Pinned Repositories
10.13.5-sip-bypass
2FAssassin
Bypass Two-Factor-Authentication
CVE-2017-2370
on Mac 10.12.2
cve-2018-4233
Exploit for CVE-2018-4233, a WebKit JIT optimization bug used during Pwn2Own 2018
Exploits
kernelSymbolFinder
Get kernel symbols on device. No jailbreak required (note: unslid addresses)
keychaindump
A proof-of-concept tool for reading OS X keychain passwords
linux_exploit_development
Linux Exploit Development Techniques
macOS-iOS-system-security
macos/ios exploit writeup
PoCs-1
Some Public vulnerabilities i found and exploits
dothanthitiendiettiende's Repositories
dothanthitiendiettiende/alive2
Automatic verification of LLVM optimizations
dothanthitiendiettiende/AMFIExemption
Grant private entitlements to OSX apps
dothanthitiendiettiende/aslr-kernel-patch
Tool to patch the ASLR slide generation in the kernel to disable user-land ASLR on 32-bit iOS
dothanthitiendiettiende/awesome-browser-exploit
awesome list of browser exploitation tutorials
dothanthitiendiettiende/c0ntextomy
CVE-2020-9992 - A design flaw in MobileDevice.framework/Xcode and iOS/iPadOS/tvOS Development Tools allows an attacker in the same network to gain remote code execution on a target device
dothanthitiendiettiende/clang-plugins-demo
A simple example of defining custom plugins for clang and the clang static analyzer.
dothanthitiendiettiende/DevUtils-app
Developer Utilities for macOS
dothanthitiendiettiende/dtrace-memaccess_cve-2020-27949
dothanthitiendiettiende/exploit_me
Very vulnerable ARM/AARCH64 application (CTF style exploitation tutorial with 14 vulnerability techniques)
dothanthitiendiettiende/Exploits-3
Collection of 0days & Ndays
dothanthitiendiettiende/FreeTheSandbox_LPE_POC_13.7
Jailbreak for iOS 13.7 and earlier
dothanthitiendiettiende/insert_dylib4ios
Command line utility for inserting a dylib load command into a Mach-O binary.
dothanthitiendiettiende/Jackalope
Binary, coverage-guided fuzzer for Windows and macOS
dothanthitiendiettiende/kbd-audio
Tools for capturing and analysing keyboard input paired with microphone capture 🎤⌨️
dothanthitiendiettiende/libphonenumber-js
A simpler (and smaller) rewrite of Google Android's libphonenumber library in javascript
dothanthitiendiettiende/lucid
An Interactive Hex-Rays Microcode Explorer
dothanthitiendiettiende/macOS-ATTACK-DATASET
JSON DataSet for macOS mapped to MITRE ATT&CK Tactics.
dothanthitiendiettiende/MacShell
MacShell post exploitation tool designed or blue teams to build macOS detections. Author: Cedric Owens
dothanthitiendiettiende/offensive_macos
Tracking of offensive macOS tooling, blogs, and related helpful information
dothanthitiendiettiende/oob_events
kernel exploit for Apple iOS 13.X
dothanthitiendiettiende/owl
An open Apple Wireless Direct Link (AWDL) implementation written in C
dothanthitiendiettiende/Shield
An app to protect against process injection on macOS
dothanthitiendiettiende/SnatchBox
SnatchBox (CVE-2020-27935) is a sandbox escape vulnerability and exploit affecting macOS up to version 10.15.x
dothanthitiendiettiende/SourceKitForSafari
SourceKit for Safari is a Safari extension for GitHub, that enables Xcode features like go to definition, find references, or documentation on hover.
dothanthitiendiettiende/Spaceman
A macOS app to view Spaces / Virtual Desktops in the menu bar
dothanthitiendiettiende/svc_stalker
iOS system call/Mach trap interception for checkra1n'able devices
dothanthitiendiettiende/UTM
Virtual machines for iOS
dothanthitiendiettiende/xnuspy
an iOS kernel function hooking framework for checkra1n'able devices
dothanthitiendiettiende/XPCSniffer
Sniff XPC goodies on your iOS device.
dothanthitiendiettiende/xpcspy
Bidirectional XPC message interception and more. Powered by Frida