KCon is a famous Hacker Con powered by Knownsec Team.

Signature maker plugin for IDA 9.0

Aids in reverse engineering libraries from dyld_shared_cache in IDA

IDA plugin to find code cross references to virtual functions using PAC codes

An introduction to ARM64 assembly on Apple Silicon Macs

Device management schema data for MDM.

A tool for manipulating IMG4, IM4M and IM4P files

Published security vulnerabilities for Apple platform with linked public repositories

Random rev of shortcuts (mostly WorkflowKit)

IPSW Diffs

AEA metadata dumper

Decrypt an encrypted iOS backup created by iTunes on Windows or MacOS

macOS/ XNU kernel buffer overflow. Introduced in macOS 14.0 (xnu-10002.1.13), fixed in macOS 14.5 (xnu-10063.121.3)

Yet another xpc sniffer

AEA OTA/IPSW decryption

A small program written in C that is designed to load 32/64-bit shellcode and allow for execution or debugging. Can also output PE files from shellcode.

Dopamine is a semi-untethered jailbreak for iOS 15 and 16

Pure python3 implementation for working with iDevices (iPhone, etc...).

macOS RootKit that can fuzz binaries/drivers, do kernel r/w, hook kernel and userspace functions, set custom breakpoints, GDB stub (in progress), match KDK kernels with DWARF debug symbols to relea…

Repository for information about 0-days exploited in-the-wild.

Set of tools to analyze Windows sandboxes for exposed attack surface.

WTF Snapshot fuzzing of macOS targets

Some old unexploited remote kernel memory corruption PoCs

IDA loader for SEP firmware with dyld cache support.

IDA Plugin to automatically identify and set enums for standard functions

Reversing the Apple sandbox