raymontag / chain3Links
☆50Updated 4 years ago
Alternatives and similar repositories for chain3
Users that are interested in chain3 are comparing it to the libraries listed below
Sorting:
- Demo exploit code for CVE-2020-27904, a tfp0 bug.☆66Updated 4 years ago
- use https://github.com/argp/iBoot64helper which is the orginal repo and far more advanced☆33Updated 5 years ago
- CVE-2018-4331: Exploit for a race condition in the GSSCred system service on iOS 11.2.☆24Updated 7 years ago
- CVE-2018-4248: Out-of-bounds read in libxpc during string serialization.☆54Updated 6 years ago
- An iOS kernel debugger based on a KTRR bypass for A11 iPhones; works with LLDB and IDA Pro.☆57Updated 4 years ago
- xnu_gym is a pongoOS module that patches XNU to reintroduce previously known and patched vulnerabilities. This is an easy way to practice…☆55Updated 4 years ago
- Slides from my conference presentations.☆80Updated 4 years ago
- An assistant for BinDiff☆25Updated 2 years ago
- Apple SEP reverse☆52Updated 5 years ago
- PoC for the iOS 11.4.1 and MacOS 10.13 kernel vulnerability in lio_listio☆76Updated 6 years ago
- Extract a decrypted iOS 64-bit kernelcache☆42Updated last week
- ☆39Updated 4 years ago
- A fuzzer for the iOS kernel and userland☆46Updated 6 years ago
- xnu build script☆71Updated last year
- WebKit/JSC CodeQL Databases☆17Updated 3 weeks ago
- IDA plugin that resolves PPL calls to the actual underlying PPL function.☆58Updated 2 years ago
- An IDA Toolkit for analyzing iOS kernelcaches.☆109Updated last month
- CVE-2020-27950 exploit☆34Updated 4 years ago
- SnatchBox (CVE-2020-27935) is a sandbox escape vulnerability and exploit affecting macOS up to version 10.15.x☆31Updated 4 years ago
- IDA loader for SEP firmware with dyld cache support.☆57Updated 10 months ago
- IDA loader to help with SEPROM reverse engineering.☆33Updated 6 months ago
- Extreme Vulnerable IOKit driver☆91Updated 4 years ago
- ☆38Updated 5 years ago
- Binary View plugin for reverse engineering iBoot like binaries with Binary Ninja☆55Updated last year
- Binary Ninja loader for A12 SEP firmware☆28Updated 4 years ago
- Shortcut to automate your iproxy, debugserver, lldb workflow☆39Updated 7 months ago
- Welcome to Hoyt's macOS Fuzzing & Code Repo. Contribute Code or Open an Issue or Discussion.☆45Updated 2 months ago
- XPC sniffer using LLDB☆44Updated 8 months ago
- Plugin for loading MachO kernelcache and dSYM files to Binary Ninja☆36Updated 3 months ago
- iOS/macOS: task_swap_mach_voucher() does not respect MIG semantics leading to use-after-free☆11Updated 6 years ago