Semi-Jailbreak for 16.5.1-16.7 RC, 17.0

Run app from Xcode, without any code signature, but with any entitlements. Based on TrollStore.

macOS kext with kernel R/W, kalloc and kcall

Set of tools interracting with Apple servers. Don't hesitate to leave a star if you appreciate it.

Emulating Apple Silicon devices.

An all-in-one tool for firmware nonces, seeds, and downgrade support

Macro-header for compile-time C obfuscation (tcc, win x86/x64)

tracing with frida-trace some native apis or libs

Download any versions of app using Github Actions

Fucking Simple Untether for iOS 15-17

Jailed iOS app to un-blacklist all enterprise-signed apps

A mix of learning resources, my notes and mostly ctf writeup of sandbox escape challenges

weggli is a fast and robust semantic search tool for C and C++ codebases. It is designed to help security researchers identify interesting functionality in large codebases.

An automatic Blind ROP exploitation tool

SoftICE-like kernel debugger for Windows 11

Simulate touch library for iOS

matrix (web-based green code rain, made with love)

Virtualize macOS 12 and later on Apple Silicon, VirtualBuddy is a virtual machine GUI for macOS M1, M2, M3, M4

Cycript real-time classdump . An alternative for encrypted binaries

Gather and update all available and newest CVEs with their PoC.

Bitcode, Readable for Us Humans

Script to patch iOS app so we can later use it on Apple Silicon devices.

Utility to find AES keys in running processes

Another Virtualization.framework demo project, with focus to iBoot (WIP)

Here is some resources about macOS/iOS system security.

A late bound, hope-for-the-best dyld shared cache extractor