nick-botticelli / vma2pwnLinks
Scripts + patches to pwn vma2 (Virtualization.framework) macOS virtual machines
☆59Updated last year
Alternatives and similar repositories for vma2pwn
Users that are interested in vma2pwn are comparing it to the libraries listed below
Sorting:
- tart, but with custom AVPBooter ROM, serial I/O, DFU mode, GDB debugging (port 8000), and panic halting. See help menus for `tart create`…☆50Updated 2 years ago
- Guessed headers of non-public Apple SDK☆48Updated 2 months ago
- Translate and patch arm64e binaries or macOS arm64 binaries to run on an arm64 iPhone at runtime.☆74Updated 3 years ago
- Grant private entitlements to OSX apps☆109Updated 5 years ago
- An open source implemention of Apple's `launchctl(1)`☆84Updated last month
- Another Virtualization.framework demo project, with focus to iBoot (WIP)☆173Updated last year
- Ghidra CI/CD to build and host a universal macOS Ghidra.app☆41Updated last month
- AEA metadata dumper☆48Updated 5 months ago
- Set of tools to interact with various aspects of Kanzi probe and its derivatives☆49Updated last month
- A tool to parse Apple's binary device tree format.☆56Updated 5 years ago
- Insecurity as an IOService☆90Updated 7 months ago
- Apple Silicon NOR dumper☆48Updated last year
- Cross-compat library for parsing Apple Archive + Apple Encrypted Archive (.aar/.yaa/.aea).☆32Updated 4 months ago
- App sandbox escapes for macOS☆30Updated 5 years ago
- Decompiling macOS Hypervisor.framework by hand☆129Updated 3 years ago
- Failed experiment for running command line macOS tools on jailbroken iOS. There's nothing useful here.☆58Updated 4 years ago
- *uncaches your dyld*☆96Updated 3 months ago
- CLI frontend for com.apple.decmpfs / AppleFSCompression.framework☆32Updated 3 years ago
- Experimenting with the Launch Services system on iOS and macOS☆46Updated 11 months ago
- macOS Sandbox Profile Language (SBPL) Interpreter☆55Updated 5 years ago
- Boot arbitrary iBoot via ipwndfu's custom protocol on some cursed platforms and more☆59Updated last month
- A working busybox for iOS and macOS☆32Updated 2 years ago
- Welcome to Hoyt's SRD Repo for the Apple Security Research Device. Contribute Code or Open an Issue or Discussion.☆75Updated last year
- Standalone SSH and CLI tools cryptex for the Apple SRD☆17Updated last year
- ☆15Updated 4 years ago
- iBoot/SEPOS decryption kit for JTAGgable iOS device prototypes☆128Updated last month
- Patch the iBoot64 with generic patches.☆52Updated last year
- Interact with trustcaches☆41Updated 2 years ago
- Transform any ARM macho executable to a dynamic library☆77Updated 3 years ago
- symbol dumps of iOS shared caches☆33Updated 3 years ago