Allows you to emulate an Android native library, and an experimental iOS emulation

ART

Example showing how to use Frida for standalone injection of a custom payload

Sniffing on port messages

A Universal 32-bit iBoot patcher for iPhone OS 2.0 --> iOS 10

image4

Local privilege escalation for OS X 10.11.6 via PEGASUS

iBoot64 Payload Development Toolkit

simple radare2 rap:// server

Automatic regression verification for LLVM programs

Modern Memory Safety in C/C++

ios iokit fuzzer (really probably isn't that useful anymore tbh)

fuzzing input to the ios firmware signing server

tool for statically reconstructing the IOKit classes hierarchy from iOS kernelcache dumps

Exploit that extracts Qualcomm's KeyMaster keys using CVE-2015-6639 and CVE-2016-2431

Scripts to bruteforce Android's Full Disk Encryption off the device

A tool to list content of virtual tables in a shared library

A curated list of awesome C++ (or C) frameworks, libraries, resources, and shiny things. Inspired by awesome-... stuff.

专注于非越狱环境下iOS应用逆向研究，从dylib注入，应用重签名到App Hook

Decrypted iOS 10 Kernels

LZFSE compression library and command line tool

simject is a command-line tool and iOS dynamic library that allows developers to easily test their tweaks on the iOS Simulator.

The real deal

DieHard: An error-resistant memory allocator for Windows, Linux, and Mac OS X

Some files for hacking mach binaries in memory

Keystone assembler framework: Core (Arm, Arm64, Hexagon, Mips, PowerPC, Sparc, SystemZ & X86) + bindings

Quick and dirty hacks to explore ART internals

A list of my CVE's with POCs