Alternatives and similar repositories for desc_race-fun_public

Users that are interested in desc_race-fun_public are comparing it to the libraries listed below

• opa334 / sandbox_extension_generator
  iOS 15.0 - 15.3.1 sandbox escape technique using kernel read/write primitives
  ☆129Updated 3 years ago
• 0x7ff / dimentio
  Tool for getting and setting nonce without triggering KPP/KTRR/PAC.
  ☆114Updated 2 years ago
• jsherman212 / iomfb-exploit
  Exploit for CVE-2021-30807
  ☆131Updated 3 years ago
• haiyuidesu / iBoot64Finder
  Find some iBoot functions in an iBoot64.
  ☆41Updated 4 years ago
• tihmstar / libpatchfinder
  A arm offsetfinder. It finds offsets, patches, parses Mach-O and even supports IMG4/IMG3
  ☆148Updated 3 weeks ago
• markie-dev / desc_race_A15
  CVE-2021-30955 iOS 15.1.1 POC for 6GB RAM devices (A14-A15)
  ☆49Updated 3 years ago
• jakeajames / SneakyShot
  Kernel-based method to take screenshots on iOS, works with encrypted videos.
  ☆60Updated 4 years ago
• chr1s0x1 / pwnedOS11
  WIP iOS 11 - 12.2 & 13b1,b2 Safari Jailbreak
  ☆44Updated 4 years ago
• Siguza / libkrw
  Lib kernel r/w
  ☆192Updated 3 years ago
• zhuowei / CoreTrustDemo
  Proof-of-concept for CVE-2022-26766 on macOS 12.3.1
  ☆84Updated 2 years ago
• Muirey03 / CVE-2022-42864
  Proof-of-concept for the CVE-2022-42864 IOHIDFamily race condition
  ☆67Updated 2 years ago
• opa334 / xnuspy_syscall_logger
  Log all syscalls executed by a process (iOS / checkra1n / xnuspy)
  ☆65Updated 3 years ago
• pinauten / KernelPatchfinder
  ☆69Updated 2 years ago
• opa334 / Presentations
  ☆79Updated last month
• haiyuidesu / sephelper
  IDA loader to help with SEPROM reverse engineering.
  ☆33Updated 6 months ago
• KpwnZ / my_bugs_and_CVE_collection
  Collection of my bugs and CVE, with PoC or writeup
  ☆52Updated last year
• alfiecg24 / Achilles
  A checkm8 utility for A7-A11 devices
  ☆71Updated 2 months ago
• 0xilis / CVE-2024-27876
  libAppleArchive exploit maker, read the writeup here https://snoolie.gay/blog/CVE-2024-27876
  ☆45Updated last month
• 0x7ff / eclipsa
  Checkm8 PoC tool for A8, A8X and A9 devices that allows you to boot untrusted images (macOS only, credits: checkra1n team).
  ☆88Updated 4 years ago
• Proteas / a7-sep-bug
  a7 sep bug
  ☆54Updated last year
• GeoSn0w / CVE-2025-24203-iOS-Exploit-With-Error-Logging
  Slightly improved exploit of the CVE-2025-24203 iOS vulnerability by Ian Beer of Google Project Zero
  ☆27Updated last month
• jsherman212 / svc_stalker
  iOS system call/Mach trap interception for checkra1n'able devices
  ☆156Updated 3 years ago
• jakeajames / sock_port
  iOS 10.0-12.2 tfp0
  ☆132Updated 5 years ago
• 0x7ff / golb
  Mapping physical memory to user space (EL0) on iOS.
  ☆73Updated 2 years ago
• akusio / MiniRootFileManager15
  iOS15.0-15.1 arm64e only
  ☆49Updated 2 years ago
• alfiecg24 / Trigon
  Deterministic kernel exploit based on CVE-2023-32434.
  ☆88Updated last month
• m1stadev / Criptam
  iOS firmware key decrypter
  ☆45Updated last year
• 0cyn / iBoot-IDA
  32/64 bit SecureROM/iBoot loader for IDA Pro. Also supports loading and decrypting encrypted .im4ps within IDA.
  ☆74Updated 3 years ago
• jakeajames / time_waste
  iOS 12.0-13.3 tfp0
  ☆151Updated 4 years ago
• opa334 / libroot
  Standardized API to get root path on iOS jailbreaks
  ☆78Updated last year