IOGPUFamily bitmap_mask underflow → kernel heap OOB write. First public PoC. Original discovery by Wang Yu of Cyberserval.
☆24Mar 18, 2026Updated 3 months ago
Alternatives and similar repositories for CVE_2025_24257----NOT-MINE
Users that are interested in CVE_2025_24257----NOT-MINE are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- iOS and macOS entitlement database☆24Jun 10, 2026Updated last month
- XNU AIO kevent use-after-free — kernel panic from app sandbox on iOS 26.2 (no entitlements). Patched in iOS 26.3☆27Mar 21, 2026Updated 3 months ago
- CVE-2026-20637: AppleSEPKeyStore Use-After-Free — iOS/macOS kernel vulnerability (patched in 26.4)☆55Jun 28, 2026Updated 2 weeks ago
- ☆55Oct 22, 2025Updated 8 months ago
- A collection of Apple-related CTF writeups☆16Jan 17, 2022Updated 4 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Real world CVEs in iOS/MacOS/*OS I've analysed for education purpose.☆22Apr 4, 2026Updated 3 months ago
- CVE-2024-44258☆89Nov 2, 2024Updated last year
- Example of CVE-2022-46689 aka MacDirtyCow.☆14Mar 1, 2023Updated 3 years ago
- ☆41Feb 28, 2026Updated 4 months ago
- deobfuscated JS and blobs from https://b27[.]icu, first attempt at using claude☆273Mar 11, 2026Updated 4 months ago
- PoC for iOS, macOS, iPadOS (DoS)☆16Jan 14, 2022Updated 4 years ago
- ☆44Oct 10, 2025Updated 9 months ago
- Learning how to use IOSurfaceAccelerator☆29Apr 9, 2023Updated 3 years ago
- IDA helper plugin to reverse engineer Objective-C code☆48Jun 12, 2025Updated last year
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- Translations for QOLMod☆30Jul 6, 2026Updated last week
- ☆40Jun 4, 2026Updated last month
- This project hosts security advisories and their accompanying proof-of-concepts related to research conducted at Google which impact non-…☆17May 18, 2026Updated last month
- Pishi is a code coverage tool like kcov for macOS.☆75Apr 17, 2025Updated last year
- WebKit NavigateEvent.canIntercept SOP bypass via cross-port interception — iOS 26.3.1 BSI (CVE-2026-20643)☆19Jun 28, 2026Updated 2 weeks ago
- Google Chrome CVE-2026-6307 PoC☆48Jul 1, 2026Updated 2 weeks ago
- ☆83May 20, 2025Updated last year
- usbliter8 boot for windows and macos without dependencies☆29Jul 7, 2026Updated last week
- A Complete Technical Teardown of a State-Grade iOS/macOS Watering-Hole Exploit Chain☆54Mar 9, 2026Updated 4 months ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- AppleKeyStoreUserClient close() UAF — PoC + diff analysis (bug found/patched by unknown third party in iOS 26.3 RC, not my discovery)☆27Apr 22, 2026Updated 2 months ago
- 1day practice - Escape macOS sandbox (partial) using RemoteViewServices☆46May 12, 2025Updated last year
- ☆64Jul 2, 2026Updated 2 weeks ago
- TCC Bypass☆20Jan 8, 2023Updated 3 years ago
- hooking KiUserApcDispatcher☆25Apr 3, 2017Updated 9 years ago
- A demonstration of read write using cve-2025-43529 on iOS 26.1☆44Jun 23, 2026Updated 3 weeks ago
- Improved version of the A12_Bypass_OSS program with a working server and completed activator.py client.☆55Mar 24, 2026Updated 3 months ago
- CodeQL + DTrace = Memory Disclosure Vulnerabilities in XNU☆48Jul 10, 2023Updated 3 years ago
- LPE due to integer truncation in vskrnlintvsp.sys☆22May 5, 2026Updated 2 months ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- tart, but with custom AVPBooter ROM, serial I/O, DFU mode, GDB debugging (port 8000), SEP debugging (port 8001), and panic halting. See h…☆418Feb 25, 2026Updated 4 months ago
- Full Chain Analysis of CVE-2022-4262, a non-trivial feedback slot type confusion in V8.☆106Feb 12, 2025Updated last year
- Some V8 n-day exploits that I've written☆63Jun 7, 2026Updated last month
- ☆39Mar 23, 2025Updated last year
- Abusing Some Defects in KSLD Ark driver☆40May 30, 2026Updated last month
- Analysis of CVE-2025-43529 (WebKit UAF) + CVE-2025-14174 (ANGLE OOB) exploit chain - iOS Safari☆102Jun 28, 2026Updated 2 weeks ago
- App with PoC of CVE-2024-44285☆43Nov 30, 2024Updated last year