pattern-f / xattr-oob-swapLinks
Demo exploit code for CVE-2020-27904, a tfp0 bug.
☆66Updated 4 years ago
Alternatives and similar repositories for xattr-oob-swap
Users that are interested in xattr-oob-swap are comparing it to the libraries listed below
Sorting:
- An assistant for BinDiff☆26Updated 2 years ago
- Apple SEP reverse☆53Updated 5 years ago
- ☆39Updated 4 years ago
- IDA loader for SEP firmware with dyld cache support.☆58Updated last year
- use https://github.com/argp/iBoot64helper which is the orginal repo and far more advanced☆33Updated 6 years ago
- xnu_gym is a pongoOS module that patches XNU to reintroduce previously known and patched vulnerabilities. This is an easy way to practice…☆57Updated 4 years ago
- ☆16Updated 5 years ago
- ☆56Updated 3 years ago
- Tool to patch the ASLR slide generation in the kernel to disable user-land ASLR on 32-bit iOS☆33Updated 4 years ago
- ☆52Updated 5 years ago
- IDA loader to help with SEPROM reverse engineering.☆35Updated last month
- WebKit/JSC CodeQL Databases☆17Updated last month
- An IDA Toolkit for analyzing iOS kernelcaches.☆111Updated 4 months ago
- PCIDriverKit proof-of-concept for CVE-2022-26763☆38Updated 3 years ago
- Shortcut to automate your iproxy, debugserver, lldb workflow☆40Updated 10 months ago
- Learning how to use IOSurfaceAccelerator☆24Updated 2 years ago
- An iOS kernel debugger based on a KTRR bypass for A11 iPhones; works with LLDB and IDA Pro.☆56Updated 4 years ago
- extract various firmware blobs from iBoot☆46Updated 4 years ago
- Host your own *OS Entitlement Database☆53Updated this week
- LZVN compression/decompression tool☆15Updated 4 years ago
- My collection of PoCs☆26Updated last year
- iBoot-1145.3 Image3/heap stack RE (+unholy tools)☆83Updated last year
- Binary Ninja loader for 64 bits Apple SEPROMs☆56Updated 3 weeks ago
- some research results of sep☆20Updated 4 years ago
- Slides from my conference presentations.☆81Updated 5 years ago
- xnu build script☆71Updated 2 years ago
- Binary Ninja loader for A12 SEP firmware☆28Updated 4 years ago
- SnatchBox (CVE-2020-27935) is a sandbox escape vulnerability and exploit affecting macOS up to version 10.15.x☆31Updated 4 years ago
- PoC for the iOS 11.4.1 and MacOS 10.13 kernel vulnerability in lio_listio☆77Updated 6 years ago
- XPC sniffer using LLDB☆46Updated last year