dlevi309 / MacRootKitLinks
A RootKit for macOS that can perform kernel read/write, hook kernel and userspace functions, set custom conditional breakpoints, etc
☆24Updated 3 years ago
Alternatives and similar repositories for MacRootKit
Users that are interested in MacRootKit are comparing it to the libraries listed below
Sorting:
- Utility to manipulate codesigned application in Mac OS X. Demonstrate the use of csops system call.☆78Updated last year
- One-Click to Completely Take Over A macOS Device☆17Updated 3 years ago
- arm64 and arm64e dylib injector☆36Updated last year
- Simple Kernel Extension to read and write Kernel Memory☆14Updated 3 years ago
- A general purpose toolkit to make vulnerability research on macOS easier.☆81Updated 6 months ago
- My collection of PoCs☆26Updated last year
- PCIDriverKit proof-of-concept for CVE-2022-26763☆38Updated 3 years ago
- IDA plugin that resolves PPL calls to the actual underlying PPL function.☆58Updated 2 years ago
- SnatchBox (CVE-2020-27935) is a sandbox escape vulnerability and exploit affecting macOS up to version 10.15.x☆31Updated 4 years ago
- An assistant for BinDiff☆26Updated 2 years ago
- ☆54Updated 3 years ago
- XPC sniffer using LLDB☆46Updated 11 months ago
- macOS codesigning translocation vulnerability.☆42Updated 3 years ago
- ☆39Updated 6 months ago
- A Ghidra extension for reverse-engineering macOS binaries.☆19Updated 7 months ago
- `ipsw` symbolication signatures☆70Updated 2 weeks ago
- ☆39Updated 4 years ago
- arm64 IOKit class dumper☆18Updated 6 months ago
- Enumerate running processes using com.apple.CodeSigningHelper☆13Updated last year
- UPDATED: All the action is at https://github.com/xsscx/srd☆12Updated 4 years ago
- WebKit/JSC CodeQL Databases☆17Updated 3 weeks ago
- Kernel Cache Decryption for iOS☆17Updated 3 years ago
- A simple macOS debugger detection trick☆15Updated 4 months ago
- Accompanying code for blog post "Mapping iOS Persistence Attack Surface using Corellium"☆12Updated 2 months ago
- CVE-2018-4280: Mach port replacement vulnerability in launchd on macOS 10.13.5 leading to local privilege escalation and SIP bypass.☆59Updated 6 years ago
- IDA plugin to extract Mach-O binaries located in the disassembly or data☆60Updated 6 years ago
- A collection of Hopper plugins and scripts☆27Updated 2 years ago
- ☆30Updated 2 years ago
- CVE-2020-9992 - A design flaw in MobileDevice.framework/Xcode and iOS/iPadOS/tvOS Development Tools allows an attacker in the same networ…☆72Updated 4 years ago
- Apple Blocks Plugin for Binary Ninja☆33Updated last week