Alternatives and similar repositories for templates

Users that are interested in templates are comparing it to the libraries listed below

• haiyuidesu / iBoot64Patcher
  Patch the iBoot64 with generic patches.
  ☆53Updated last year
• Cryptiiiic / hookra1n
  A custom shellcode hook for checkra1n 0.1337 written in c!
  ☆38Updated last year
• alfiecg24 / coretrust_cli
  A tool to call CoreTrust evaluation from userland
  ☆20Updated last year
• m1stadev / eyepatch
  An *OS bootchain patching library.
  ☆15Updated last week
• hekapooios / hekapooios.github.io
  ☆33Updated last month
• Proteas / a7-sep-bug
  a7 sep bug
  ☆54Updated last year
• amarioguy / libtatsu
  Library handling the communication with Apple's Tatsu Signing Server (TSS)
  ☆10Updated 5 months ago
• m1stadev / PyIMG4
  A Python library/CLI tool for parsing Apple's Image4 format.
  ☆56Updated this week
• 0x7ff / golb
  Mapping physical memory to user space (EL0) on iOS.
  ☆74Updated 2 years ago
• alfiecg24 / Trigon
  Deterministic kernel exploit based on CVE-2023-32434.
  ☆105Updated 3 weeks ago
• tihmstar / colobus_firmware
  RP2040 based iPhone (lightning) UART cable, that actually works
  ☆17Updated last month
• CRKatri / trustcache
  Interact with trustcaches
  ☆42Updated 2 years ago
• Siguza / IOKernelRW
  Insecurity as an IOService
  ☆91Updated 5 months ago
• alfiecg24 / KextRW
  macOS kext with kernel R/W, kalloc and kcall
  ☆92Updated 2 months ago
• miniexploit / pyipatcher
  iOS bootchain patchers in Python
  ☆13Updated last year
• opa334 / fishhook
  A library that enables dynamically rebinding symbols in Mach-O binaries running on iOS.
  ☆21Updated 8 months ago
• haiyuidesu / iBoot64Finder
  Find some iBoot functions in an iBoot64.
  ☆41Updated 4 years ago
• EliseZeroTwo / iBoot-Binja-Loader
  iBoot/SecureROM Loader
  ☆32Updated 2 years ago
• Proteas / sep-fw-dyld-cache-loader
  IDA loader for SEP firmware with dyld cache support.
  ☆58Updated last year
• skr0x1c0 / binja_kc
  Plugin for loading MachO kernelcache and dSYM files to Binary Ninja
  ☆37Updated 5 months ago
• NyanSatan / StarInjector
  Writes to nand_llb and triggers the Image3 SHSH overlap bug
  ☆14Updated last year
• justtryingthingsout / sepsplit-rs
  SEP firmware splitter, made in rust.
  ☆40Updated 10 months ago
• matteyeux / seprom-loader
  Binary Ninja loader for 64 bits Apple SEPROMs
  ☆54Updated last month
• Cryptiiiic / SEPROMPanicDecrypt
  SEPROM Panic Decrypt Tool written in python
  ☆23Updated last month
• nicolas17 / ipsw_keys
  Extract iOS firmware keys using on-device AES engine
  ☆42Updated 3 years ago
• NyanSatan / checkm8_bootkit
  Boot arbitrary iBoot via ipwndfu's custom protocol on some cursed platforms and more
  ☆58Updated 7 months ago
• droe / binja-blocks
  Apple Blocks Plugin for Binary Ninja
  ☆34Updated last week
• tihmstar / gido_public
  ☆22Updated 2 years ago
• GeoSn0w / CVE-2025-24203-iOS-Exploit-With-Error-Logging
  Slightly improved exploit of the CVE-2025-24203 iOS vulnerability by Ian Beer of Google Project Zero
  ☆32Updated 3 months ago
• kok3shidoll / meow16-kfd-pub
  ios 16 arm64 krw
  ☆28Updated last year