jsherman212 / ktrwLinks
An iOS kernel debugger based on a KTRR bypass for A11 iPhones; works with LLDB and IDA Pro.
☆56Updated 4 years ago
Alternatives and similar repositories for ktrw
Users that are interested in ktrw are comparing it to the libraries listed below
Sorting:
- IDA loader for SEP firmware with dyld cache support.☆58Updated 11 months ago
- Apple SEP reverse☆53Updated 5 years ago
- xnu_gym is a pongoOS module that patches XNU to reintroduce previously known and patched vulnerabilities. This is an easy way to practice…☆57Updated 4 years ago
- Fork of PongoOS which can be run in QEMU☆67Updated 4 years ago
- An IDA Toolkit for analyzing iOS kernelcaches.☆111Updated 2 months ago
- IDA loader to help with SEPROM reverse engineering.☆34Updated 7 months ago
- Mapping physical memory to user space (EL0) on iOS.☆74Updated 2 years ago
- Experimentation environment for checkm8-vulnerable devices☆54Updated last year
- An assistant for BinDiff☆26Updated 2 years ago
- My BinaryNinja toolkit I use for iOS centric RE || Prerelease!☆45Updated last year
- Unstripped iOS kernel extensions and more. More coming soon.☆59Updated 5 years ago
- Interact with trustcaches☆42Updated 2 years ago
- IDA loader for Apple's 64 bits iBoot, SecureROM and AVPBooter☆155Updated 9 months ago
- Apple's XNU automatically updated live.☆26Updated 4 years ago
- xnu build script☆71Updated last year
- Tool to patch the ASLR slide generation in the kernel to disable user-land ASLR on 32-bit iOS☆33Updated 4 years ago
- IDA plugin to find code cross references to virtual functions using PAC codes☆145Updated 3 years ago
- Binary Ninja loader for 64 bits Apple SEPROMs☆54Updated 2 weeks ago
- AEA metadata dumper☆46Updated 2 months ago
- DeviceTree☆80Updated 9 months ago
- Demo exploit code for CVE-2020-27904, a tfp0 bug.☆66Updated 4 years ago
- XPC sniffer using LLDB☆46Updated 10 months ago
- 32/64 bit SecureROM/iBoot loader for IDA Pro. Also supports loading and decrypting encrypted .im4ps within IDA.☆74Updated 3 years ago
- Binary View plugin for reverse engineering iBoot like binaries with Binary Ninja☆55Updated last year
- A tool to pull C++ object names from kernel memory☆16Updated 3 years ago
- Objective-C runtime tracing tool☆41Updated last year
- Tracing of iOS/macOS binaries using HW single step and Frida DBI☆83Updated 7 months ago
- experimental iOS debugger☆29Updated 5 years ago
- A tool to parse Apple's binary device tree format.☆56Updated 5 years ago
- call functions in a remote process using Mach API☆105Updated 4 months ago