Pinned Repositories
IDA-PRO-IDC-iPhone-iOS-5.X.X
IDA < 6.2 IDC iOS 5 LLVM
IDA6-MAC-OS-X-PATCHED
Patched up patchdiff2 to compile and work with IDA 6 on Max OS X
InstagramSSLPinningBypass-iOS
A Frida script to bypass SSL pinning in Instagram 157.0 and later (iOS)
iOSRestrictionBruteForce
Crack iOS Restriction Passcodes with Python
iPhone-Baseband-IDA-Pro-Signature-Files
IDA PRO signature files that can be used in reversing the iPhone baseband. On an iPhone 4 firmware can pickup upto 800 functions when all the sigs applied.
iPhone-Baseband-Memory-Decryptor
When testing a network code key, the baseband firmware reads the encryptedSignature, calculates the deviceKey and the nckKey from the entered NCK, decrypts the encryptedSignature with the nckKey using TEA, decrypts it once more with the public RSA key and verifies the signature with the SHA1 hashes of the chipID / norID.
MEDUZA
A more or less universal SSL unpinning tool
MobileTerminal-for-iOS-5
Working MobileTerminal for iPhone, iPad, iPod Touch iOS 5.x.x
SAM-iPhone-Baseband-Unlock
SAM (Subscriber Artificial Module) to activate and unlock any iPhone Baneband
UltraSnow-1.2.5-Fixer-iPhone-Unlock
UltraSn0w 1.2.5 Fixer to software unlock Apple iPhone
LetsUnlockiPhone's Repositories
LetsUnlockiPhone/VirtualApple
Work with macOS VMs using Virtualization
LetsUnlockiPhone/Anya
KBAG decryption kit for JTAGable iOS device prototypes
LetsUnlockiPhone/Apple-Complete-Kext-Clone
LetsUnlockiPhone/diaphora
Diaphora, the most advanced Free and Open Source program diffing tool.
LetsUnlockiPhone/DyldExtractor
Extract Binaries from Apple's Dyld Shared Cache
LetsUnlockiPhone/Virtual-iBoot-Fun
Another Virtualization.framework demo project, with focus to iBoot (WIP)
LetsUnlockiPhone/apple-internals
information and tools to understand the internals of Apple’s operating systems
LetsUnlockiPhone/asr64_patcher
Easily patch ASR on 64-bit devices.
LetsUnlockiPhone/FutureRestore-GUI
A modern GUI for FutureRestore, with added features to make the process easier.
LetsUnlockiPhone/iBootLoader
32/64 bit SecureROM/iBoot loader for IDA Pro. Also supports loading and decrypting encrypted .im4ps within IDA.
LetsUnlockiPhone/ipsw
iOS/macOS Research Swiss Army Knife
LetsUnlockiPhone/kfund
kfund, short for my fun with kfd exploit.
LetsUnlockiPhone/MGKeys
MobileGestalt Keys (De)obfuscation.
LetsUnlockiPhone/OpenCorePkg
OpenCore bootloader
LetsUnlockiPhone/pymobiledevice3
Pure python3 implementation for working with iDevices (iPhone, etc...).
LetsUnlockiPhone/SMC-Toolkit
Toolkit written in Python for working with Apple SMC Payloads. Generates complete firmware files from payload components.
LetsUnlockiPhone/telnetd_ramdisk
Just sum files
LetsUnlockiPhone/xnu-build
xnu build script
LetsUnlockiPhone/Apple-Kext-Clone
LetsUnlockiPhone/BootHelperPkg
A macOS NVRAM boot helper tool. Compatible with OpenCore or standalone. Among other features, provides a much faster way to enable or disable SIP than booting to Recovery.
LetsUnlockiPhone/checkm8_bootkit
Boot arbitrary iBoot on S5L8747X, S5L8947X and S7002, T8002, T8004 ("watch" branch)
LetsUnlockiPhone/Diagitizer-Open-Source
Diags Booting Utility written in Swift
LetsUnlockiPhone/Dopamine
Dopamine is a semi-untethered jailbreak for iOS 15 and 16
LetsUnlockiPhone/GenSMBIOS
Py script that uses acidanthera's macserial to generate SMBIOS and optionally saves them to a plist.
LetsUnlockiPhone/ioskextdump_ios10
iOS10~iOS13 Edition) Dump Kext information from iOS kernel cache. Applicable to the kernel which dump from memory. The disassembly framework used is Capstone
LetsUnlockiPhone/KernBypass-Unofficial
chroot based kernel level jailbreak detection bypass.
LetsUnlockiPhone/qemu-apple-silicon
Apple Silicon devices emulated on QEMU, currently only iPhone 11. With SEP and SpringBoard, eventually
LetsUnlockiPhone/ra1npoc
checkra1n dump and poc for iphoneos
LetsUnlockiPhone/XNUQEMUScripts
Some scripts I made to patch iOS device trees.
LetsUnlockiPhone/xnuspy
an iOS kernel function hooking framework for checkra1n'able devices