├── README.md
├── iOS10_AppleAVE_and_IOSurface_Kernel_Pwn.pdf
├── iOS10_Kernel_Heap_Changes.pdf
├── iOS10_Mach_Portal.pdf
├── iOS4_Kernel_Heap_Feng_Shui.pdf
├── iOS6_Evasi0n.pdf
├── iOS6_Exploitation_and_iOS7_Changes.pdf
├── iOS6_Kernel_Exploit.pdf
├── iOS6_Kernel_Heap.pdf
├── iOS8_Attack_Surface.pdf
├── iOS9_IOHIDResourceUserClient_IOKit_Exploit.pdf
├── iOS9_IOMobileFrameBuffer_and_iOS10_Changes.pdf
├── iOS9_Pegasus_iOS_Kernel_Exploit.pdf
├── iOS9_XPC_SandBox_Escape.pdf
└── macOS10.10-11_XNU_Kernel_Attack.pdf


/README.md:
--------------------------------------------------------------------------------
 1 | # GreatiOSJailbreakMaterial - Only List the Most Useful Materials Here!
 2 | 
 3 | twitter@ http://twitter.com/SparkZheng
 4 | 
 5 | weibo@ http://weibo.com/zhengmin1989
 6 | 
 7 | * Projects:
 8 | 
 9 | iOS 8.4.1 Yalu Open Source Jailbreak Project: https://github.com/kpwn/yalu
10 | 
11 | OS-X-10.11.6-Exp-via-PEGASUS: https://github.com/zhengmin1989/OS-X-10.11.6-Exp-via-PEGASUS
12 | 
13 | iOS 9.3.* Trident exp: https://github.com/benjamin-42/Trident
14 | 
15 | iOS 10.1.1 mach_portal incomplete jailbreak: https://bugs.chromium.org/p/project-zero/issues/detail?id=965#c2
16 | 
17 | iOS 10.2 jailbreak source code: https://github.com/kpwn/yalu102
18 | 
19 | Local Privilege Escalation for macOS 10.12.2 and XNU port Feng Shui: https://github.com/zhengmin1989/macOS-10.12.2-Exp-via-mach_voucher
20 | 
21 | Remotely Compromising iOS via Wi-Fi and Escaping the Sandbox: https://www.youtube.com/watch?v=bP5VP7vLLKo
22 | 
23 | Pwn2Own 2017 Safari sandbox: https://github.com/maximehip/Safari-iOS10.3.2-macOS-10.12.4-exploit-Bugs
24 | 
25 | Live kernel introspection on iOS: https://bazad.github.io/2017/09/live-kernel-introspection-ios/
26 | 
27 | iOS 11.1.2 IOSurfaceRootUserClient double free to tfp0: https://bugs.chromium.org/p/project-zero/issues/detail?id=1417
28 | 
29 | iOS 11.3.1 MULTIPATH kernel heap overflow to tfp0: https://bugs.chromium.org/p/project-zero/issues/detail?id=1558
30 | 
31 | iOS 11.3.1 empty_list kernel heap overflow to tfp0: https://bugs.chromium.org/p/project-zero/issues/detail?id=1564
32 | 
33 | Keep updating...please follow, thanks.
34 | 
35 | 


--------------------------------------------------------------------------------
/iOS10_AppleAVE_and_IOSurface_Kernel_Pwn.pdf:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhengmin1989/GreatiOSJailbreakMaterial/0b42793bdf6d87e397b4653bd4a78c50ac9f457a/iOS10_AppleAVE_and_IOSurface_Kernel_Pwn.pdf


--------------------------------------------------------------------------------
/iOS10_Kernel_Heap_Changes.pdf:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhengmin1989/GreatiOSJailbreakMaterial/0b42793bdf6d87e397b4653bd4a78c50ac9f457a/iOS10_Kernel_Heap_Changes.pdf


--------------------------------------------------------------------------------
/iOS10_Mach_Portal.pdf:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhengmin1989/GreatiOSJailbreakMaterial/0b42793bdf6d87e397b4653bd4a78c50ac9f457a/iOS10_Mach_Portal.pdf


--------------------------------------------------------------------------------
/iOS4_Kernel_Heap_Feng_Shui.pdf:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhengmin1989/GreatiOSJailbreakMaterial/0b42793bdf6d87e397b4653bd4a78c50ac9f457a/iOS4_Kernel_Heap_Feng_Shui.pdf


--------------------------------------------------------------------------------
/iOS6_Evasi0n.pdf:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhengmin1989/GreatiOSJailbreakMaterial/0b42793bdf6d87e397b4653bd4a78c50ac9f457a/iOS6_Evasi0n.pdf


--------------------------------------------------------------------------------
/iOS6_Exploitation_and_iOS7_Changes.pdf:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhengmin1989/GreatiOSJailbreakMaterial/0b42793bdf6d87e397b4653bd4a78c50ac9f457a/iOS6_Exploitation_and_iOS7_Changes.pdf


--------------------------------------------------------------------------------
/iOS6_Kernel_Exploit.pdf:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhengmin1989/GreatiOSJailbreakMaterial/0b42793bdf6d87e397b4653bd4a78c50ac9f457a/iOS6_Kernel_Exploit.pdf


--------------------------------------------------------------------------------
/iOS6_Kernel_Heap.pdf:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhengmin1989/GreatiOSJailbreakMaterial/0b42793bdf6d87e397b4653bd4a78c50ac9f457a/iOS6_Kernel_Heap.pdf


--------------------------------------------------------------------------------
/iOS8_Attack_Surface.pdf:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhengmin1989/GreatiOSJailbreakMaterial/0b42793bdf6d87e397b4653bd4a78c50ac9f457a/iOS8_Attack_Surface.pdf


--------------------------------------------------------------------------------
/iOS9_IOHIDResourceUserClient_IOKit_Exploit.pdf:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhengmin1989/GreatiOSJailbreakMaterial/0b42793bdf6d87e397b4653bd4a78c50ac9f457a/iOS9_IOHIDResourceUserClient_IOKit_Exploit.pdf


--------------------------------------------------------------------------------
/iOS9_IOMobileFrameBuffer_and_iOS10_Changes.pdf:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhengmin1989/GreatiOSJailbreakMaterial/0b42793bdf6d87e397b4653bd4a78c50ac9f457a/iOS9_IOMobileFrameBuffer_and_iOS10_Changes.pdf


--------------------------------------------------------------------------------
/iOS9_Pegasus_iOS_Kernel_Exploit.pdf:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhengmin1989/GreatiOSJailbreakMaterial/0b42793bdf6d87e397b4653bd4a78c50ac9f457a/iOS9_Pegasus_iOS_Kernel_Exploit.pdf


--------------------------------------------------------------------------------
/iOS9_XPC_SandBox_Escape.pdf:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhengmin1989/GreatiOSJailbreakMaterial/0b42793bdf6d87e397b4653bd4a78c50ac9f457a/iOS9_XPC_SandBox_Escape.pdf


--------------------------------------------------------------------------------
/macOS10.10-11_XNU_Kernel_Attack.pdf:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zhengmin1989/GreatiOSJailbreakMaterial/0b42793bdf6d87e397b4653bd4a78c50ac9f457a/macOS10.10-11_XNU_Kernel_Attack.pdf


--------------------------------------------------------------------------------