├── ARM exploitation ├── Armis-CDPwn-ASLR-Bypass-WP_1.pdf ├── Slides-SAS_final (1).pdf └── exploitation_on_arm_based_systems.pdf ├── ARM └── Keynote_ArmResearchSummit2020_Azeria.pdf ├── FRIDA ├── frida-boot.pdf └── r2frida_2021-r2con.pdf ├── README.MD └── iOS exploitation ├── 2011-WWDC-session_206__introducing_xpc.pdf ├── 2012-BH_US_12_Esser_iOS_Kernel_Heap_Armageddon_WP.pdf ├── 2015-Auditing and Exploiting-IanBeer_JSS_Slides.pdf ├── 2015-BH_EU_Todesco-Attacking-The-XNU-Kernal-In-El-Capitain.pdf ├── 2016-HITB-D2 - Stefan Esser - iOS 10 Kernel Heap Revisited.pdf ├── 2018-D2 - Decoding an iOS Vulnerability - Adam Donenfeld.pdf ├── 2018-D2 - The Road to iOS Sandbox Escape - Rani Idan.pdf ├── 2018-Zhipeng Huo Yuebin Sun Chuanda Ding - Caught you - reveal and exploit IPC logic bugs inside Apple.pdf ├── 2019-08-HITB-D2 - Recreating an iOS 0day Jailbreak Out of Apple’s Security Updates - Stefan Esser.pdf ├── 2019-D2 - Recreating an iOS 0day Jailbreak Out of Apple’s Security Updates - Stefan Esser.pdf ├── 2019-OBTS_v2-Ian_Beer-vm_map'ing out XNU.pdf ├── 2019-bluehatil-Life as an iOS Attacker.pdf └── xpc_data_release-Ian-Beer └── xpc_data_release ├── Makefile ├── nsxpc_client.m ├── run.sh ├── shared_data.c └── writeup.txt /ARM exploitation/Armis-CDPwn-ASLR-Bypass-WP_1.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/IdanBanani/iOS-Vulnerability-Research/HEAD/ARM exploitation/Armis-CDPwn-ASLR-Bypass-WP_1.pdf -------------------------------------------------------------------------------- /ARM exploitation/Slides-SAS_final (1).pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/IdanBanani/iOS-Vulnerability-Research/HEAD/ARM exploitation/Slides-SAS_final (1).pdf -------------------------------------------------------------------------------- /ARM exploitation/exploitation_on_arm_based_systems.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/IdanBanani/iOS-Vulnerability-Research/HEAD/ARM exploitation/exploitation_on_arm_based_systems.pdf -------------------------------------------------------------------------------- /ARM/Keynote_ArmResearchSummit2020_Azeria.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/IdanBanani/iOS-Vulnerability-Research/HEAD/ARM/Keynote_ArmResearchSummit2020_Azeria.pdf -------------------------------------------------------------------------------- /FRIDA/frida-boot.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/IdanBanani/iOS-Vulnerability-Research/HEAD/FRIDA/frida-boot.pdf -------------------------------------------------------------------------------- /FRIDA/r2frida_2021-r2con.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/IdanBanani/iOS-Vulnerability-Research/HEAD/FRIDA/r2frida_2021-r2con.pdf -------------------------------------------------------------------------------- /README.MD: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/IdanBanani/iOS-Vulnerability-Research/HEAD/README.MD -------------------------------------------------------------------------------- /iOS exploitation/2011-WWDC-session_206__introducing_xpc.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/IdanBanani/iOS-Vulnerability-Research/HEAD/iOS exploitation/2011-WWDC-session_206__introducing_xpc.pdf -------------------------------------------------------------------------------- /iOS exploitation/2012-BH_US_12_Esser_iOS_Kernel_Heap_Armageddon_WP.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/IdanBanani/iOS-Vulnerability-Research/HEAD/iOS exploitation/2012-BH_US_12_Esser_iOS_Kernel_Heap_Armageddon_WP.pdf -------------------------------------------------------------------------------- /iOS exploitation/2015-Auditing and Exploiting-IanBeer_JSS_Slides.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/IdanBanani/iOS-Vulnerability-Research/HEAD/iOS exploitation/2015-Auditing and Exploiting-IanBeer_JSS_Slides.pdf -------------------------------------------------------------------------------- /iOS exploitation/2015-BH_EU_Todesco-Attacking-The-XNU-Kernal-In-El-Capitain.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/IdanBanani/iOS-Vulnerability-Research/HEAD/iOS exploitation/2015-BH_EU_Todesco-Attacking-The-XNU-Kernal-In-El-Capitain.pdf -------------------------------------------------------------------------------- /iOS exploitation/2016-HITB-D2 - Stefan Esser - iOS 10 Kernel Heap Revisited.