kpwn/tpwn

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/kpwn/tpwn)

kpwn / tpwn

xnu local privilege escalation via cve-2015-???? & cve-2015-???? for 10.10.5, 0day at the time | poc or gtfo

☆395

Alternatives and similar repositories for tpwn

Users that are interested in tpwn are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

kpwn / NULLGuard
View on GitHub
kext kills all 32bit binaries lacking __PAGEZERO (required for exploitation of kernel NULL derefs)
☆114Aug 27, 2015Updated 10 years ago
kpwn / inj
View on GitHub
task_for_pid injection that doesn't suck
☆58Aug 9, 2015Updated 10 years ago
kpwn / vpwn
View on GitHub
xnu local privilege escalation via cve-2015-1140 IOHIDSecurePromptClient injectStringGated heap overflow | poc||gtfo
☆72Mar 20, 2015Updated 11 years ago
kpwn / yalu
View on GitHub
incomplete ios 8.4.1 jailbreak by Kim Jong Cracks (8.4.1 codesign & sandbox bypass w/ LPE to root & untether)
☆386Apr 2, 2017Updated 8 years ago
gdbinit / mach_race
View on GitHub
Exploit code for CVE-2016-1757
☆84Apr 27, 2016Updated 9 years ago
DigitalOcean Gradient AI Platform • Ad
Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
bazad / rootsh
View on GitHub
Local privilege escalation for OS X 10.10.5 via CVE-2016-1828.
☆86May 18, 2016Updated 9 years ago
jndok / stfusip
View on GitHub
System Integrity Protection (SIP) bypass for OSX 10.11.1 - 10.11.2 - 10.11.3
☆144Apr 1, 2016Updated 9 years ago
luismiras / muymacho
View on GitHub
☆48Oct 19, 2015Updated 10 years ago
xerub / macho
View on GitHub
Dealing with Mach-O kexts, vtables and more
☆87Dec 15, 2018Updated 7 years ago
kpwn / xnuexp-toolkit
View on GitHub
xnu exploitation toolkit
☆16Apr 11, 2016Updated 9 years ago
sektioneins / SUIDGuard
View on GitHub
SUIDGuard - a TrustedBSD Kernel Extension that adds mitigations to protect SUID/SGID processes a bit more
☆392Mar 23, 2016Updated 10 years ago
retme7 / CVE-2014-4322_poc
View on GitHub
Gain privileges:system -> root,as a part of https://github.com/retme7/CVE-2014-7911_poc
☆94Jan 27, 2015Updated 11 years ago
kpwn / 935csbypass
View on GitHub
codesign bypass (get out of rop without JIT)
☆152Sep 24, 2016Updated 9 years ago
jndok / iokit-dumper
View on GitHub
OS X tool for dumping IOKit hierarchies in DOT format.
☆46Feb 7, 2016Updated 10 years ago
Virtual machines for every use case on DigitalOcean • Ad
Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
kpwn / 921csbypass
View on GitHub
fun stuff
☆79Mar 26, 2016Updated 10 years ago
saelo / ios-kern-utils
View on GitHub
iOS Kernel utilities
☆164Jun 25, 2015Updated 10 years ago
kpwn / iOSRE
View on GitHub
iOS Reverse Engineering
☆1,175Jun 30, 2018Updated 7 years ago
zhengmin1989 / OS-X-10.11.6-Exp-via-PEGASUS
View on GitHub
Local privilege escalation for OS X 10.11.6 via PEGASUS
☆151Sep 27, 2016Updated 9 years ago
gdbinit / Gatekeerper
View on GitHub
A kernel extension to mitigate Gatekeeper bypasses
☆49Nov 9, 2015Updated 10 years ago
seandroid-analytics / seal
View on GitHub
SEAndroid Analytics Library for live device analysis
☆60Mar 16, 2019Updated 7 years ago
sektioneins / sandbox_toolkit
View on GitHub
Toolkit for binary iOS / OS X sandbox profiles
☆146Nov 2, 2015Updated 10 years ago
k33nteam / win32kescape
View on GitHub
☆14Jun 30, 2015Updated 10 years ago
CiscoCXSecurity / CVE-2015-5119_walkthrough
View on GitHub
Archive from the article CVE-2015-5119 Flash ByteArray UaF: A beginner's walkthrough
☆13Sep 10, 2015Updated 10 years ago
GPU virtual machines on DigitalOcean Gradient AI • Ad
Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
payatu / CVE-2015-6086
View on GitHub
PoC for CVE-2015-6086
☆67Apr 22, 2016Updated 9 years ago
osirislab / Catfish
View on GitHub
Catfish is a tool used ease the process of finding ROP gadgets and creating payloads with them.
☆30Jul 1, 2014Updated 11 years ago
flankerhqd / cve-2015-6612poc-forM
View on GitHub
☆16Nov 16, 2015Updated 10 years ago
SecurityObscurity / cve-2015-0313
View on GitHub
☆21Mar 24, 2015Updated 11 years ago
Antid0teCom / ios-kerneldocs
View on GitHub
Various files helping to better understand the iOS / WatchOS / tvOS kernels
☆105Sep 10, 2017Updated 8 years ago
benjamin-42 / Trident
View on GitHub
32-bit exploit for iOS <9.3.5
☆285Jul 27, 2018Updated 7 years ago
kpwn / phpmess
View on GitHub
exploitation of php use-after-free vulnerabilities on 64 bit systems | poc||gtfo
☆12Apr 8, 2015Updated 10 years ago
sslab-gatech / DrK
View on GitHub
The DrK Attack - Proof of concept
☆348Mar 13, 2022Updated 4 years ago
doadam / ziVA
View on GitHub
An iOS kernel exploit designated to work on all iOS devices <= 10.3.1
☆338Aug 31, 2017Updated 8 years ago
GPU virtual machines on DigitalOcean Gradient AI • Ad
Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
phoenhex / files
View on GitHub
☆522Feb 22, 2020Updated 6 years ago
blankwall / MacHeap
View on GitHub
OS X malloc introspection tool
☆321Oct 14, 2023Updated 2 years ago
4B5F5F4B / Exploits
View on GitHub
☆140Jul 17, 2017Updated 8 years ago
ch0psticks / ROP-without-Return-on-ARM-android-
View on GitHub
reproduce the experiment in the report.
☆28Jan 18, 2015Updated 11 years ago
linhphi9x94 / Exploit_Android_MSM8974
View on GitHub
Exploit Android MSM8974 Chipset
☆14Aug 20, 2015Updated 10 years ago
theori-io / jscript9-typedarray
View on GitHub
Proof-of-Concept exploit for jscript9 bug (MS16-063)
☆50Jun 27, 2016Updated 9 years ago
secmob / CVE-2015-6612
View on GitHub
☆23Nov 16, 2015Updated 10 years ago