jevinskie/kernelcache-patcher jevinskie/kernelcache-patcher

  • Stars
    star
    6
  • Rank 2,526,621 (Top 51 %)
  • Language CMake
  • License
    BSD 2-Clause "Sim...
  • Created about 1 year ago
  • Updated 12 months ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
jevinskie/kernelcache-patcher
github

jevinskie

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Library for reading and patching xnu KernelCaches and a tool to disable loading of AppleSerialShim for m1n1 UART debugging over USB-C aux lines.

More Repositories

1

mDNSResponder

C
121
star
2

substrate

C++
101
star
3

emusca

Power trace simulator using Unicorn Engine for side channel analysis attack testing
Python
81
star
4

xnu-trace

Tracing of iOS/macOS binaries using HW single step and Frida DBI
C++
64
star
5

amd-lm32-smu-exploit

Generic exploit for all version 7 (maybe others) LM32-based AMD SMU's used in APUs (and probably works on GPUs too)
31
star
6

jevmachopp

Modern C++, range-based Mach-O parser designed for embedded use. Uses stack allocations only.
C++
27
star
7

pypcode-emu

Ghidra P-Code emulation and static LLVM lifting in Python
C
26
star
8

riscv-smol-linux-kernel

Patched sources/configs for RISC-V Linux with musl-based toolchain targeting 8 MB RAM
C
24
star
9

aes-over-pcie

A VHDL implementation of 128 bit AES encryption with a PCIe interface.
VHDL
23
star
10

litespih4x

SPI flash MITM and emulation (QSPI is a WIP)
Verilog
19
star
11

jevxpctrace

Hopefully an insightful XPC tracer that helps vulerability research by tracing server and client call stacks
Objective-C
19
star
12

ps3mfw-ng

PS3 Modified Firmware Builder - Next Generation
Python
16
star
13

bus-pirate

Bus Pirate
C
13
star
14

dagger

A decompilation framework based on LLVM
C++
13
star
15

liteluna

LiteX LUNA USB stack integration
Python
12
star
16

pcie-mitm

LiteX-based PCIe MITM, sniffing, fuzzing, device emulation
Python
11
star
17

ghidra-lm32

LM32 processor module for Ghidra. Useful for AMD SMU reverse engineering.
11
star
18

llvm-qemu

Automatically exported from code.google.com/p/llvm-qemu
C
10
star
19

surf

Surf - A digital waveform viewer for macOS
C++
10
star
20

tegra-bootrom-utils

Utility for interacting with Tegra SoC bootroms
Python
9
star
21

mips--

A dual core MIPS subset CPU written in behavioral, synthesizable VHDL
VHDL
8
star
22

frida-ptrace-hide

ptrace hider based on frida-gum injectable shared library and a JavaScript version
8
star
23

presentations

Some presentations I’ve done
7
star
24

litelitedram

Minimal DRAM controllers for LiteX
Python
7
star
25

xfinity-stream-allow-airplay

Tweak that unlocks AirPlay functionality in the iOS Xfinity Stream app
Makefile
7
star
26

fpudump

A simple, header only library to dump x87 FPU state
C
7
star
27

proxytap

Tunnel all connections from a TAP interface though a SOCKS proxy
Python
6
star
28

undefined-behavior-crimes

Various experiments/hacks that language lawyers would shoot me for writing
C
5
star
29

FruitSU

Python library for Apple CDN formats
Python
5
star
30

llvm-project-embedded-library-in-process

Clang/LLVM/LLD/libc++/etc all in process as an embeddable library
5
star
31

es-injector

EndpointSecurity process injector
C++
5
star
32

jev-elf-tools

ELF tools like external -> local symtab entry patching
C++
4
star
33

pdf-unwm

Remove watermarks from PDFs
Python
4
star
34

usbip-toolkit

Python USB-IP server library to emulate devices with a focus on HDL cosimulation
Python
4
star
35

xnu-get-proc-path

Utility to get the path of an executable a given process is running.
4
star
36

frida-panic-ventura-beta-7

This panics macOS Ventura beta 7 because why not?
C
4
star
37

m1n1-apfs-umbrella

Umbrealla repo for m1n1 supporting APFS an macOS loading
4
star
38

pyenv-macos-dynamic-dyld-loading

Stub libpython.dylib/Python.framework to read .python-version and load the appropriate pyenv Python library
C++
4
star
39

modern-xcode-legacy-support

Use modern Xcodes with deprecated SDKs and architectures
4
star
40

wine-rosetta-aot

Experiment to see if WINE can utilize Rosetta AOT instead of JIT using PE -> Mach-O translation
C
4
star
41

ps3-decr-stuff

Stuff related to the PS3 DECR development TOOLs.
Python
4
star
42

flash-adapter-pcbs

Various PCB adapters for flash memories and devices that use them
4
star
43

bus-pirate-old

The Bus Pirate is an open source hacker multi-tool that talks to electronic stuff. It’s got a bunch of features an intrepid hacker might need to prototype their next project.
C
4
star
44

redirect-to-os-log

Command line utility to run a program and redirect its stdout and stderr to XNU's os_log facilities. Also includes an injectable dylib for the same purpose.
CMake
4
star
45

debugserver-unsigned

Tweaks, Xcode plugin for using unsigned and super-entitled debugserver on jailbroken iOS
Logos
4
star
46

pmod-qspi-flash

Simple Pmod PCB with a QSPI flash (targeted at PS4 reverse engineering tool development)
3
star
47

