tihmstar / desc_race-fun_publicLinks
☆68Updated 3 years ago
Alternatives and similar repositories for desc_race-fun_public
Users that are interested in desc_race-fun_public are comparing it to the libraries listed below
Sorting:
- iOS 15.0 - 15.3.1 sandbox escape technique using kernel read/write primitives☆129Updated 3 years ago
- Tool for getting and setting nonce without triggering KPP/KTRR/PAC.☆114Updated 2 years ago
- Exploit for CVE-2021-30807☆131Updated 3 years ago
- Find some iBoot functions in an iBoot64.☆41Updated 4 years ago
- A arm offsetfinder. It finds offsets, patches, parses Mach-O and even supports IMG4/IMG3☆148Updated 3 weeks ago
- CVE-2021-30955 iOS 15.1.1 POC for 6GB RAM devices (A14-A15)☆49Updated 3 years ago
- Kernel-based method to take screenshots on iOS, works with encrypted videos.☆60Updated 4 years ago
- WIP iOS 11 - 12.2 & 13b1,b2 Safari Jailbreak☆44Updated 4 years ago
- Lib kernel r/w☆192Updated 3 years ago
- Proof-of-concept for CVE-2022-26766 on macOS 12.3.1☆84Updated 2 years ago
- Proof-of-concept for the CVE-2022-42864 IOHIDFamily race condition☆67Updated 2 years ago
- Log all syscalls executed by a process (iOS / checkra1n / xnuspy)☆65Updated 3 years ago
- ☆69Updated 2 years ago
- ☆79Updated last month
- IDA loader to help with SEPROM reverse engineering.☆33Updated 6 months ago
- Collection of my bugs and CVE, with PoC or writeup☆52Updated last year
- A checkm8 utility for A7-A11 devices☆71Updated 2 months ago
- libAppleArchive exploit maker, read the writeup here https://snoolie.gay/blog/CVE-2024-27876☆45Updated last month
- Checkm8 PoC tool for A8, A8X and A9 devices that allows you to boot untrusted images (macOS only, credits: checkra1n team).☆88Updated 4 years ago
- a7 sep bug☆54Updated last year
- Slightly improved exploit of the CVE-2025-24203 iOS vulnerability by Ian Beer of Google Project Zero☆27Updated last month
- iOS system call/Mach trap interception for checkra1n'able devices☆156Updated 3 years ago
- iOS 10.0-12.2 tfp0☆132Updated 5 years ago
- Mapping physical memory to user space (EL0) on iOS.☆73Updated 2 years ago
- iOS15.0-15.1 arm64e only☆49Updated 2 years ago
- Deterministic kernel exploit based on CVE-2023-32434.☆88Updated last month
- iOS firmware key decrypter☆45Updated last year
- 32/64 bit SecureROM/iBoot loader for IDA Pro. Also supports loading and decrypting encrypted .im4ps within IDA.☆74Updated 3 years ago
- iOS 12.0-13.3 tfp0☆151Updated 4 years ago
- Standardized API to get root path on iOS jailbreaks☆78Updated last year