zhuowei / PCICrash
PCIDriverKit proof-of-concept for CVE-2022-26763
☆38Updated 2 years ago
Related projects: ⓘ
- use https://github.com/argp/iBoot64helper which is the orginal repo and far more advanced☆32Updated 5 years ago
- arm64 IOKit class dumper☆14Updated last year
- LZVN compression/decompression tool☆15Updated 3 years ago
- ☆34Updated last year
- My collection of PoCs☆24Updated 10 months ago
- ☆38Updated 3 years ago
- Tool to patch the ASLR slide generation in the kernel to disable user-land ASLR on 32-bit iOS☆31Updated 3 years ago
- Demo exploit code for CVE-2020-27904, a tfp0 bug.☆65Updated 3 years ago
- Extract a decrypted iOS 64-bit kernelcache☆41Updated this week
- A tool for reversing IOKit classes from the iOS 12's new kernelcache format.☆23Updated 6 years ago
- Get kernel symbols on device. No jailbreak required (note: unslid addresses)☆26Updated 6 years ago
- empty_list - exploit for p0 issue 1564 (CVE-2018-4243) iOS 11.0 - 11.3.1 kernel r/w☆19Updated 6 years ago
- experimental iOS debugger☆24Updated 4 years ago
- Accompanying code for blog post "Mapping iOS Persistence Attack Surface using Corellium"☆9Updated 2 years ago
- arm64 and arm64e dylib injector☆27Updated 7 months ago
- Twenty-twenty, bugs aplenty!☆53Updated last year
- desc_race exploit for iOS 15.0 - 15.1.1 (with stable kernel r/w primitives) (CVE-2021-30955)☆10Updated 2 years ago
- some research results of sep☆19Updated 3 years ago
- An assistant for BinDiff☆24Updated last year
- A working busybox for iOS and macOS☆27Updated last year
- Auto updated libimobiledevice Github Actions package☆11Updated this week
- Mach-O view plugin☆20Updated 6 months ago
- SnatchBox (CVE-2020-27935) is a sandbox escape vulnerability and exploit affecting macOS up to version 10.15.x☆30Updated 3 years ago
- ☆18Updated 3 years ago
- Reversed iOS sandbox profile files☆24Updated 4 years ago
- IDA loader to help with SEPROM reverse engineering.☆32Updated 3 months ago
- ☆11Updated 3 years ago
- ios kernel class tree☆23Updated 5 years ago
- ☆53Updated 2 years ago
- extract various firmware blobs from iBoot☆42Updated 3 years ago