flankerhqd / descriptor-describes-toctouLinks
POCs for IOMemoryDescriptor racing bugs in iOS/OSX kernels
☆19Updated 8 years ago
Alternatives and similar repositories for descriptor-describes-toctou
Users that are interested in descriptor-describes-toctou are comparing it to the libraries listed below
Sorting:
- on Mac 10.12.2☆18Updated 6 years ago
- This tool will help to fix the Mach-O header of iOS kernel which dump from the memory. So that IDA or function symbol-related tools can l…☆23Updated 8 years ago
- Extract a decrypted iOS 64-bit kernelcache☆42Updated this week
- load iOS12 kernelcaches and PAC code in IDA☆60Updated 6 years ago
- A tool to find gadgets in the iOS kernelcache.☆33Updated 6 years ago
- iOS 11.1.2 kernel exploit and PoC local kernel debugger by @i41nbeer (https://bugs.chromium.org/p/project-zero/issues/detail?id=1417)☆32Updated 7 years ago
- Joker is used to export xnu kernel's syscall symbols.☆17Updated 10 years ago
- Google Project Zero OS X Vul Report Analysis☆33Updated 8 years ago
- use https://github.com/argp/iBoot64helper which is the orginal repo and far more advanced☆33Updated 5 years ago
- a kernel information leak on macOS<= 10.14.4☆10Updated 6 years ago
- Collection of IDA scripts☆41Updated 7 years ago
- IDA loader for Apple SecureROM☆13Updated 5 years ago
- CVE-2018-4248: Out-of-bounds read in libxpc during string serialization.☆54Updated 6 years ago
- SnatchBox (CVE-2020-27935) is a sandbox escape vulnerability and exploit affecting macOS up to version 10.15.x☆31Updated 4 years ago
- Collection of (at time of release) iOS bugs I found☆54Updated 5 years ago
- iOS/macOS: task_swap_mach_voucher() does not respect MIG semantics leading to use-after-free☆11Updated 6 years ago
- macOS Cython IOKit Utility Library☆42Updated 7 years ago
- Integer overflow in IOHIDDevice/IOUSBHIDDevice☆21Updated 9 years ago
- Proof of concept for CVE-2018-4150 by @cmwdotme☆14Updated 7 years ago
- A fuzzer for the iOS kernel and userland☆44Updated 6 years ago
- A tool for reversing IOKit classes from the iOS 12's new kernelcache format.☆24Updated 6 years ago
- Dump Kext information from Macos. Support batch analysis. The disassembly framework used is Capstone☆43Updated 7 years ago
- ☆31Updated 6 years ago
- ☆20Updated 7 years ago
- Browser based rce for iOS <= 14.3☆9Updated last week
- Android Vulnerability Reports and POCs.☆26Updated 8 years ago
- A NEW 64-bit JAILBREAK FOR iOS 10.3,10.3.1,10.3.2,10.3.x. (Untethered).☆44Updated 8 years ago
- runtime spy elf with android/linux and macho with macOS/IOS☆34Updated 8 years ago
- use afl to fuzz swift program☆24Updated 7 years ago
- iOS 11.3.1 exploit☆47Updated 6 years ago