zhuowei / qemu

Related projects ⓘ

Alternatives and complementary repositories for qemu

• userlandkernel / ios-unstripped-kexts
  Unstripped iOS kernel extensions and more. More coming soon.
  ☆57Updated 4 years ago
• Darm64 / XNU
  Research into porting the XNU kernel to ARM devices.
  ☆79Updated 4 years ago
• NyanSatan / Image3RE
  iBoot-1145.3 Image3/heap stack RE (+unholy tools)
  ☆71Updated 9 months ago
• zhuowei / XNUQEMUScripts
  Some scripts I made to patch iOS device trees.
  ☆60Updated 3 years ago
• Synacktiv-contrib / kernelcache-laundering
  load iOS12 kernelcaches and PAC code in IDA
  ☆60Updated 6 years ago
• sektioneins / xpwntool-lite
  Lightweight version of xpwntool just for decrypting IMG3 firmware files
  ☆45Updated 3 years ago
• freedomtan / iOS-device-tree-dump
  Dump non-encrypted iOS device tree extracted from im4p
  ☆40Updated 2 years ago
• Siguza / hsp4
  macOS kext for host_special_port(4) patch
  ☆87Updated 11 months ago
• lilang-wu / p-joker
  p-joker -- iOS/MacOS kernelcache/kexts analysis tool
  ☆107Updated 4 years ago
• citruz / pongoOS-QEMU
  Fork of PongoOS which can be run in QEMU
  ☆63Updated 3 years ago
• Siguza / dt
  DeviceTree
  ☆75Updated 3 weeks ago
• xerub / img4tool
  image4
  ☆69Updated 6 years ago
• shinvou / decrypt0r
  Automatically download and decrypt SecureRom stuff (iBSS, iBEC, iBoot, etc.) for all iOS versions available.
  ☆50Updated 4 years ago
• bazad / presentations
  Slides from my conference presentations.
  ☆79Updated 4 years ago
• Proteas / ios13-sandbox-profile-format
  Binary Format of iOS 13 Sandbox Profile Collection
  ☆50Updated 5 years ago
• haiyuidesu / sephelper
  IDA loader to help with SEPROM reverse engineering.
  ☆32Updated 4 months ago
• marcograss / rust-kernelcache-extractor
  Extract a decrypted iOS 64-bit kernelcache
  ☆41Updated this week
• chr1s0x1 / pwnedOS11
  WIP iOS 11 - 12.2 & 13b1,b2 Safari Jailbreak
  ☆43Updated 4 years ago
• xerub / reexport
  Reexport symbols for Mach-O and ELF
  ☆38Updated 6 years ago
• xerub / async_wake_ios
  not a jailbreak
  ☆35Updated 6 years ago
• bazad / xpc-string-leak
  CVE-2018-4248: Out-of-bounds read in libxpc during string serialization.
  ☆52Updated 6 years ago
• userlandkernel / USBusted
  Research on Apple's USB protocols
  ☆29Updated 4 years ago
• xerub / idastuff
  IDA Pro/Hexrays plugins
  ☆130Updated 6 years ago
• b1n4r1b01 / rasengan
  extract various firmware blobs from iBoot
  ☆42Updated 4 years ago
• deepinstinct / dsc_fix
  Aids in reverse engineering libraries from dyld_shared_cache in IDA
  ☆101Updated 7 years ago
• xerub / patchfinder64
  iOS ARM64 kernel patchfinder
  ☆74Updated 5 years ago
• bazad / threadexec
  A library to execute code in the context of other processes on iOS 11.
  ☆80Updated 6 years ago
• BlackwingHQ / iBoot64Binja
  Binary View plugin for reverse engineering iBoot like binaries with Binary Ninja
  ☆50Updated 9 months ago
• jsherman212 / svc_stalker
  iOS system call/Mach trap interception for checkra1n'able devices
  ☆148Updated 3 years ago
• jsherman212 / ktrw
  An iOS kernel debugger based on a KTRR bypass for A11 iPhones; works with LLDB and IDA Pro.
  ☆54Updated 3 years ago