iOS 15.0 - 15.3.1 sandbox escape technique using kernel read/write primitives
☆132Jun 10, 2022Updated 3 years ago
Alternatives and similar repositories for sandbox_extension_generator
Users that are interested in sandbox_extension_generator are comparing it to the libraries listed below
Sorting:
- Proof-of-concept and write-up for the CVE-2022-32832 vulnerability patched in iOS 15.6☆96Jul 21, 2022Updated 3 years ago
- Lib kernel r/w☆189Nov 1, 2021Updated 4 years ago
- kernel r/w exploit for iOS 15.0 - 15.1.1☆261Apr 27, 2022Updated 3 years ago
- ☆139Feb 17, 2024Updated 2 years ago
- Exploit for CVE-2021-30807☆132Nov 29, 2021Updated 4 years ago
- My collection of PoCs☆26Nov 9, 2023Updated 2 years ago
- Reversing the Apple sandbox☆168Dec 7, 2025Updated 2 months ago
- Sniff XPC goodies on your iOS device.☆96Nov 14, 2020Updated 5 years ago
- ☆20May 24, 2021Updated 4 years ago
- some research results of sep☆20Apr 9, 2021Updated 4 years ago
- iOS runtime dylib injection tool☆261Jan 8, 2024Updated 2 years ago
- ANE kernel r/w exploit for iOS 15 and macOS 12☆302Nov 20, 2022Updated 3 years ago
- Kernel-based method to take screenshots on iOS, works with encrypted videos.☆60Mar 10, 2021Updated 4 years ago
- iOS 15.1 kernel exploit POC for CVE-2021-30955☆267Mar 1, 2022Updated 4 years ago
- kfd, short for kernel file descriptor, is a project to read and write kernel memory on Apple devices.☆26Aug 24, 2023Updated 2 years ago
- Insecurity as an IOService☆96Mar 25, 2025Updated 11 months ago
- WebKit/JSC CodeQL Databases☆17Dec 15, 2025Updated 2 months ago
- kernel exploit for Apple iOS 13.X☆185Nov 27, 2020Updated 5 years ago
- Plugin for loading MachO kernelcache and dSYM files to Binary Ninja☆40Mar 23, 2025Updated 11 months ago
- Apple Silicon NOR dumper☆49Nov 8, 2023Updated 2 years ago
- CVE-2021-30955 iOS 15.1.1 POC for 6GB RAM devices (A14-A15)☆48Mar 14, 2022Updated 3 years ago
- An IDA Toolkit for analyzing iOS kernelcaches.☆110May 15, 2025Updated 9 months ago
- a Ghidra framework for iOS kernelcache reverse engineering☆363Nov 6, 2022Updated 3 years ago
- KernInfra, a unified kernel operation framework☆57Oct 19, 2021Updated 4 years ago
- Yet another xpc sniffer☆213Feb 15, 2026Updated 2 weeks ago
- Sniff XPC communication using Frida and Go☆156Feb 10, 2026Updated 3 weeks ago
- ☆69Jan 13, 2023Updated 3 years ago
- Untethered + Unsandboxed code execution haxx as root on iOS 14 - iOS 14.8.1.☆166Jan 9, 2024Updated 2 years ago
- Interact with trustcaches☆41Feb 12, 2023Updated 3 years ago
- macOS/ XNU kernel buffer overflow. Introduced in macOS 14.0 (xnu-10002.1.13), fixed in macOS 14.5 (xnu-10063.121.3)☆48Jul 18, 2025Updated 7 months ago
- macOS kext with kernel R/W, kalloc and kcall☆107Jun 21, 2025Updated 8 months ago
- Welcome to Hoyt's SRD Repo for the Apple Security Research Device. Contribute Code or Open an Issue or Discussion.☆79Oct 5, 2024Updated last year
- dyld_shared_cache processing / Single-Image loading for BinaryNinja☆91Feb 25, 2026Updated last week
- Dev tools for probing IOKit☆200Sep 23, 2023Updated 2 years ago
- Tool for getting and setting nonce without triggering KPP/KTRR/PAC.☆113Apr 22, 2023Updated 2 years ago
- iOS <13.5 sandbox escape/entitlement 0day☆339Jan 5, 2026Updated 2 months ago
- Collection of my bugs and CVE, with PoC or writeup☆51Mar 31, 2024Updated last year
- Log all syscalls executed by a process (iOS / checkra1n / xnuspy)☆71May 29, 2022Updated 3 years ago
- Search running processes on iOS for instances of a given objc class.☆55Jan 3, 2025Updated last year