GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → argp → Iboot64helper

argp / Iboot64helper

IDAPython loader to help with AArch64 iBoot, iBEC, and SecureROM reverse engineering

Programming Languages

python
139335 projects - #7 most used programming language

Labels

iosappleiphoneaarch64arm64idaidapython

Projects that are alternatives of or similar to Iboot64helper

Doesitarm
🦾 A list of reported app support for Apple Silicon and the new Apple M1 Macs
Stars: ✭ 3,200 (+1593.12%)
Mutual labels:  apple, arm64, aarch64
Amie
A Minimalist Instruction Extender for the ARM architecture and IDA Pro
Stars: ✭ 136 (-28.04%)
Mutual labels:  ida, idapython, aarch64
Simdjson
Parsing gigabytes of JSON per second
Stars: ✭ 15,115 (+7897.35%)
Mutual labels:  arm64, aarch64
M1 Test
Java编译速度对比测试: M1 MacBook Air vs Intel Core i9 MacBook Pro
Stars: ✭ 111 (-41.27%)
Mutual labels:  arm64, aarch64
Bender
Easily craft fast Neural Networks on iOS! Use TensorFlow models. Metal under the hood.
Stars: ✭ 1,728 (+814.29%)
Mutual labels:  apple, iphone
Popcorntimetv
Popcorn Time for Apple TV 4, iPhone and iPad
Stars: ✭ 1,216 (+543.39%)
Mutual labels:  apple, iphone
Ida For Delphi
IDA Python Script to Get All function names from Event Constructor (VCL)
Stars: ✭ 92 (-51.32%)
Mutual labels:  ida, idapython
Docker Homebridge
Homebridge Docker. HomeKit support for the impatient using Docker on x86_64, Raspberry Pi (armhf) and ARM64. Includes ffmpeg + libfdk-aac.
Stars: ✭ 1,847 (+877.25%)
Mutual labels:  arm64, aarch64
Sbsanimoji
🐵 Animoji app using Apples AvatarKit
Stars: ✭ 884 (+367.72%)
Mutual labels:  apple, iphone
Mcsema
Framework for lifting x86, amd64, aarch64, sparc32, and sparc64 program binaries to LLVM bitcode
Stars: ✭ 2,198 (+1062.96%)
Mutual labels:  ida, aarch64
Apple Device Model List
All Apple devices model name list. 通过内部编号判断 iOS 设备型号。
Stars: ✭ 149 (-21.16%)
Mutual labels:  apple, iphone
Mandibule
linux elf injector for x86 x86_64 arm arm64
Stars: ✭ 171 (-9.52%)
Mutual labels:  arm64, aarch64
Frida Snippets
Hand-crafted Frida examples
Stars: ✭ 1,081 (+471.96%)
Mutual labels:  arm64, aarch64
Necromancer
IDA Pro V850 Processor Module Extension
Stars: ✭ 21 (-88.89%)
Mutual labels:  ida, idapython
Flare Ida
IDA Pro utilities from FLARE team
Stars: ✭ 1,374 (+626.98%)
Mutual labels:  ida, idapython
Libnx
Library for Switch Homebrew
Stars: ✭ 908 (+380.42%)
Mutual labels:  arm64, aarch64
Wag
WebAssembly compiler implemented in Go
Stars: ✭ 177 (-6.35%)
Mutual labels:  arm64, aarch64
Keypatch
Multi-architecture assembler for IDA Pro. Powered by Keystone Engine.
Stars: ✭ 939 (+396.83%)
Mutual labels:  ida, arm64
Hexrayspytools
IDA Pro plugin which improves work with HexRays decompiler and helps in process of reconstruction structures and classes
Stars: ✭ 873 (+361.9%)
Mutual labels:  ida, idapython
Ghidra Switch Loader
Nintendo Switch loader for Ghidra
Stars: ✭ 146 (-22.75%)
Mutual labels:  arm64, aarch64
View All Similar Projects ➔

iBoot64helper

Introduction

iBoot64helper is now an IDA loader!

Just copy iBoot64helper.py to your ~/.idapro/loaders/ (or your IDA/loaders/) directory, launch IDA, and open a decrypted iBoot, iBEC, or SecureROM binary image.

This aims to become an IDAPython utility to help with iBoot and SecureROM reverse engineering. Currently it a) locates the image's proper loading address, b) rebases the image, c) identifies functions based on common AArch64 function prologues, and d) finds and renames some interesting functions.

As you can see in the screenshot below, 1920 functions are recognized after running it on iBoot version 5540.0.129.

I will be adding features to it, identifying more functions, etc.

IDA support

iBoot64helper now supports IDA 7.5 and lower versions (only tested with IDA's builtin IDAPython for Python 3).

Decrypting images

For decrypting images you should use xerub's img4lib; the ultimate IMG4 utility.

SecureROM

If you have a device vulnerable to axi0mX's checkm8, you can use ./ipwndfu --dump-rom to get a dump of the SecureROM image from your device and use it with iBoot64helper.

References

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].