Alternatives and similar repositories for SneakyShot

Users that are interested in SneakyShot are comparing it to the libraries listed below

• markie-dev / desc_race_A15
  CVE-2021-30955 iOS 15.1.1 POC for 6GB RAM devices (A14-A15)
  ☆48Updated 3 years ago
• tihmstar / desc_race-fun_public
  ☆67Updated 3 years ago
• m1stadev / Criptam
  iOS firmware key decrypter
  ☆45Updated 2 years ago
• 0x7ff / dimentio
  Tool for getting and setting nonce without triggering KPP/KTRR/PAC.
  ☆113Updated 2 years ago
• haiyuidesu / iBoot64Finder
  Find some iBoot functions in an iBoot64.
  ☆40Updated 4 years ago
• NyaMisty / KernBypass-Public
  chroot based kernel level jailbreak detection bypass.
  ☆52Updated 4 years ago
• 0x7ff / golb
  Mapping physical memory to user space (EL0) on iOS.
  ☆73Updated 2 years ago
• chr1s0x1 / Elysian
  JB ETA????
  ☆28Updated 4 years ago
• opa334 / xnuspy_syscall_logger
  Log all syscalls executed by a process (iOS / checkra1n / xnuspy)
  ☆70Updated 3 years ago
• EthanArbuckle / objfind
  Search running processes on iOS for instances of a given objc class.
  ☆54Updated 10 months ago
• coolstar / libhooker-basebins
  Base Binaries for libhooker
  ☆22Updated last year
• EthanArbuckle / dopamine-jb-detection
  ☆21Updated 2 years ago
• dora2ios / CPBypass-public
  File detection bypass for iOS
  ☆19Updated 4 years ago
• nicolas17 / ipsw_keys
  Extract iOS firmware keys using on-device AES engine
  ☆40Updated 3 years ago
• CRKatri / trustcache
  Interact with trustcaches
  ☆41Updated 2 years ago
• NyaMisty / xnu_bypass
  ☆49Updated 4 years ago
• jsherman212 / svc_stalker
  iOS system call/Mach trap interception for checkra1n'able devices
  ☆158Updated 4 years ago
• jakeajames / sock_port
  iOS 10.0-12.2 tfp0
  ☆132Updated 6 years ago
• Cryptiiiic / hookra1n
  A custom shellcode hook for checkra1n 0.1337 written in c!
  ☆34Updated last year
• tihmstar / libpatchfinder
  A arm offsetfinder. It finds offsets, patches, parses Mach-O and even supports IMG4/IMG3
  ☆149Updated 5 months ago
• opa334 / libSandy
  Securely extend the sandbox of system processes and user applications
  ☆97Updated last year
• opa334 / sandbox_extension_generator
  iOS 15.0 - 15.3.1 sandbox escape technique using kernel read/write primitives
  ☆132Updated 3 years ago
• sbingner / ldid
  Unofficial fork from saurik git repository git://git.saurik.com/ldid.git
  ☆54Updated 3 years ago
• 0cyn / iBoot-IDA
  32/64 bit SecureROM/iBoot loader for IDA Pro. Also supports loading and decrypting encrypted .im4ps within IDA.
  ☆73Updated 3 years ago
• haiyuidesu / sephelper
  IDA loader to help with SEPROM reverse engineering.
  ☆35Updated 2 months ago
• lechium / iPhone_OS_17.0_21A328
  Private headers & entitlements for daemons, frameworks, applications private frameworks and more for iOS 17.0 21A328
  ☆24Updated 2 years ago
• HearseDev / logos-format
  ☆24Updated 3 years ago
• jsherman212 / iosdbg
  experimental iOS debugger
  ☆30Updated 5 years ago
• JakeBlair420 / Spice
  Spice - an unfinished iOS 11 untether
  ☆113Updated 4 years ago
• Muirey03 / MessageLog
  A simple library to log all objc_msgSend calls
  ☆19Updated 5 years ago