userlandkernel / Minerva-Debugger
Providing a great interface to the iOS kernel, hardware, threads and processes in a great research environment. (WIP)
☆29Updated 5 years ago
Related projects ⓘ
Alternatives and complementary repositories for Minerva-Debugger
- Research on Apple's USB protocols☆29Updated 4 years ago
- Automatically download and decrypt SecureRom stuff (iBSS, iBEC, iBoot, etc.) for all iOS versions available.☆50Updated 4 years ago
- Binary Ninja loader for A12 SEP firmware☆26Updated 3 years ago
- ☆35Updated last year
- use https://github.com/argp/iBoot64helper which is the orginal repo and far more advanced☆32Updated 5 years ago
- A fuzzer for the iOS kernel and userland☆44Updated 6 years ago
- IDA loader to help with SEPROM reverse engineering.☆32Updated 4 months ago
- CVE-2018-4331: Exploit for a race condition in the GSSCred system service on iOS 11.2.☆24Updated 6 years ago
- empty_list - exploit for p0 issue 1564 (CVE-2018-4243) iOS 11.0 - 11.3.1 kernel r/w☆19Updated 6 years ago
- some research results of sep☆19Updated 3 years ago
- A tool for reversing IOKit classes from the iOS 12's new kernelcache format.☆23Updated 6 years ago
- Proof of concept for CVE-2018-4150 by @cmwdotme☆14Updated 6 years ago
- iOS Userland Forensic Dumping Framework for iOS 7/8☆18Updated 6 years ago
- CVE-2018-4248: Out-of-bounds read in libxpc during string serialization.☆52Updated 6 years ago
- iBoot64 Payload Development Toolkit☆42Updated 7 years ago
- not a jailbreak☆35Updated 6 years ago
- a tool that decompress the kernel cache once dercypted☆10Updated 7 years ago
- extract various firmware blobs from iBoot☆42Updated 4 years ago
- Unstripped iOS kernel extensions and more. More coming soon.☆57Updated 4 years ago
- xnu_gym is a pongoOS module that patches XNU to reintroduce previously known and patched vulnerabilities. This is an easy way to practice…☆55Updated 3 years ago
- Apple SEP reverse☆50Updated 4 years ago
- get ready for 1212 jb hax☆10Updated 5 years ago
- Mapping physical memory to user space (EL0) on iOS.☆66Updated last year
- Binary Format of iOS 13 Sandbox Profile Collection☆50Updated 5 years ago
- PoC for the iOS 11.4.1 and MacOS 10.13 kernel vulnerability in lio_listio☆76Updated 6 years ago
- iBoot/SecureROM Loader☆32Updated last year
- ☆19Updated 8 years ago
- Extract a decrypted iOS 64-bit kernelcache☆41Updated this week
- Get kernel symbols on device. No jailbreak required (note: unslid addresses)☆26Updated 6 years ago