CarlinKit4-CarPlay-Wired-to-WiFi-dongle-RE

Reverse engineering of the CarlinkKit4 CarPlay wired-to-WiFi adapter
3
star
48

delta-debug-verilog-test

Delta Debugging for Verilog/SystemVerilog
Verilog
3
star
49

pyfishhook

Python bindings and bundled build of fishhook: A library that enables dynamically rebinding symbols in Mach-O binaries running on macOS/iOS.
Python
3
star
50

iphonetunnel-usbmuxconnectbyport

Automatically exported from code.google.com/p/iphonetunnel-usbmuxconnectbyport
C
3
star
51

inject-debugger-spawner

A library to inject via LD_PRELOAD to spawn a new terminal with an attached debugger
C++
3
star
52

SlothNS

a proof-of-work based extension to DNS
Python
3
star
53

TorVTL

C++
3
star
54

jevps

SDR GPS simulator
Python
3
star
55

nvcrypttools

nvcrypttools fork with support for off-device use (using mbedTLS) and exploitation via warmboot h4xery
C
3
star
56

sneaker

Do crazy things with your sockets
C
3
star
57

ps3dotdir

keys n stuff for f0f ps3tools and naehrwert's scetool
3
star
58

riscv-smol-linux-qemu

Patched QEMU sources/configs for RISC-V Linux with musl-based toolchain targeting 8 MB RAM
3
star
59

ps3-gcc

Latest and greatest GCC for the ps3toolchain
C
3
star
60

jev-lldb-helpers

Various LLDB Python helpers
Python
3
star
61

jev-pci-utils

Various PCI/PCIe utilities.
3
star
62

nih-sftp-server

Single file (almost) SFTP server by Eddy Langley useful for integration into a multibin dropbear server
C
3
star
63

xpwn-modern-buid

A cross-platform custom NOR firmware loader and custom IPSW generator for the iPhone. Modern CMake build with no OpenSSL dependency
C
3
star
64

litex-fork-searchable

C
2
star
65

pyxcselect

Python bindings for libxcselect.dylib to find Xcode related paths
Python
2
star
66

jeviterm

C++ library to interact with iTerm2 using protobufs and WebSockets
CMake
2
star
67

ps4-kern-dump

PS4 kernel dump stuff
C
2
star
68

aes-honeybadger

Tinkering with AES partial key brute forcing for side channel analysis
Python
2
star
69

aarch64-experimental-disasm

Experimental methods of decoding/disassembling AArch64 instructions
C
2
star
70

sacd-ripper-google-code

Automatically exported from code.google.com/p/sacd-ripper
C++
2
star
71

plocate-xnu

plocate for XNU operating systems
C++
2
star
72

litejtag-ext

LiteX JTAG extensions
Python
2
star
73

pycuse

py-cuse - CUSE (chardev in userspace) Python library
C
2
star
74

pytrofs

Python implementation of Tcl's trofs (Tcl Read-Only FileSystem)
Python
2
star
75

git-submodule-prep

Simple git submodule wrapper to track and merge changes to an upstream repo
Python
2
star
76

ublaze-rev-utils

MicroBlaze reverse engineering utilities
C++
2
star
77

bzip2-embedded

C
2
star
78

digital-waveform-samples

Digital waveforms (e.g. VCD) samples for testing and benchmarking
2
star
79

musl-libc-aarch64-baremetal

musl libc for AArch64 baremetal applications
C
2
star
80

qemu-microblaze-bflt

QEMU with hacks to load microblaze bFLT binaries
C
2
star
81

riscv-smol-linux

RISC-V Linux with musl-based toolchain targeting 8 MB RAM
Shell
2
star
82

jevutils

Various utilities I wrote for my use. My favorite so far is a find(1) alternative that searches using libmagic
Python
2
star
83

IOSurface-sandbox

Sandbox for playing around with IOSurfaces, compositing, and private CoreGraphs/CoreAnimation/SkyLight APIs
Objective-C
2
star
84

ld-audit-injector

A configurable shared library injector for Linux based on LD_AUDIT functionality found in glibc’s rtld
2
star
85

AArch64-SHA-Crypto-Extensions

Implementations of SHA(s) digests using AArch64 Cryptography Extensions
C++
2
star
86

auxv-dumper

Auxiliary Vector dumper
C++
1
star
87

frida-konyutils-ng

Improved CenturionInfoSec/konyutils for decrypting/dumping Kony app JavaScript bundles
Python
1
star
88

cmake

C++
1
star
89

jevshell

A node.js/socket.io shell on the web
JavaScript
1
star
90

ps3-bd-rev-util

Utilities for PS3 Blu-ray drive reverse engineering
Python
1
star
91

frida-trace-child-test

Testing child processes with frida-trace
C
1
star
92

volafox

Automatically exported from code.google.com/p/volafox
Python
1
star
93

libusb-cmake

libusb with CMake support
C
1
star
94

llvm-polly

C++
1
star
95

pyclippy

Your favorite friend Clippy, easily accessible from Python!
1
star
96

AppKitEnvVars

Shows env vars set by launchd and not your shell init scripts
Objective-C
1
star
97

smoke-cpp-tests

Automatically exported from code.google.com/p/smoke-cpp-tests
C++
1
star
98

flac-streamer

Stream FLAC audio
C++
1
star
99

py-data-utils

Various python data utilities
Python
1
star
100

quartus-archiver

Quartus installer archiver
Python
1
star