This repository includes the tools we use to boot/debug iOS kernel above QEMU.
Python scripts used for extract, decode, decompress the needed files to load the iOS kernel on QEMU.
GDB-Python scripts that enable analysis of the kernel in run time (print threads, tasks, etc)
Ghidra scripts that we wrote to ease the reverse engineering process.
A sample PIC (position-independent code) binary, that can be loaded into kernel memory for execution.
Custom Block Device Driver that is used to mount two block devices into iOS.
Used for tunneling TCP connections into and out of an iOS system emulated on QEMU.
Linux kernel module that can be used to run QEMU with KVM, without using a custom kernel with IDSR exits support.