Alternatives and similar repositories for SneakyShot

Users that are interested in SneakyShot are comparing it to the libraries listed below

• markie-dev / desc_race_A15
  CVE-2021-30955 iOS 15.1.1 POC for 6GB RAM devices (A14-A15)
  ☆48Updated 3 years ago
• m1stadev / Criptam
  iOS firmware key decrypter
  ☆45Updated 2 years ago
• tihmstar / desc_race-fun_public
  ☆67Updated 3 years ago
• chr1s0x1 / Elysian
  JB ETA????
  ☆28Updated 4 years ago
• 0x7ff / dimentio
  Tool for getting and setting nonce without triggering KPP/KTRR/PAC.
  ☆114Updated 2 years ago
• haiyuidesu / iBoot64Finder
  Find some iBoot functions in an iBoot64.
  ☆40Updated 4 years ago
• NyaMisty / KernBypass-Public
  chroot based kernel level jailbreak detection bypass.
  ☆52Updated 4 years ago
• CRKatri / trustcache
  Interact with trustcaches
  ☆41Updated 2 years ago
• dora2ios / CPBypass-public
  File detection bypass for iOS
  ☆19Updated 4 years ago
• EthanArbuckle / dopamine-jb-detection
  ☆21Updated 2 years ago
• opa334 / libSandy
  Securely extend the sandbox of system processes and user applications
  ☆96Updated last year
• jsherman212 / svc_stalker
  iOS system call/Mach trap interception for checkra1n'able devices
  ☆157Updated 4 years ago
• EthanArbuckle / objfind
  Search running processes on iOS for instances of a given objc class.
  ☆54Updated 9 months ago
• jsherman212 / iosdbg
  experimental iOS debugger
  ☆30Updated 5 years ago
• Cryptiiiic / hookra1n
  A custom shellcode hook for checkra1n 0.1337 written in c!
  ☆35Updated last year
• nicolas17 / ipsw_keys
  Extract iOS firmware keys using on-device AES engine
  ☆41Updated 3 years ago
• lechium / iPhone_OS_17.0_21A328
  Private headers & entitlements for daemons, frameworks, applications private frameworks and more for iOS 17.0 21A328
  ☆24Updated 2 years ago
• opa334 / xnuspy_syscall_logger
  Log all syscalls executed by a process (iOS / checkra1n / xnuspy)
  ☆69Updated 3 years ago
• tihmstar / libpatchfinder
  A arm offsetfinder. It finds offsets, patches, parses Mach-O and even supports IMG4/IMG3
  ☆148Updated 4 months ago
• alfiecg24 / coretrust_cli
  A tool to call CoreTrust evaluation from userland
  ☆20Updated last year
• NyaMisty / xnu_bypass
  ☆49Updated 4 years ago
• 0cyn / iBoot-IDA
  32/64 bit SecureROM/iBoot loader for IDA Pro. Also supports loading and decrypting encrypted .im4ps within IDA.
  ☆73Updated 3 years ago
• 0x7ff / golb
  Mapping physical memory to user space (EL0) on iOS.
  ☆73Updated 2 years ago
• NyaMisty / libimobiledevice-nightly-pkg
  Auto updated libimobiledevice Github Actions package
  ☆14Updated this week
• a1exdandy / checkwatch
  checkm8 for s7002
  ☆26Updated 5 years ago
• haiyuidesu / iBoot64Patcher
  Patch the iBoot64 with generic patches.
  ☆52Updated last year
• jakeajames / sock_port
  iOS 10.0-12.2 tfp0
  ☆132Updated 6 years ago
• jevinskie / dylibify
  Transform any ARM macho executable to a dynamic library
  ☆42Updated 7 months ago
• opa334 / sandbox_extension_generator
  iOS 15.0 - 15.3.1 sandbox escape technique using kernel read/write primitives
  ☆131Updated 3 years ago
• Siguza / libkrw
  Lib kernel r/w
  ☆189Updated 3 years ago