saaramar / IOMFB_integer_overflow_poc

Related projects ⓘ

Alternatives and complementary repositories for IOMFB_integer_overflow_poc

• b1n4r1b01 / n-days
  ☆185Updated 2 years ago
• opa334 / sandbox_extension_generator
  iOS 15.0 - 15.3.1 sandbox escape technique using kernel read/write primitives
  ☆123Updated 2 years ago
• jsherman212 / iomfb-exploit
  Exploit for CVE-2021-30807
  ☆130Updated 2 years ago
• Muirey03 / CVE-2022-42864
  Proof-of-concept for the CVE-2022-42864 IOHIDFamily race condition
  ☆62Updated last year
• saaramar / IOMobileFrameBuffer_LPE_POC
  ☆53Updated 3 years ago
• jsherman212 / ktrw
  An iOS kernel debugger based on a KTRR bypass for A11 iPhones; works with LLDB and IDA Pro.
  ☆54Updated 3 years ago
• Siguza / aea1
  AEA metadata dumper
  ☆45Updated 4 months ago
• zhuowei / CoreTrustDemo
  Proof-of-concept for CVE-2022-26766 on macOS 12.3.1
  ☆84Updated 2 years ago
• tihmstar / desc_race-fun_public
  ☆67Updated 2 years ago
• Siguza / libkrw
  Lib kernel r/w
  ☆191Updated 3 years ago
• 0x7ff / dimentio
  Tool for getting and setting nonce without triggering KPP/KTRR/PAC.
  ☆109Updated last year
• CRKatri / trustcache
  Interact with trustcaches
  ☆39Updated last year
• opa334 / Presentations
  ☆70Updated 5 months ago
• JakeBlair420 / Spice
  Spice - an unfinished iOS 11 untether
  ☆113Updated 3 years ago
• 0cyn / iBoot-IDA
  32/64 bit SecureROM/iBoot loader for IDA Pro. Also supports loading and decrypting encrypted .im4ps within IDA.
  ☆68Updated 2 years ago
• blacktop / ipsw-py
  A Python library for the ipsw daemon API
  ☆24Updated last year
• tjkr0wn / xnu_gym
  xnu_gym is a pongoOS module that patches XNU to reintroduce previously known and patched vulnerabilities. This is an easy way to practice…
  ☆55Updated 3 years ago
• ProcursusTeam / launchctl
  An open source implemention of Apple's `launchctl(1)`
  ☆69Updated 3 months ago
• chr1s0x1 / pwnedOS11
  WIP iOS 11 - 12.2 & 13b1,b2 Safari Jailbreak
  ☆43Updated 4 years ago
• jakeajames / time_waste
  iOS 12.0-13.3 tfp0
  ☆151Updated 4 years ago
• Siguza / IOKernelRW
  Insecurity as an IOService
  ☆76Updated last year
• haiyuidesu / sephelper
  IDA loader to help with SEPROM reverse engineering.
  ☆32Updated 5 months ago
• NyanSatan / Virtual-iBoot-Fun
  Another Virtualization.framework demo project, with focus to iBoot (WIP)
  ☆161Updated 11 months ago
• mwpcheung / AppleSEPFirmware
  Apple SEP reverse
  ☆50Updated 4 years ago
• tihmstar / libpatchfinder
  A arm offsetfinder. It finds offsets, patches, parses Mach-O and even supports IMG4/IMG3
  ☆144Updated 3 months ago
• synacktiv / CVE-2021-1782
  ☆38Updated 3 years ago
• Proteas / a7-sep-bug
  a7 sep bug
  ☆50Updated last year
• haiyuidesu / iBoot64Finder
  Find some iBoot functions in an iBoot64.
  ☆41Updated 3 years ago
• markie-dev / desc_race_A15
  CVE-2021-30955 iOS 15.1.1 POC for 6GB RAM devices (A14-A15)
  ☆48Updated 2 years ago
• jsherman212 / svc_stalker
  iOS system call/Mach trap interception for checkra1n'able devices
  ☆150Updated 3 years ago