Alternatives and similar repositories for desc_race-fun_public

Users that are interested in desc_race-fun_public are comparing it to the libraries listed below

• opa334 / sandbox_extension_generator
  iOS 15.0 - 15.3.1 sandbox escape technique using kernel read/write primitives
  ☆131Updated 3 years ago
• 0x7ff / dimentio
  Tool for getting and setting nonce without triggering KPP/KTRR/PAC.
  ☆114Updated 2 years ago
• tihmstar / libpatchfinder
  A arm offsetfinder. It finds offsets, patches, parses Mach-O and even supports IMG4/IMG3
  ☆148Updated 4 months ago
• jakeajames / SneakyShot
  Kernel-based method to take screenshots on iOS, works with encrypted videos.
  ☆60Updated 4 years ago
• Siguza / libkrw
  Lib kernel r/w
  ☆189Updated 3 years ago
• markie-dev / desc_race_A15
  CVE-2021-30955 iOS 15.1.1 POC for 6GB RAM devices (A14-A15)
  ☆48Updated 3 years ago
• haiyuidesu / iBoot64Finder
  Find some iBoot functions in an iBoot64.
  ☆40Updated 4 years ago
• m1stadev / Criptam
  iOS firmware key decrypter
  ☆45Updated 2 years ago
• zhuowei / CoreTrustDemo
  Proof-of-concept for CVE-2022-26766 on macOS 12.3.1
  ☆85Updated 3 years ago
• chr1s0x1 / Elysian
  JB ETA????
  ☆28Updated 4 years ago
• JakeBlair420 / Spice
  Spice - an unfinished iOS 11 untether
  ☆114Updated 4 years ago
• jakeajames / sock_port
  iOS 10.0-12.2 tfp0
  ☆132Updated 6 years ago
• pinauten / KernelPatchfinder
  ☆69Updated 2 years ago
• jsherman212 / iomfb-exploit
  Exploit for CVE-2021-30807
  ☆129Updated 3 years ago
• CRKatri / trustcache
  Interact with trustcaches
  ☆41Updated 2 years ago
• coolstar / libhooker-basebins
  Base Binaries for libhooker
  ☆22Updated last year
• alfiecg24 / coretrust_cli
  A tool to call CoreTrust evaluation from userland
  ☆20Updated last year
• dayt0n / kairos
  64-bit iOS boot image patcher written in C
  ☆146Updated 3 years ago
• jakeajames / time_waste
  iOS 12.0-13.3 tfp0
  ☆153Updated 4 years ago
• haiyuidesu / sephelper
  IDA loader to help with SEPROM reverse engineering.
  ☆35Updated last month
• GeoSn0w / CVE-2025-24203-iOS-Exploit-With-Error-Logging
  Slightly improved exploit of the CVE-2025-24203 iOS vulnerability by Ian Beer of Google Project Zero
  ☆36Updated 5 months ago
• JonathanSeals / Ancient-iBoot-Fun
  iOS 5.x iBoot fun for the whole family!
  ☆43Updated 5 years ago
• fmyyss / XNU_KERNEL_RESEARCH
  ☆140Updated last year
• haiyuidesu / iBoot64Patcher
  Patch the iBoot64 with generic patches.
  ☆52Updated last year
• 0x7ff / eclipsa
  Checkm8 PoC tool for A8, A8X and A9 devices that allows you to boot untrusted images (macOS only, credits: checkra1n team).
  ☆87Updated 4 years ago
• 0cyn / iBoot-IDA
  32/64 bit SecureROM/iBoot loader for IDA Pro. Also supports loading and decrypting encrypted .im4ps within IDA.
  ☆73Updated 3 years ago
• 0x7ff / golb
  Mapping physical memory to user space (EL0) on iOS.
  ☆73Updated 2 years ago
• KpwnZ / my_bugs_and_CVE_collection
  Collection of my bugs and CVE, with PoC or writeup
  ☆52Updated last year
• tjkr0wn / xnu_gym
  xnu_gym is a pongoOS module that patches XNU to reintroduce previously known and patched vulnerabilities. This is an easy way to practice…
  ☆56Updated 4 years ago
• Cryptiiiic / hookra1n
  A custom shellcode hook for checkra1n 0.1337 written in c!
  ☆35Updated last year