matteyeux / ida-iboot-loaderLinks
IDA loader for Apple's 64 bits iBoot, SecureROM and AVPBooter
☆155Updated 9 months ago
Alternatives and similar repositories for ida-iboot-loader
Users that are interested in ida-iboot-loader are comparing it to the libraries listed below
Sorting:
- 32/64 bit SecureROM/iBoot loader for IDA Pro. Also supports loading and decrypting encrypted .im4ps within IDA.☆74Updated 3 years ago
- Binary Ninja loader for 64 bits Apple SEPROMs☆54Updated 2 weeks ago
- Lib kernel r/w☆189Updated 3 years ago
- iBoot/SEPOS decryption kit for JTAGgable iOS device prototypes☆111Updated 5 months ago
- iOS 15.0 - 15.3.1 sandbox escape technique using kernel read/write primitives☆130Updated 3 years ago
- A arm offsetfinder. It finds offsets, patches, parses Mach-O and even supports IMG4/IMG3☆149Updated 2 months ago
- Fork of PongoOS which can be run in QEMU☆67Updated 4 years ago
- 64-bit iOS boot image patcher written in C☆146Updated 2 years ago
- xnu_gym is a pongoOS module that patches XNU to reintroduce previously known and patched vulnerabilities. This is an easy way to practice…☆57Updated 4 years ago
- Tool for getting and setting nonce without triggering KPP/KTRR/PAC.☆115Updated 2 years ago
- Exploit for CVE-2021-30807☆130Updated 3 years ago
- Interact with trustcaches☆42Updated 2 years ago
- a7 sep bug☆54Updated last year
- Insecurity as an IOService☆90Updated 4 months ago
- Patch the iBoot64 with generic patches.☆53Updated last year
- An iOS kernel debugger based on a KTRR bypass for A11 iPhones; works with LLDB and IDA Pro.☆56Updated 4 years ago
- Mapping physical memory to user space (EL0) on iOS.☆74Updated 2 years ago
- Another Virtualization.framework demo project, with focus to iBoot (WIP)☆172Updated last year
- ☆67Updated 3 years ago
- Reversing the Apple sandbox☆145Updated 9 months ago
- A tool to download and decrypt a 64 bits iOS firmware images written in Rust☆45Updated last year
- Experimentation environment for checkm8-vulnerable devices☆54Updated last year
- DeviceTree☆80Updated 9 months ago
- iOS system call/Mach trap interception for checkra1n'able devices☆157Updated 3 years ago
- AEA metadata dumper☆46Updated 2 months ago
- Tool to decrypt 64 bits iOS firmware images (iBoot/LLB/iBSS/iBEC).☆182Updated 2 years ago
- IDA loader for SEP firmware with dyld cache support.☆58Updated 11 months ago
- An IDA Toolkit for analyzing iOS kernelcaches.☆111Updated 2 months ago
- Tool to patch the ASLR slide generation in the kernel to disable user-land ASLR on 32-bit iOS☆33Updated 4 years ago
- A Python library/CLI tool for parsing Apple's Image4 format.☆55Updated last week