tart, but with custom AVPBooter ROM, serial I/O, DFU mode, GDB debugging (port 8000), SEP debugging (port 8001), and panic halting. See help menus for `tart create` and `tart run` for more info. Requires SIP/AMFI to be disabled for required entitlement and "csrutil allow-research-guests enable"
☆261Feb 25, 2026Updated last week
Alternatives and similar repositories for super-tart-vphone
Users that are interested in super-tart-vphone are comparing it to the libraries listed below
Sorting:
- Serial port monitor program for Mac OS X with lolcat, iBoot logs deobfuscation & much more☆51Feb 7, 2026Updated 3 weeks ago
- An *OS bootchain patching library.☆15Feb 23, 2026Updated last week
- some research results of sep☆20Apr 9, 2021Updated 4 years ago
- iOS 3.0-10.3.4 tfp0 kernel exploit☆103Updated this week
- Corellium Companion Toolkit☆20May 3, 2024Updated last year
- My collection of PoCs☆26Nov 9, 2023Updated 2 years ago
- Proof-of-concept for the CVE-2022-42864 IOHIDFamily race condition☆66Jan 20, 2023Updated 3 years ago
- Unicorn Engine based running of SecureROM☆11Sep 13, 2022Updated 3 years ago
- Tutorial on how to jailbreak Apple Silicon Macs☆25Jul 15, 2025Updated 7 months ago
- Block notification banners on iOS 9-14☆10Sep 24, 2021Updated 4 years ago
- Fusion is a minimal kernel utility designed for PlayStation 4 research and development.☆20Feb 13, 2026Updated 2 weeks ago
- Add disassembled instructions to iOS crash reports☆33Aug 2, 2025Updated 7 months ago
- An IDA Toolkit for analyzing iOS kernelcaches.☆110May 15, 2025Updated 9 months ago
- Insecurity as an IOService☆96Mar 25, 2025Updated 11 months ago
- IDA plugin to find code cross references to virtual functions using PAC codes☆147Mar 16, 2022Updated 3 years ago
- Dump lyrics from Apple Music.☆38Jul 13, 2025Updated 7 months ago
- Scope iOS☆12Mar 20, 2024Updated last year
- Binary Format of iOS 13 Sandbox Profile Collection☆52Oct 30, 2019Updated 6 years ago
- Library handling the communication with Apple's Tatsu Signing Server (TSS)☆10Mar 21, 2025Updated 11 months ago
- ☆85Jan 29, 2026Updated last month
- Mach-O view plugin☆20Mar 7, 2024Updated last year
- Small binja plugin to import header file to types☆18Nov 11, 2022Updated 3 years ago
- ☆19May 7, 2025Updated 9 months ago
- An iOS kernel debugger based on a KTRR bypass for A11 iPhones; works with LLDB and IDA Pro.☆60May 20, 2021Updated 4 years ago
- A utility for creating and connecting to a local VPN for iOS devices allowing HTTP proxy without device supervision for all connections (…☆39Jan 7, 2026Updated last month
- Exploit for CVE-2021-30807☆132Nov 29, 2021Updated 4 years ago
- iOS 13.5 ✌️☆49May 23, 2025Updated 9 months ago
- Segment-accurate iBoot/SecureROM loader for Binary Ninja & IDA Pro☆45Jan 14, 2026Updated last month
- arm64 IOKit class dumper☆21Feb 22, 2025Updated last year
- ☆20Aug 29, 2022Updated 3 years ago
- Android Protection Bypass Stuff that I compiled from few resources.☆24Dec 10, 2022Updated 3 years ago
- arm64 IOKit class dumper☆289Jan 5, 2026Updated last month
- symbol dumps of iOS shared caches☆34Oct 15, 2022Updated 3 years ago
- ☆39Feb 10, 2021Updated 5 years ago
- ☆16Jul 30, 2020Updated 5 years ago
- An open-source tool for efficiently parsing x64dbg trace files (.trace32 & .trace64).☆41Jan 20, 2026Updated last month
- Sample code for iOS Fairplay Blog Article☆16Feb 11, 2021Updated 5 years ago
- Ampere but for macOS☆37Jan 21, 2025Updated last year
- Experimenting with the Launch Services system on iOS and macOS☆54Nov 20, 2024Updated last year