Alternatives and similar repositories for SneakyShot:

Users that are interested in SneakyShot are comparing it to the libraries listed below

• markie-dev / desc_race_A15
  CVE-2021-30955 iOS 15.1.1 POC for 6GB RAM devices (A14-A15)
  ☆48Updated 3 years ago
• haiyuidesu / iBoot64Finder
  Find some iBoot functions in an iBoot64.
  ☆41Updated 4 years ago
• akusio / MiniRootFileManager15
  iOS15.0-15.1 arm64e only
  ☆49Updated 2 years ago
• tihmstar / desc_race-fun_public
  ☆68Updated 3 years ago
• 0x7ff / dimentio
  Tool for getting and setting nonce without triggering KPP/KTRR/PAC.
  ☆114Updated 2 years ago
• tihmstar / libpatchfinder
  A arm offsetfinder. It finds offsets, patches, parses Mach-O and even supports IMG4/IMG3
  ☆146Updated 8 months ago
• EthanArbuckle / objfind
  Search running processes on iOS for instances of a given objc class.
  ☆47Updated 3 months ago
• NyaMisty / KernBypass-Public
  chroot based kernel level jailbreak detection bypass.
  ☆51Updated 3 years ago
• opa334 / libSandy
  Securely extend the sandbox of system processes and user applications
  ☆89Updated 8 months ago
• m1stadev / Criptam
  iOS firmware key decrypter
  ☆45Updated last year
• chr1s0x1 / Elysian
  JB ETA????
  ☆29Updated 4 years ago
• EthanArbuckle / TweakInspect
  Automated analysis of iOS jailbreak tweaks
  ☆83Updated 2 weeks ago
• dora2ios / CPBypass-public
  File detection bypass for iOS
  ☆19Updated 4 years ago
• NyaMisty / xnu_bypass
  ☆47Updated 3 years ago
• opa334 / xnuspy_syscall_logger
  Log all syscalls executed by a process (iOS / checkra1n / xnuspy)
  ☆63Updated 2 years ago
• Muirey03 / MessageLog
  A simple library to log all objc_msgSend calls
  ☆17Updated 4 years ago
• Lessica / fouldecrypt
  A lightweight and simpling iOS binary decryptor
  ☆34Updated last year
• ichitaso / vnodebypass
  vnodebypass using hidePath of jelbrekLib(Jakeashacks) and maphys (0x7ff) + special thanks to akusio
  ☆71Updated 2 years ago
• 0cyn / iBoot-IDA
  32/64 bit SecureROM/iBoot loader for IDA Pro. Also supports loading and decrypting encrypted .im4ps within IDA.
  ☆74Updated 3 years ago
• roothide / XcodeAnyDebug
  ☆19Updated 6 months ago
• 0x7ff / golb
  Mapping physical memory to user space (EL0) on iOS.
  ☆72Updated 2 years ago
• jjolano / HookKit
  An iOS developer framework for unified hooking methods.
  ☆42Updated last year
• opa334 / litehook
  Lightweight *OS hooking library with no dependencies except for libsystem
  ☆74Updated last month
• chr1s0x1 / pwnedOS11
  WIP iOS 11 - 12.2 & 13b1,b2 Safari Jailbreak
  ☆44Updated 4 years ago
• jsherman212 / svc_stalker
  iOS system call/Mach trap interception for checkra1n'able devices
  ☆155Updated 3 years ago
• coolstar / libhooker-configurator
  Configuration Utility for libhooker
  ☆46Updated last year
• sbingner / ldid
  Unofficial fork from saurik git repository git://git.saurik.com/ldid.git
  ☆54Updated 3 years ago
• opa334 / libundirect
  Patchfinder and rebinder for objc_direct methods
  ☆54Updated 11 months ago
• coolstar / libhooker-basebins
  Base Binaries for libhooker
  ☆25Updated 11 months ago
• 0x7ff / eclipsa
  Checkm8 PoC tool for A8, A8X and A9 devices that allows you to boot untrusted images (macOS only, credits: checkra1n team).
  ☆88Updated 4 years ago