mattshockl / CVE-2020-9934
CVE-2020–9934 POC
☆21Updated 4 years ago
Alternatives and similar repositories for CVE-2020-9934:
Users that are interested in CVE-2020-9934 are comparing it to the libraries listed below
- Utility to manipulate codesigned application in Mac OS X. Demonstrate the use of csops system call.☆75Updated 11 months ago
- A tool to find gadgets in the iOS kernelcache.☆33Updated 6 years ago
- Swift implementation of in-memory Mach-O loading on macOS☆63Updated 2 years ago
- Hopper plugin to analyze ObjC runtime structures in the dyld_shared_cache☆24Updated 4 years ago
- Discover which process execute a hunted binary inside macOS☆24Updated 3 years ago
- ☆29Updated 5 months ago
- Sniffing on port messages☆25Updated 8 years ago
- My collection of PoCs☆26Updated last year
- ☆14Updated 6 years ago
- Enumerate running processes using com.apple.CodeSigningHelper☆13Updated 11 months ago
- A collection of CVE POC code☆11Updated 5 years ago
- Use "Full Disk Access" permissions to read the contents of TCC.db and display it in human-readable format☆39Updated 3 years ago
- CVE-2020-9992 - A design flaw in MobileDevice.framework/Xcode and iOS/iPadOS/tvOS Development Tools allows an attacker in the same networ…☆66Updated 4 years ago
- App sandbox escapes for macOS☆28Updated 4 years ago
- POC for CVE-2018-4327☆41Updated 6 years ago
- PCIDriverKit proof-of-concept for CVE-2022-26763☆38Updated 2 years ago
- Inject a DyLib to an existing Mach-O file☆23Updated 9 years ago
- SnatchBox (CVE-2020-27935) is a sandbox escape vulnerability and exploit affecting macOS up to version 10.15.x☆30Updated 4 years ago
- Grab functions from radare2☆10Updated 8 years ago
- A RootKit for macOS that can perform kernel read/write, hook kernel and userspace functions, set custom conditional breakpoints, etc☆23Updated 2 years ago
- arm64 and arm64e dylib injector☆31Updated last year
- ☆53Updated 3 years ago
- Improved version of David Elliott's SerialKDPProxy☆32Updated 5 years ago
- Accompanying code for blog post "Mapping iOS Persistence Attack Surface using Corellium"☆10Updated 2 years ago
- SandBox-Dumper makes use of multiple private libraries to provide exact locations of the application sandbox, application bundle and some…☆54Updated 3 years ago
- Radare2 plugin to parse modern iOS 64-bit kernel caches☆29Updated 6 years ago
- macOS codesigning translocation vulnerability.☆42Updated 3 years ago
- A plugin for Binary Ninja containing tools for iOS reversing☆29Updated 7 years ago
- Enabled Web Inspector for all iOS apps☆50Updated 2 years ago
- Code lifting for executing a visionOS library os macOS using QBDL and QBDI☆15Updated 5 months ago