0x7ff

ETH: 0xF546348cC130FBe99f8e6dF6E282042025E382b0

thatskygame

Pinned Repositories

brutenonce
An OpenCL implementation of the SHA-1 for brute forcing iBoot's cryptographic nonce.
Language:C6 1 04
dimentio
Tool for getting and setting nonce without triggering KPP/KTRR/PAC.
Language:C109 6 1234
eclipsa
Checkm8 PoC tool for A8, A8X and A9 devices that allows you to boot untrusted images (macOS only, credits: checkra1n team).
Language:C86 7 1024
gaster
Checkm8 experiment to understand AP/SEP internals.
Language:C187 11 5377
golb
Mapping physical memory to user space (EL0) on iOS.
Language:C67 9 215
iBootMaybeDumper
See https://github.com/0x7ff/iBootMaybeDumper/issues/1#issuecomment-426731516 for more info.
Language:C19 6 13
kextract
A tool for extracting kernel extensions from the iOS 12's new kernelcache format.
Language:C12 3 06
maphys
Accessing physical memory on iOS.
Language:C49 7 112
vtable
A tool for reversing IOKit classes from the iOS 12's new kernelcache format.
Language:C23 6 07
xpcy
A tool for listing/reversing XPC services inside container sandbox. Reference: https://www.blackhat.com/docs/us-15/materials/us-15-Wang-Review-And-Exploit-Neglected-Attack-Surface-In-iOS-8.pdf
Language:C21 3 06

0x7ff/gaster
Checkm8 experiment to understand AP/SEP internals.
Language:C187 11 5377
0x7ff/dimentio
Tool for getting and setting nonce without triggering KPP/KTRR/PAC.
Language:C109 6 1234
0x7ff/eclipsa
Checkm8 PoC tool for A8, A8X and A9 devices that allows you to boot untrusted images (macOS only, credits: checkra1n team).
Language:C86 7 1024
0x7ff/golb
Mapping physical memory to user space (EL0) on iOS.
Language:C67 9 215
0x7ff/maphys
Accessing physical memory on iOS.
Language:C49 7 112
0x7ff/vtable
A tool for reversing IOKit classes from the iOS 12's new kernelcache format.
Language:C23 6 07
0x7ff/xpcy
A tool for listing/reversing XPC services inside container sandbox. Reference: https://www.blackhat.com/docs/us-15/materials/us-15-Wang-Review-And-Exploit-Neglected-Attack-Surface-In-iOS-8.pdf
Language:C21 3 06
0x7ff/iBootMaybeDumper
See https://github.com/0x7ff/iBootMaybeDumper/issues/1#issuecomment-426731516 for more info.
Language:C19 6 13
0x7ff/kextract
A tool for extracting kernel extensions from the iOS 12's new kernelcache format.
Language:C12 3 06
0x7ff/brutenonce
An OpenCL implementation of the SHA-1 for brute forcing iBoot's cryptographic nonce.
Language:C6 1 04
0x7ff/sandy
A WIP program for reversing iOS 10+ binary sandbox profiles.
Language:C5 2 05
0x7ff/bitamin
Language:C1 1 0