malus-security / sandblasterLinks
Reversing the Apple sandbox
☆235Updated 3 months ago
Alternatives and similar repositories for sandblaster
Users that are interested in sandblaster are comparing it to the libraries listed below
Sorting:
- An IDA Toolkit for analyzing iOS kernelcaches.☆295Updated 5 years ago
- CVE-2018-4280: Mach port replacement vulnerability in launchd on iOS 11.2.6 leading to sandbox escape, privilege escalation, and codesign…☆257Updated 6 years ago
- arm64 IOKit class dumper☆278Updated 2 months ago
- IDAPython loader to help with AArch64 iBoot, iBEC, and SecureROM reverse engineering☆261Updated 3 years ago
- powerd exploit : Sandbox escape to root for Apple iOS < 12.2 on A11 devices☆110Updated 6 years ago
- An iOS kernel introspection tool.☆263Updated 5 years ago
- a Ghidra framework for iOS kernelcache reverse engineering☆356Updated 2 years ago
- kernel exploit for Apple iOS 13.X☆186Updated 4 years ago
- Example showing how to use Frida for standalone injection of a custom payload☆166Updated 5 years ago
- Lockdown related research, tools and POCs.☆91Updated 6 years ago
- IDA Pro/Hexrays plugins☆134Updated 6 years ago
- A set of tools for fuzzing SecureROM. Managed to find and trigger checkm8.☆162Updated 3 years ago
- An IDA Toolkit for analyzing iOS kernelcaches.☆111Updated 2 months ago
- Unstripped iOS Kernels☆220Updated 5 years ago
- p-joker -- iOS/MacOS kernelcache/kexts analysis tool☆111Updated 5 years ago
- Dev tools for probing IOKit☆202Updated last year
- A simplistic python tool that assists in automating iOS firmware decryption.☆89Updated 5 years ago
- IDA plugin to find code cross references to virtual functions using PAC codes☆145Updated 3 years ago
- Slides from my conference presentations.☆81Updated 5 years ago
- Another Virtualization.framework demo project, with focus to iBoot (WIP)☆172Updated last year
- A library to execute code in the context of other processes on iOS 11.☆82Updated 7 years ago
- ☆181Updated 4 years ago
- PoC for the iOS 11.4.1 and MacOS 10.13 kernel vulnerability in lio_listio☆77Updated 6 years ago
- A local privilege escalation chain from user to kernel for MacOS < 10.15.5. CVE-2020–9854☆85Updated 4 years ago
- Apple hardware secrets☆117Updated 2 years ago
- iBoot-1145.3 Image3/heap stack RE (+unholy tools)☆81Updated last year
- Automate extraction from iOS firmware files (.ipsw)☆210Updated 5 months ago
- untethered+unsandboxed code execution in iOS 11☆185Updated 5 years ago
- ☆242Updated 3 years ago
- Host your own *OS Entitlement Database☆44Updated last month