nick-botticelli / vma2pwnLinks
Scripts + patches to pwn vma2 (Virtualization.framework) macOS virtual machines
☆57Updated last year
Alternatives and similar repositories for vma2pwn
Users that are interested in vma2pwn are comparing it to the libraries listed below
Sorting:
- tart, but with custom AVPBooter ROM, serial I/O, DFU mode, GDB debugging (port 8000), and panic halting. See help menus for `tart create`…☆45Updated last year
- Extract iOS firmware keys using on-device AES engine☆38Updated 2 years ago
- Ghidra CI/CD to build and host a universal macOS Ghidra.app☆40Updated 2 months ago
- Insecurity as an IOService☆89Updated 2 months ago
- Patch the iBoot64 with generic patches.☆52Updated last year
- An open source implemention of Apple's `launchctl(1)`☆82Updated 5 months ago
- Interact with trustcaches☆41Updated 2 years ago
- CLI frontend for com.apple.decmpfs / AppleFSCompression.framework☆31Updated 2 years ago
- A tool to parse Apple's binary device tree format.☆56Updated 5 years ago
- Boot arbitrary iBoot via ipwndfu's custom protocol on some cursed platforms and more☆56Updated 5 months ago
- macOS Sandbox Profile Language (SBPL) Interpreter☆53Updated 5 years ago
- `ipsw` symbolication signatures☆62Updated last week
- Tool for conversion between iBoot images and PNG.☆38Updated last year
- Another Virtualization.framework demo project, with focus to iBoot (WIP)☆168Updated last year
- 32/64 bit SecureROM/iBoot loader for IDA Pro. Also supports loading and decrypting encrypted .im4ps within IDA.☆74Updated 3 years ago
- Translate and patch arm64e binaries or macOS arm64 binaries to run on an arm64 iPhone at runtime.☆55Updated 3 years ago
- Set of tools to interact with various aspects of Kanzi probe and its derivatives☆46Updated 9 months ago
- XPC sniffer using LLDB☆44Updated 8 months ago
- Standalone SSH and CLI tools cryptex for the Apple SRD☆16Updated last year
- When dlsym isn't enough☆18Updated last year
- AEA metadata dumper☆46Updated last month
- Guessed headers of non-public Apple SDK☆42Updated 5 months ago
- Experimenting with the Launch Services system on iOS and macOS☆36Updated 7 months ago
- Extract Binaries from Apple's DYLD Shared Cache☆19Updated last year
- Apple Silicon NOR dumper☆48Updated last year
- DeviceTree☆80Updated 8 months ago
- slightly modified version of jonathan levins lsdtrip bin available at http://newosxbook.com/tools/lsdtrip.html☆19Updated last year
- ☆22Updated last year
- Transform any ARM macho executable to a dynamic library☆42Updated 3 months ago
- App sandbox escapes for macOS☆30Updated 5 years ago