Alternatives and similar repositories for iomfb-exploit

Users that are interested in iomfb-exploit are comparing it to the libraries listed below

• opa334 / sandbox_extension_generator
  iOS 15.0 - 15.3.1 sandbox escape technique using kernel read/write primitives
  ☆132Updated 3 years ago
• tihmstar / desc_race-fun_public
  ☆67Updated 3 years ago
• Muirey03 / CVE-2022-42864
  Proof-of-concept for the CVE-2022-42864 IOHIDFamily race condition
  ☆66Updated 2 years ago
• tjkr0wn / xnu_gym
  xnu_gym is a pongoOS module that patches XNU to reintroduce previously known and patched vulnerabilities. This is an easy way to practice…
  ☆56Updated 4 years ago
• 0x36 / oob_events
  kernel exploit for Apple iOS 13.X
  ☆186Updated 4 years ago
• zhuowei / CoreTrustDemo
  Proof-of-concept for CVE-2022-26766 on macOS 12.3.1
  ☆85Updated 3 years ago
• potmdehex / multicast_bytecopy
  kernel r/w exploit for iOS 15.0 - 15.1.1
  ☆257Updated 3 years ago
• synacktiv / CVE-2021-1782
  ☆39Updated 4 years ago
• saaramar / IOMFB_integer_overflow_poc
  ☆149Updated 4 years ago
• saaramar / IOMobileFrameBuffer_LPE_POC
  ☆55Updated 4 years ago
• 0x7ff / dimentio
  Tool for getting and setting nonce without triggering KPP/KTRR/PAC.
  ☆114Updated 2 years ago
• Siguza / libkrw
  Lib kernel r/w
  ☆189Updated 3 years ago
• Proteas / a7-sep-bug
  a7 sep bug
  ☆54Updated 2 years ago
• 0cyn / iBoot-IDA
  32/64 bit SecureROM/iBoot loader for IDA Pro. Also supports loading and decrypting encrypted .im4ps within IDA.
  ☆73Updated 3 years ago
• matteyeux / ida-iboot-loader
  IDA loader for Apple's 64 bits iBoot, SecureROM and AVPBooter
  ☆154Updated 11 months ago
• opa334 / Presentations
  ☆81Updated 5 months ago
• chr1s0x1 / pwnedOS11
  WIP iOS 11 - 12.2 & 13b1,b2 Safari Jailbreak
  ☆43Updated 5 years ago
• 0x7ff / golb
  Mapping physical memory to user space (EL0) on iOS.
  ☆73Updated 2 years ago
• JakeBlair420 / Spice
  Spice - an unfinished iOS 11 untether
  ☆114Updated 4 years ago
• jsherman212 / ktrw
  An iOS kernel debugger based on a KTRR bypass for A11 iPhones; works with LLDB and IDA Pro.
  ☆58Updated 4 years ago
• matteyeux / seprom-loader
  Binary Ninja loader for 64 bits Apple SEPROMs
  ☆57Updated last month
• jakeajames / time_waste
  iOS 12.0-13.3 tfp0
  ☆153Updated 4 years ago
• pattern-f / xattr-oob-swap
  Demo exploit code for CVE-2020-27904, a tfp0 bug.
  ☆66Updated 4 years ago
• xerub / acorn
  untethered+unsandboxed code execution in iOS 11
  ☆186Updated 5 years ago
• tihmstar / libpatchfinder
  A arm offsetfinder. It finds offsets, patches, parses Mach-O and even supports IMG4/IMG3
  ☆148Updated 4 months ago
• cellebrite-labs / ida_kernelcache
  An IDA Toolkit for analyzing iOS kernelcaches.
  ☆108Updated 5 months ago
• felix-pb / remote_pocs
  Some old unexploited remote kernel memory corruption PoCs
  ☆25Updated last year
• ChiChou / ios-debug.py
  Shortcut to automate your iproxy, debugserver, lldb workflow
  ☆40Updated 11 months ago
• citruz / pongoOS-QEMU
  Fork of PongoOS which can be run in QEMU
  ☆69Updated 4 years ago
• haiyuidesu / sephelper
  IDA loader to help with SEPROM reverse engineering.
  ☆35Updated 2 months ago