Alternatives and similar repositories for xnu-build

Users that are interested in xnu-build are comparing it to the libraries listed below

• Proteas / sep-fw-dyld-cache-loader
  IDA loader for SEP firmware with dyld cache support.
  ☆58Updated last year
• xsscx / macos-research
  Welcome to Hoyt's macOS Fuzzing & Code Repo. Contribute Code or Open an Issue or Discussion.
  ☆49Updated 6 months ago
• Proteas / apple-cve
  apple cve list
  ☆145Updated last month
• cellebrite-labs / ida_kernelcache
  An IDA Toolkit for analyzing iOS kernelcaches.
  ☆108Updated 5 months ago
• cellebrite-labs / PacXplorer
  IDA plugin to find code cross references to virtual functions using PAC codes
  ☆145Updated 3 years ago
• Proteas / bindiff-tool
  An assistant for BinDiff
  ☆25Updated 2 years ago
• xsscx / xnuimagefuzzer
  XNU Image Fuzzer - iOS App for Fuzzing Images with Objective-C Code covering 12 CGCreateBitmap & CGColorSpace Functions working with Raw …
  ☆38Updated 2 months ago
• 0x3c3e / slides
  CodeQL + DTrace = Memory Disclosure Vulnerabilities in XNU
  ☆46Updated 2 years ago
• 0cyn / ksuite
  My BinaryNinja toolkit I use for iOS centric RE || Prerelease!
  ☆45Updated 2 years ago
• pattern-f / xattr-oob-swap
  Demo exploit code for CVE-2020-27904, a tfp0 bug.
  ☆66Updated 4 years ago
• ChiChou / entdb
  Host your own *OS Entitlement Database
  ☆54Updated 3 weeks ago
• jsherman212 / ktrw
  An iOS kernel debugger based on a KTRR bypass for A11 iPhones; works with LLDB and IDA Pro.
  ☆58Updated 4 years ago
• mwpcheung / AppleSEPFirmware
  Apple SEP reverse
  ☆52Updated 5 years ago
• ChiChou / ios-debug.py
  Shortcut to automate your iproxy, debugserver, lldb workflow
  ☆40Updated 11 months ago
• Proteas / a7-sep-bug
  a7 sep bug
  ☆54Updated 2 years ago
• aemmitt-ns / funtime
  Objective-C runtime tracing tool
  ☆40Updated 2 years ago
• lilang-wu / p-joker
  p-joker -- iOS/MacOS kernelcache/kexts analysis tool
  ☆111Updated 5 years ago
• zhuowei / LearningIOSurfaceAccelerator
  Learning how to use IOSurfaceAccelerator
  ☆24Updated 2 years ago
• alfiecg24 / KextRW
  macOS kext with kernel R/W, kalloc and kcall
  ☆95Updated 4 months ago
• Siguza / IOKernelRW
  Insecurity as an IOService
  ☆90Updated 7 months ago
• synacktiv / CVE-2021-1782
  ☆39Updated 4 years ago
• matteyeux / binja-import-header
  Small binja plugin to import header file to types
  ☆18Updated 2 years ago
• vul337 / KextFuzz
  Code of KextFuzz: Fuzzing macOS Kernel EXTensions on Apple Silicon via Exploiting Mitigations (USENIX Security'23)
  ☆83Updated 2 years ago
• tjkr0wn / xnu_gym
  xnu_gym is a pongoOS module that patches XNU to reintroduce previously known and patched vulnerabilities. This is an easy way to practice…
  ☆56Updated 4 years ago
• jevinskie / xnu-trace
  Tracing of iOS/macOS binaries using HW single step and Frida DBI
  ☆81Updated 10 months ago
• raymontag / chain3
  ☆52Updated 5 years ago
• tony-go / snixpc
  XPC sniffer using LLDB
  ☆46Updated last year
• galli-leo / emmutaler
  A set of tools for fuzzing SecureROM. Managed to find and trigger checkm8.
  ☆162Updated 4 years ago
• skr0x1c0 / binja_kc
  Plugin for loading MachO kernelcache and dSYM files to Binary Ninja
  ☆39Updated 7 months ago
• blacktop / darwin-webkit-build
  WebKit/JSC CodeQL Databases
  ☆17Updated 2 months ago