opa334 / sandbox_extension_generatorLinks
iOS 15.0 - 15.3.1 sandbox escape technique using kernel read/write primitives
☆130Updated 3 years ago
Alternatives and similar repositories for sandbox_extension_generator
Users that are interested in sandbox_extension_generator are comparing it to the libraries listed below
Sorting:
- ☆67Updated 3 years ago
- Lib kernel r/w☆189Updated 3 years ago
- A arm offsetfinder. It finds offsets, patches, parses Mach-O and even supports IMG4/IMG3☆149Updated 2 months ago
- Proof-of-concept for CVE-2022-26766 on macOS 12.3.1☆84Updated 3 years ago
- Exploit for CVE-2021-30807☆130Updated 3 years ago
- ☆79Updated 2 months ago
- Interact with trustcaches☆42Updated 2 years ago
- Proof-of-concept for the CVE-2022-42864 IOHIDFamily race condition☆66Updated 2 years ago
- CVE-2021-30955 iOS 15.1.1 POC for 6GB RAM devices (A14-A15)☆49Updated 3 years ago
- Tool for getting and setting nonce without triggering KPP/KTRR/PAC.☆115Updated 2 years ago
- IDA loader for Apple's 64 bits iBoot, SecureROM and AVPBooter☆155Updated 9 months ago
- ☆137Updated last year
- An iOS kernel debugger based on a KTRR bypass for A11 iPhones; works with LLDB and IDA Pro.☆56Updated 4 years ago
- libAppleArchive exploit maker, read the writeup here https://snoolie.gay/blog/CVE-2024-27876☆47Updated 3 months ago
- 32/64 bit SecureROM/iBoot loader for IDA Pro. Also supports loading and decrypting encrypted .im4ps within IDA.☆74Updated 3 years ago
- iOS 12.0-13.3 tfp0☆152Updated 4 years ago
- 64-bit iOS boot image patcher written in C☆146Updated 2 years ago
- xnu_gym is a pongoOS module that patches XNU to reintroduce previously known and patched vulnerabilities. This is an easy way to practice…☆57Updated 4 years ago
- Deterministic kernel exploit based on CVE-2023-32434.☆103Updated 2 weeks ago
- Kernel-based method to take screenshots on iOS, works with encrypted videos.☆60Updated 4 years ago
- iBoot/SEPOS decryption kit for JTAGgable iOS device prototypes☆111Updated 5 months ago
- iOS firmware key decrypter☆44Updated last year
- ☆68Updated 2 years ago
- Experimentation environment for checkm8-vulnerable devices☆54Updated last year
- Mapping physical memory to user space (EL0) on iOS.☆74Updated 2 years ago
- Fork of PongoOS which can be run in QEMU☆67Updated 4 years ago
- ☆149Updated 3 years ago
- kernel r/w exploit for iOS 15.0 - 15.1.1☆256Updated 3 years ago
- A python lib for manipulating IMG4, IM4M and IM4P files☆12Updated last year
- IDA loader to help with SEPROM reverse engineering.☆34Updated 7 months ago