matteyeux / ida-iboot-loaderLinks
IDA loader for Apple's 64 bits iBoot, SecureROM and AVPBooter
☆156Updated 9 months ago
Alternatives and similar repositories for ida-iboot-loader
Users that are interested in ida-iboot-loader are comparing it to the libraries listed below
Sorting:
- 32/64 bit SecureROM/iBoot loader for IDA Pro. Also supports loading and decrypting encrypted .im4ps within IDA.☆74Updated 3 years ago
- Fork of PongoOS which can be run in QEMU☆69Updated 4 years ago
- Binary Ninja loader for 64 bits Apple SEPROMs☆54Updated last month
- iBoot/SEPOS decryption kit for JTAGgable iOS device prototypes☆114Updated 6 months ago
- iOS 15.0 - 15.3.1 sandbox escape technique using kernel read/write primitives☆131Updated 3 years ago
- 64-bit iOS boot image patcher written in C☆146Updated 2 years ago
- Insecurity as an IOService☆91Updated 5 months ago
- Experimentation environment for checkm8-vulnerable devices☆54Updated last year
- Mapping physical memory to user space (EL0) on iOS.☆74Updated 2 years ago
- Another Virtualization.framework demo project, with focus to iBoot (WIP)☆172Updated last year
- Tool for getting and setting nonce without triggering KPP/KTRR/PAC.☆115Updated 2 years ago
- A tool to download and decrypt a 64 bits iOS firmware images written in Rust☆45Updated last year
- Reversing the Apple sandbox☆147Updated 9 months ago
- Patch the iBoot64 with generic patches.☆53Updated last year
- Lib kernel r/w☆190Updated 3 years ago
- A arm offsetfinder. It finds offsets, patches, parses Mach-O and even supports IMG4/IMG3☆149Updated 2 months ago
- xnu_gym is a pongoOS module that patches XNU to reintroduce previously known and patched vulnerabilities. This is an easy way to practice…☆57Updated 4 years ago
- a7 sep bug☆54Updated last year
- Interact with trustcaches☆42Updated 2 years ago
- DeviceTree☆80Updated 10 months ago
- Exploit for CVE-2021-30807☆130Updated 3 years ago
- Proof-of-concept for the CVE-2022-42864 IOHIDFamily race condition☆66Updated 2 years ago
- An iOS kernel debugger based on a KTRR bypass for A11 iPhones; works with LLDB and IDA Pro.☆56Updated 4 years ago
- Unstripped iOS kernel extensions and more. More coming soon.☆59Updated 5 years ago
- iOS system call/Mach trap interception for checkra1n'able devices☆157Updated 4 years ago
- Tool to patch the ASLR slide generation in the kernel to disable user-land ASLR on 32-bit iOS☆33Updated 4 years ago
- Tool to decrypt 64 bits iOS firmware images (iBoot/LLB/iBSS/iBEC).☆183Updated 2 years ago
- macOS kext with kernel R/W, kalloc and kcall☆92Updated 2 months ago
- ☆189Updated 4 months ago
- ☆67Updated 3 years ago