Updated 7 years ago
• steven-michaud / SandboxMirror
  Tool for reverse-engineering Apple's sandbox
  ☆56Updated 7 years ago
• Siguza / hsp4
  macOS kext for host_special_port(4) patch
  ☆88Updated last year
• knightsc / EnterDebugger
  A kext to facilitate calling PE_enter_debugger on machines that don't respect Cmd-Ctrl-Opt-Shift-Esc
  ☆15Updated 6 years ago
• Proteas / ios-class-tree
  ios kernel class tree
  ☆23Updated 5 years ago
• Proteas / ios13-sandbox-profile-format
  Binary Format of iOS 13 Sandbox Profile Collection
  ☆51Updated 5 years ago
• xerub / LZVN
  LZVN compression/decompression tool
  ☆15Updated 4 years ago
• saagarjha / macOSSandboxInitializationBypass
  App sandbox escapes for macOS
  ☆28Updated 4 years ago
• mrmacete / r2-ios-kernelcache
  Radare2 plugin to parse modern iOS 64-bit kernel caches
  ☆29Updated 5 years ago
• xerub / voucher_swap
  ☆31Updated 5 years ago
• knightsc / CVE
  A collection of CVE POC code
  ☆11Updated 5 years ago
• bazad / ctl_ctloutput-leak
  CVE-2017-13868: Information leak of uninitialized kernel heap data in XNU.
  ☆28Updated 7 years ago
• gdbinit / llvmpatches
  Misc llvm patches
  ☆23Updated 3 years ago
• 0x3c3e / pocs
  My collection of PoCs
  ☆25Updated last year
• OpenJailbreak / sudochop
  iOS Userland Forensic Dumping Framework for iOS 7/8
  ☆19Updated 6 years ago
• xerub / reexport
  Reexport symbols for Mach-O and ELF
  ☆38Updated 6 years ago
• cocoahuke / iosdumpkernelfix
  This tool will help to fix the Mach-O header of iOS kernel which dump from the memory. So that IDA or function symbol-related tools can l…
  ☆22Updated 7 years ago
• redpig / patient0
  Runtime code injection suite for exploring OS X process security
  ☆37Updated 15 years ago
• stek29 / nvram-liber-macos
  ☆29Updated 4 years ago
• Proteas / bindiff-tool
  An assistant for BinDiff
  ☆24Updated last year
• gdbinit / bruteforcesysent
  Small util to discover OS X sysent via bruteforce
  ☆33Updated 8 years ago
• mwpcheung / iOSAuthKit
  ☆13Updated 4 years ago
• zhuowei / PCICrash
  PCIDriverKit proof-of-concept for CVE-2022-26763
  ☆38Updated 2 years ago
• lightbulbone / ios
  Fun with iOS
  ☆13Updated 11 years ago
• Antid0teCom / aarch64_mte
  IDA AArch64 processor extender extension: Adding support for ARMv8.5 memory tagging extension opcodes
  ☆26Updated 4 years ago
• freedomtan / iOS-device-tree-dump
  Dump non-encrypted iOS device tree extracted from im4p
  ☆40Updated 2 years ago