untethered+unsandboxed code execution in iOS 11
☆189Feb 16, 2020Updated 6 years ago
Alternatives and similar repositories for acorn
Users that are interested in acorn are comparing it to the libraries listed below
Sorting:
- iOS 10.0-12.2 tfp0☆131Sep 3, 2019Updated 6 years ago
- Automating research with scripts☆11Mar 30, 2020Updated 5 years ago
- Spice - an unfinished iOS 11 untether☆112Oct 16, 2021Updated 4 years ago
- ☆32Apr 22, 2019Updated 6 years ago
- iOS <13.5 sandbox escape/entitlement 0day☆339Jan 5, 2026Updated 2 months ago
- IDAPython loader to help with AArch64 iBoot, iBEC, and SecureROM reverse engineering☆262Feb 21, 2022Updated 4 years ago
- Give me tfp0, I give you jelbrek☆260Oct 28, 2020Updated 5 years ago
- Lockdown related research, tools and POCs.☆90May 18, 2019Updated 6 years ago
- PoC for the iOS 11.4.1 and MacOS 10.13 kernel vulnerability in lio_listio☆78Oct 31, 2018Updated 7 years ago
- iOS 12.0-13.3 tfp0☆153Nov 16, 2020Updated 5 years ago
- An iOS kernel debugger based on a KTRR bypass for A11 iPhones; works with LLDB and IDA Pro.☆688Oct 22, 2022Updated 3 years ago
- Find some iBoot functions in an iBoot64.☆40Feb 10, 2021Updated 5 years ago
- iOS ARM64 kernel patchfinder☆78Aug 23, 2019Updated 6 years ago
- Tool for getting and setting nonce without triggering KPP/KTRR/PAC.☆113Apr 22, 2023Updated 2 years ago
- An old, ugly and deprecated script to download, decrypt and upload .ipa files to appdb. Check out the new one: https://github.com/n3d1117…☆15Mar 5, 2018Updated 8 years ago
- Binary Format of iOS 13 Sandbox Profile Collection☆52Oct 30, 2019Updated 6 years ago
- Apple hardware secrets☆118Jan 10, 2023Updated 3 years ago
- 64-bit iOS boot image patcher written in C☆146Sep 18, 2022Updated 3 years ago
- Fugu is the first open source jailbreak based on the checkm8 exploit☆668May 11, 2021Updated 4 years ago
- Lib kernel r/w☆189Nov 1, 2021Updated 4 years ago
- An IDA Toolkit for analyzing iOS kernelcaches.☆299Jul 24, 2020Updated 5 years ago
- p-joker -- iOS/MacOS kernelcache/kexts analysis tool☆111May 18, 2020Updated 5 years ago
- A tool for reversing IOKit classes from the iOS 12's new kernelcache format.☆23Aug 2, 2018Updated 7 years ago
- Accessing physical memory on iOS.☆52Sep 21, 2020Updated 5 years ago
- ☆39Feb 10, 2021Updated 5 years ago
- Exception-oriented exploitation by Ian Beer☆191Mar 1, 2018Updated 8 years ago
- an iOS kernel function hooking framework for checkra1n'able devices☆587Oct 6, 2021Updated 4 years ago
- powerd exploit : Sandbox escape to root for Apple iOS < 12.2 on A11 devices☆110Mar 28, 2019Updated 6 years ago
- Slides from my conference presentations.☆80Aug 5, 2020Updated 5 years ago
- Mapping physical memory to user space (EL0) on iOS.☆74Jan 3, 2023Updated 3 years ago
- CVE-2020-9992 - A design flaw in MobileDevice.framework/Xcode and iOS/iPadOS/tvOS Development Tools allows an attacker in the same networ…☆73Sep 23, 2020Updated 5 years ago
- IDA plugin to extract Mach-O binaries located in the disassembly or data☆21May 9, 2019Updated 6 years ago
- An iOS kernel introspection tool.☆263Sep 19, 2019Updated 6 years ago
- IDA AArch64 processor extender extension: Adding support for ARMv8.5 memory tagging extension opcodes☆26Jul 6, 2020Updated 5 years ago
- macOS kext for host_special_port(4) patch☆90Nov 13, 2023Updated 2 years ago
- a Ghidra framework for iOS kernelcache reverse engineering☆363Nov 6, 2022Updated 3 years ago
- Reversing the Apple sandbox☆255Apr 24, 2025Updated 10 months ago
- An iOS kernel exploit for iOS 11 through 12.1.2. Non-SMAP (<=A9) devices only.☆80Apr 30, 2019Updated 6 years ago
- iOS 15.1 kernel exploit POC for CVE-2021-30955☆267Mar 1, 2022Updated 4 years ago