Alternatives and similar repositories for vma2pwn

Users that are interested in vma2pwn are comparing it to the libraries listed below

• nick-botticelli / super-tart
  tart, but with custom AVPBooter ROM, serial I/O, DFU mode, GDB debugging (port 8000), and panic halting. See help menus for `tart create`…
  ☆51Updated 2 years ago
• Torrekie / apple_internal_sdk
  Guessed headers of non-public Apple SDK
  ☆52Updated 4 months ago
• ProcursusTeam / launchctl
  An open source implemention of Apple's `launchctl(1)`
  ☆86Updated 2 months ago
• SongXiaoXi / Reductant
  Translate and patch arm64e binaries or macOS arm64 binaries to run on an arm64 iPhone at runtime.
  ☆77Updated 3 years ago
• Siguza / fscmp
  CLI frontend for com.apple.decmpfs / AppleFSCompression.framework
  ☆32Updated 3 years ago
• NyanSatan / Virtual-iBoot-Fun
  Another Virtualization.framework demo project, with focus to iBoot (WIP)
  ☆173Updated 2 years ago
• JJTech0130 / launchservices
  Experimenting with the Launch Services system on iOS and macOS
  ☆50Updated last year
• 0xilis / libNeoAppleArchive
  Cross-compat library for parsing Apple Archive + Apple Encrypted Archive (.aar/.yaa/.aea).
  ☆33Updated 5 months ago
• NyanSatan / kanzitools
  Set of tools to interact with various aspects of Kanzi probe and its derivatives
  ☆52Updated 2 months ago
• zhuowei / HvDecompile
  Decompiling macOS Hypervisor.framework by hand
  ☆132Updated 3 years ago
• blacktop / ghidra-app
  Ghidra CI/CD to build and host a universal macOS Ghidra.app
  ☆41Updated 3 months ago
• zhuowei / iOS-run-macOS-executables-tools
  Failed experiment for running command line macOS tools on jailbroken iOS. There's nothing useful here.
  ☆62Updated 4 years ago
• Siguza / aea1
  AEA metadata dumper
  ☆48Updated 6 months ago
• NyanSatan / checkm8_bootkit
  Boot arbitrary iBoot via ipwndfu's custom protocol on some cursed platforms and more
  ☆63Updated 2 months ago
• Siguza / IOKernelRW
  Insecurity as an IOService
  ☆94Updated 8 months ago
• osy / AMFIExemption
  Grant private entitlements to OSX apps
  ☆110Updated 5 years ago
• jevinskie / dylibify
  Transform any ARM macho executable to a dynamic library
  ☆42Updated 8 months ago
• haiyuidesu / iBoot64Patcher
  Patch the iBoot64 with generic patches.
  ☆52Updated last year
• Siguza / nordump
  Apple Silicon NOR dumper
  ☆48Updated 2 years ago
• DerekSelander / dsc_symbols
  symbol dumps of iOS shared caches
  ☆34Updated 3 years ago
• bazad / devicetree-parse
  A tool to parse Apple's binary device tree format.
  ☆57Updated 5 years ago
• xsscx / srd
  Welcome to Hoyt's SRD Repo for the Apple Security Research Device. Contribute Code or Open an Issue or Discussion.
  ☆75Updated last year
• DerekSelander / treblehook
  A library that enables dynamically rebinding symbols in Mach-O binaries running on Apple platforms
  ☆37Updated last year
• CRKatri / trustcache
  Interact with trustcaches
  ☆41Updated 2 years ago
• 0cyn / iBoot-IDA
  32/64 bit SecureROM/iBoot loader for IDA Pro. Also supports loading and decrypting encrypted .im4ps within IDA.
  ☆73Updated 3 years ago
• saagarjha / macOSSandboxInitializationBypass
  App sandbox escapes for macOS
  ☆30Updated 5 years ago
• xerub / busybox-apple
  A working busybox for iOS and macOS
  ☆31Updated 3 years ago
• Cryptiiiic / hookra1n
  A custom shellcode hook for checkra1n 0.1337 written in c!
  ☆35Updated last year
• jonpalmisc / srdsh
  Standalone SSH and CLI tools cryptex for the Apple SRD
  ☆18Updated last year
• NyanSatan / Anya
  iBoot/SEPOS decryption kit for JTAGgable iOS device prototypes
  ☆131Updated 2 months ago