Alternatives and similar repositories for libtakeover:

Users that are interested in libtakeover are comparing it to the libraries listed below

• jsherman212 / svc_stalker
  iOS system call/Mach trap interception for checkra1n'able devices
  ☆155Updated 3 years ago
• 0x7ff / dimentio
  Tool for getting and setting nonce without triggering KPP/KTRR/PAC.
  ☆114Updated 2 years ago
• userlandkernel / ios-unstripped-kexts
  Unstripped iOS kernel extensions and more. More coming soon.
  ☆56Updated 5 years ago
• deepinstinct / dsc_fix
  Aids in reverse engineering libraries from dyld_shared_cache in IDA
  ☆101Updated 7 years ago
• xerub / patchfinder64
  iOS ARM64 kernel patchfinder
  ☆76Updated 5 years ago
• Haifisch / kuzz
  ios iokit fuzzer (really probably isn't that useful anymore tbh)
  ☆62Updated 8 years ago
• DanyL / lockdownd_playground
  Lockdown related research, tools and POCs.
  ☆91Updated 5 years ago
• jakeajames / dylibify
  Transform any ARM macho executable to a dynamic library
  ☆77Updated 2 years ago
• CRKatri / trustcache
  Interact with trustcaches
  ☆41Updated 2 years ago
• opa334 / xnuspy_syscall_logger
  Log all syscalls executed by a process (iOS / checkra1n / xnuspy)
  ☆63Updated 2 years ago
• jsherman212 / ktrw
  An iOS kernel debugger based on a KTRR bypass for A11 iPhones; works with LLDB and IDA Pro.
  ☆57Updated 3 years ago
• lilang-wu / p-joker
  p-joker -- iOS/MacOS kernelcache/kexts analysis tool
  ☆108Updated 4 years ago
• GeoSn0w / MachDump
  A very basic C Mach-O Header Dump tool written for practicing purposes. Works With x86 and x86_64 binaries
  ☆38Updated 2 years ago
• citruz / pongoOS-QEMU
  Fork of PongoOS which can be run in QEMU
  ☆66Updated 3 years ago
• Synacktiv-contrib / lightspeed
  PoC for the iOS 11.4.1 and MacOS 10.13 kernel vulnerability in lio_listio
  ☆76Updated 6 years ago
• cellebrite-labs / ida_kernelcache
  An IDA Toolkit for analyzing iOS kernelcaches.
  ☆107Updated last year
• EthanArbuckle / objfind
  Search running processes on iOS for instances of a given objc class.
  ☆47Updated 3 months ago
• tjkr0wn / xnu_gym
  xnu_gym is a pongoOS module that patches XNU to reintroduce previously known and patched vulnerabilities. This is an easy way to practice…
  ☆55Updated 3 years ago
• mwpcheung / AppleSEPFirmware
  Apple SEP reverse
  ☆52Updated 5 years ago
• MTJailed / XNU-Kernel-Fuzzer
  A fuzzer for the iOS kernel and userland
  ☆44Updated 6 years ago
• Siguza / misc
  ☆36Updated 2 months ago
• jakeajames / sock_port
  iOS 10.0-12.2 tfp0
  ☆132Updated 5 years ago
• Siguza / hsp4
  macOS kext for host_special_port(4) patch
  ☆88Updated last year
• dayt0n / kairos
  64-bit iOS boot image patcher written in C
  ☆146Updated 2 years ago
• tihmstar / v1ntex
  getf tfp0 on iOS 11.2 - 11.4.1
  ☆70Updated 6 years ago
• NyanSatan / Image3RE
  iBoot-1145.3 Image3/heap stack RE (+unholy tools)
  ☆77Updated last year
• haiyuidesu / sephelper
  IDA loader to help with SEPROM reverse engineering.
  ☆33Updated 4 months ago
• jakeajames / SneakyShot
  Kernel-based method to take screenshots on iOS, works with encrypted videos.
  ☆60Updated 4 years ago
• NyaMisty / xnu_bypass
  ☆47Updated 3 years ago
• chr1s0x1 / pwnedOS11
  WIP iOS 11 - 12.2 & 13b1,b2 Safari Jailbreak
  ☆44Updated 4 years ago