tihmstar / libtakeover

Related projects ⓘ

Alternatives and complementary repositories for libtakeover

• Haifisch / kuzz
  ios iokit fuzzer (really probably isn't that useful anymore tbh)
  ☆61Updated 7 years ago
• jsherman212 / svc_stalker
  iOS system call/Mach trap interception for checkra1n'able devices
  ☆151Updated 3 years ago
• 0x7ff / dimentio
  Tool for getting and setting nonce without triggering KPP/KTRR/PAC.
  ☆109Updated last year
• DanyL / lockdownd_playground
  Lockdown related research, tools and POCs.
  ☆91Updated 5 years ago
• xerub / patchfinder64
  iOS ARM64 kernel patchfinder
  ☆74Updated 5 years ago
• jakeajames / multi_path
  multi_path with root and sandbox escape
  ☆101Updated 6 years ago
• opa334 / xnuspy_syscall_logger
  Log all syscalls executed by a process (iOS / checkra1n / xnuspy)
  ☆58Updated 2 years ago
• jakeajames / dylibify
  Transform any ARM macho executable to a dynamic library
  ☆75Updated 2 years ago
• deepinstinct / dsc_fix
  Aids in reverse engineering libraries from dyld_shared_cache in IDA
  ☆101Updated 7 years ago
• jakeajames / sock_port
  iOS 10.0-12.2 tfp0
  ☆129Updated 5 years ago
• CRKatri / trustcache
  Interact with trustcaches
  ☆39Updated last year
• userlandkernel / ios-unstripped-kexts
  Unstripped iOS kernel extensions and more. More coming soon.
  ☆57Updated 4 years ago
• hot3eed / objtree
  tree but for Objective-C messages.
  ☆115Updated 10 months ago
• jsherman212 / ktrw
  An iOS kernel debugger based on a KTRR bypass for A11 iPhones; works with LLDB and IDA Pro.
  ☆54Updated 3 years ago
• Proteas / ios-anti-anti-dbg-in-kern
  Demo: Anti Anti-Debug in iOS Kernel
  ☆73Updated 6 years ago
• lilang-wu / p-joker
  p-joker -- iOS/MacOS kernelcache/kexts analysis tool
  ☆107Updated 4 years ago
• jsherman212 / iosdbg
  experimental iOS debugger
  ☆26Updated 4 years ago
• MTJailed / XNU-Kernel-Fuzzer
  A fuzzer for the iOS kernel and userland
  ☆44Updated 6 years ago
• JakeBlair420 / Spice
  Spice - an unfinished iOS 11 untether
  ☆113Updated 3 years ago
• chr1s0x1 / pwnedOS11
  WIP iOS 11 - 12.2 & 13b1,b2 Safari Jailbreak
  ☆43Updated 4 years ago
• shinvou / decrypt0r
  Automatically download and decrypt SecureRom stuff (iBSS, iBEC, iBoot, etc.) for all iOS versions available.
  ☆50Updated 4 years ago
• tihmstar / v3ntex
  getf tfp0 on iOS 12.0 - 12.1.2
  ☆65Updated 5 years ago
• Siguza / iometa
  arm64 IOKit class dumper
  ☆260Updated 3 weeks ago
• markie-dev / desc_race_A15
  CVE-2021-30955 iOS 15.1.1 POC for 6GB RAM devices (A14-A15)
  ☆48Updated 2 years ago
• Billy-Ellis / aslr-kernel-patch
  Tool to patch the ASLR slide generation in the kernel to disable user-land ASLR on 32-bit iOS
  ☆33Updated 3 years ago
• cellebrite-labs / ida_kernelcache
  An IDA Toolkit for analyzing iOS kernelcaches.
  ☆104Updated last year
• tihmstar / libpatchfinder
  A arm offsetfinder. It finds offsets, patches, parses Mach-O and even supports IMG4/IMG3
  ☆144Updated 3 months ago
• citruz / pongoOS-QEMU
  Fork of PongoOS which can be run in QEMU
  ☆63Updated 3 years ago
• jakeajames / SneakyShot
  Kernel-based method to take screenshots on iOS, works with encrypted videos.
  ☆61Updated 3 years ago