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/IdanBanani/iOS-Vulnerability-Research/HEAD/iOS exploitation/2016-HITB-D2 - Stefan Esser - iOS 10 Kernel Heap Revisited.pdf -------------------------------------------------------------------------------- /iOS exploitation/2018-D2 - Decoding an iOS Vulnerability - Adam Donenfeld.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/IdanBanani/iOS-Vulnerability-Research/HEAD/iOS exploitation/2018-D2 - Decoding an iOS Vulnerability - Adam Donenfeld.pdf -------------------------------------------------------------------------------- /iOS exploitation/2018-D2 - The Road to iOS Sandbox Escape - Rani Idan.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/IdanBanani/iOS-Vulnerability-Research/HEAD/iOS exploitation/2018-D2 - The Road to iOS Sandbox Escape - Rani Idan.pdf -------------------------------------------------------------------------------- /iOS exploitation/2018-Zhipeng Huo Yuebin Sun Chuanda Ding - Caught you - reveal and exploit IPC logic bugs inside Apple.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/IdanBanani/iOS-Vulnerability-Research/HEAD/iOS exploitation/2018-Zhipeng Huo Yuebin Sun Chuanda Ding - Caught you - reveal and exploit IPC logic bugs inside Apple.pdf -------------------------------------------------------------------------------- /iOS exploitation/2019-08-HITB-D2 - Recreating an iOS 0day Jailbreak Out of Apple’s Security Updates - Stefan Esser.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/IdanBanani/iOS-Vulnerability-Research/HEAD/iOS exploitation/2019-08-HITB-D2 - Recreating an iOS 0day Jailbreak Out of Apple’s Security Updates - Stefan Esser.pdf -------------------------------------------------------------------------------- /iOS exploitation/2019-D2 - Recreating an iOS 0day Jailbreak Out of Apple’s Security Updates - Stefan Esser.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/IdanBanani/iOS-Vulnerability-Research/HEAD/iOS exploitation/2019-D2 - Recreating an iOS 0day Jailbreak Out of Apple’s Security Updates - Stefan Esser.pdf -------------------------------------------------------------------------------- /iOS exploitation/2019-OBTS_v2-Ian_Beer-vm_map'ing out XNU.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/IdanBanani/iOS-Vulnerability-Research/HEAD/iOS exploitation/2019-OBTS_v2-Ian_Beer-vm_map'ing out XNU.pdf -------------------------------------------------------------------------------- /iOS exploitation/2019-bluehatil-Life as an iOS Attacker.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/IdanBanani/iOS-Vulnerability-Research/HEAD/iOS exploitation/2019-bluehatil-Life as an iOS Attacker.pdf -------------------------------------------------------------------------------- /iOS exploitation/xpc_data_release-Ian-Beer/xpc_data_release/Makefile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/IdanBanani/iOS-Vulnerability-Research/HEAD/iOS exploitation/xpc_data_release-Ian-Beer/xpc_data_release/Makefile -------------------------------------------------------------------------------- /iOS exploitation/xpc_data_release-Ian-Beer/xpc_data_release/nsxpc_client.m: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/IdanBanani/iOS-Vulnerability-Research/HEAD/iOS exploitation/xpc_data_release-Ian-Beer/xpc_data_release/nsxpc_client.m -------------------------------------------------------------------------------- /iOS exploitation/xpc_data_release-Ian-Beer/xpc_data_release/run.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/IdanBanani/iOS-Vulnerability-Research/HEAD/iOS exploitation/xpc_data_release-Ian-Beer/xpc_data_release/run.sh -------------------------------------------------------------------------------- /iOS exploitation/xpc_data_release-Ian-Beer/xpc_data_release/shared_data.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/IdanBanani/iOS-Vulnerability-Research/HEAD/iOS exploitation/xpc_data_release-Ian-Beer/xpc_data_release/shared_data.c -------------------------------------------------------------------------------- /iOS exploitation/xpc_data_release-Ian-Beer/xpc_data_release/writeup.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/IdanBanani/iOS-Vulnerability-Research/HEAD/iOS exploitation/xpc_data_release-Ian-Beer/xpc_data_release/writeup.txt --------------------------------------------------------------------------------