Alternatives and similar repositories for sandblaster:

Users that are interested in sandblaster are comparing it to the libraries listed below

• bazad / ida_kernelcache
  An IDA Toolkit for analyzing iOS kernelcaches.
  ☆287Updated 4 years ago
• bazad / blanket
  CVE-2018-4280: Mach port replacement vulnerability in launchd on iOS 11.2.6 leading to sandbox escape, privilege escalation, and codesign…
  ☆253Updated 6 years ago
• Siguza / iometa
  arm64 IOKit class dumper
  ☆267Updated 2 months ago
• bazad / memctl
  An iOS kernel introspection tool.
  ☆253Updated 5 years ago
• 0x36 / ghidra_kernelcache
  a Ghidra framework for iOS kernelcache reverse engineering
  ☆348Updated 2 years ago
• oleavr / ios-inject-custom
  Example showing how to use Frida for standalone injection of a custom payload
  ☆163Updated 4 years ago
• Siguza / libkrw
  Lib kernel r/w
  ☆191Updated 3 years ago
• xerub / acorn
  untethered+unsandboxed code execution in iOS 11
  ☆186Updated 5 years ago
• argp / iBoot64helper
  IDAPython loader to help with AArch64 iBoot, iBEC, and SecureROM reverse engineering
  ☆260Updated 3 years ago
• 0x36 / powend
  powerd exploit : Sandbox escape to root for Apple iOS < 12.2 on A11 devices
  ☆109Updated 5 years ago
• cellebrite-labs / ida_kernelcache
  An IDA Toolkit for analyzing iOS kernelcaches.
  ☆107Updated last year
• bazad / threadexec
  A library to execute code in the context of other processes on iOS 11.
  ☆82Updated 6 years ago
• lilang-wu / p-joker
  p-joker -- iOS/MacOS kernelcache/kexts analysis tool
  ☆107Updated 4 years ago
• Siguza / ios-kern-utils
  iOS Kernel utilities
  ☆243Updated 6 years ago
• b1n4r1b01 / n-days
  ☆185Updated 2 years ago
• DanyL / lockdownd_playground
  Lockdown related research, tools and POCs.
  ☆91Updated 5 years ago
• ReverseApple / gxpc
  Sniff XPC communication using Frida and Go
  ☆130Updated 3 weeks ago
• Proteas / unstripped-ios-kernels
  Unstripped iOS Kernels
  ☆218Updated 5 years ago
• xerub / idastuff
  IDA Pro/Hexrays plugins
  ☆132Updated 6 years ago
• galli-leo / emmutaler
  A set of tools for fuzzing SecureROM. Managed to find and trigger checkm8.
  ☆160Updated 3 years ago
• cellebrite-labs / PacXplorer
  IDA plugin to find code cross references to virtual functions using PAC codes
  ☆141Updated 3 years ago
• NyanSatan / Virtual-iBoot-Fun
  Another Virtualization.framework demo project, with focus to iBoot (WIP)
  ☆164Updated last year
• jakeajames / jelbrekLib
  Give me tfp0, I give you jelbrek
  ☆262Updated 4 years ago
• Siguza / iokit-utils
  Dev tools for probing IOKit
  ☆200Updated last year
• 0x36 / oob_events
  kernel exploit for Apple iOS 13.X
  ☆185Updated 4 years ago
• FSecureLABS / OSXFuzz
  macOS Kernel Fuzzer
  ☆259Updated 7 years ago
• Siguza / APRR
  Apple hardware secrets
  ☆115Updated 2 years ago
• jsherman212 / ktrw
  An iOS kernel debugger based on a KTRR bypass for A11 iPhones; works with LLDB and IDA Pro.
  ☆57Updated 3 years ago
• jsherman212 / svc_stalker
  iOS system call/Mach trap interception for checkra1n'able devices
  ☆153Updated 3 years ago
• malus-security / iextractor
  Automate extraction from iOS firmware files (.ipsw)
  ☆201Updated 2 weeks ago