stek29 / touchbar_overflow
☆14Updated 6 years ago
Alternatives and similar repositories for touchbar_overflow:
Users that are interested in touchbar_overflow are comparing it to the libraries listed below
- A tool to find gadgets in the iOS kernelcache.☆33Updated 6 years ago
- SnatchBox (CVE-2020-27935) is a sandbox escape vulnerability and exploit affecting macOS up to version 10.15.x☆30Updated 4 years ago
- CVE-2017-13868: Information leak of uninitialized kernel heap data in XNU.☆28Updated 7 years ago
- A collection of CVE POC code☆11Updated 5 years ago
- on Mac 10.12.2☆18Updated 6 years ago
- POC for CVE-2018-4327☆41Updated 6 years ago
- Utility to manipulate codesigned application in Mac OS X. Demonstrate the use of csops system call.☆75Updated last year
- Sniffing on port messages☆25Updated 8 years ago
- Collection of (at time of release) iOS bugs I found☆54Updated 5 years ago
- ☆86Updated 5 months ago
- iOS 11.3.1 exploit☆47Updated 6 years ago
- JS modules for Frida based tools to add code coverage to your instrumentation scripts.☆25Updated 6 years ago
- xnu kernel heap info leak☆71Updated 5 years ago
- Kernel Stack info leak at exportObjectToClient function☆41Updated 5 years ago
- CVE-2018-4087 PoC☆59Updated 6 years ago
- Slides from my conference presentations.☆80Updated 4 years ago
- PoC code for CVE-2018-9539☆18Updated 6 years ago
- Reexport symbols for Mach-O and ELF☆38Updated 7 years ago
- IDA Pro plugin to recovery static Thumb2 symbols.☆10Updated 3 years ago
- CVE-2020-27950 exploit☆34Updated 4 years ago
- Webkit JavascriptCore Array unshift function had a race condition, it leads to RCE.☆44Updated last year
- An assistant for BinDiff☆24Updated 2 years ago
- ☆13Updated 4 years ago
- IDA loader for Apple SecureROM☆13Updated 5 years ago
- IDA plugin that resolves PPL calls to the actual underlying PPL function.☆57Updated 2 years ago
- CVE-2018-4280: Mach port replacement vulnerability in launchd on macOS 10.13.5 leading to local privilege escalation and SIP bypass.☆59Updated 6 years ago
- Extract and generate code based on name and type for mig func/arg/request&reply member etc, ideal helper for creating monitor, tracker, f…☆17Updated 6 years ago
- A plugin for Binary Ninja containing tools for iOS reversing☆29Updated 7 years ago
- iOS/macOS: task_swap_mach_voucher() does not respect MIG semantics leading to use-after-free☆10Updated 6 years ago
- Local privilege escalation for OS X 10.10.5 via CVE-2016-1828.☆84Updated 8 years ago