Alternatives and similar repositories for stool:

Users that are interested in stool are comparing it to the libraries listed below

• bazad / ctl_ctloutput-leak
  CVE-2017-13868: Information leak of uninitialized kernel heap data in XNU.
  ☆28Updated 7 years ago
• NyanSatan / WayOut
  GUI for kloader/multi_kloader in the spirit of old classic Setup.app
  ☆27Updated 3 months ago
• xerub / ibex64
  iBoot64 Payload Development Toolkit
  ☆42Updated 7 years ago
• GuardianFirewall / foreman
  A simple nodejs server that acts as a keystore for Grandmaster.
  ☆21Updated 5 years ago
• bazad / macho_gadgets
  A tool to find gadgets in the iOS kernelcache.
  ☆33Updated 6 years ago
• xerub / empty_list
  iOS 11.3.1 exploit
  ☆47Updated 6 years ago
• jndok / OF32
  A simple tool to find offsets needed in 32bit jailbreaks. Feel free to contribute.
  ☆30Updated 7 years ago
• LIJI32 / SnatchBox
  SnatchBox (CVE-2020-27935) is a sandbox escape vulnerability and exploit affecting macOS up to version 10.15.x
  ☆31Updated 4 years ago
• JonathanSeals / kernelversionhacker
  Change your kernel version
  ☆35Updated 6 years ago
• Siguza / misc
  ☆36Updated 2 months ago
• Siguza / PhoenixNonce
  64-bit nonce setter for iOS 9.3.4-9.3.5
  ☆95Updated 7 years ago
• lululombard / DCSD-reverse-engineering
  A doc repo about the DCSD Apple Internal cable used in iPhone/iPad/iPod factories
  ☆44Updated 7 years ago
• axi0mX / s5l8720-securerom-dumper
  Python script to dump SecureROM on S5L8720 devices (iPod Touch 2nd generation)
  ☆21Updated 8 years ago
• NyanSatan / checkm8_bootkit
  Boot arbitrary iBoot via ipwndfu's custom protocol on some cursed platforms and more
  ☆53Updated 3 months ago
• tihmstar / kdp.py
  crappy "debugger"-like memory reader, to inspect 32bit ios kernel after it paniced
  ☆16Updated 6 years ago
• Siguza / UserScripts
  My Tampermonkey scripts
  ☆16Updated 2 months ago
• tihmstar / webkitcacher
  Cache directory with web files (html/js...) to ApplicationCache.db file
  ☆10Updated 4 years ago
• stek29 / touchbar_overflow
  ☆14Updated 6 years ago
• OpenJailbreak / absinthe
  Absinthe Jailbreak. Most recent version I've maintained. Help split this up into reusable modules for future userland jailbreaks. This is…
  ☆30Updated 3 years ago
• OpenJailbreak / sudochop
  iOS Userland Forensic Dumping Framework for iOS 7/8
  ☆19Updated 6 years ago
• OpenJailbreak / voucher_swap
  Obtains the kernel task port and establishes a kernel function calling primitive on the iPhone XS, iPhone XR, and iPhone 8 running iOS 12…
  ☆28Updated 6 years ago
• danzatt / ibex_find
  Identifies common functions in iBSS/iBEC/iBoot/LLB
  ☆32Updated 9 years ago
• Proteas / ios-8.1.2-jb-userland
  ref: https://proteaswang.blogspot.com/2017/04/jailbreak-ios-812-and-analyze-related.html
  ☆12Updated 6 years ago
• kpwn / xnuexp-toolkit
  xnu exploitation toolkit
  ☆16Updated 9 years ago
• bat0s / BootROM
  ☆19Updated 8 years ago
• Siguza / ios-scripts
  iOS-related command line goodies
  ☆58Updated 5 years ago
• sektioneins / xpwntool-lite
  Lightweight version of xpwntool just for decrypting IMG3 firmware files
  ☆47Updated 4 years ago
• omerporze / brokentooth
  POC for CVE-2018-4327
  ☆41Updated 6 years ago
• xerub / patchfinder64
  iOS ARM64 kernel patchfinder
  ☆76Updated 5 years ago
• sektioneins / ipod-serial-adapter
  circuit board (PCB) schematics for 30-pin iPod serial debugging
  ☆38Updated 7 years ago