IDA loader for Apple's iBoot, SecureROM and AVPBooter

Last update: Dec 23, 2022

Overview

IDA iBoot Loader

IDA loader for Apple's iBoot, SecureROM and AVPBooter

Installation

Copy iboot-loader.py to the loaders folder in IDA directory.

Credits

This code is based on argp's iBoot64helper
iBoot-Binja-Loader

You might also like...

User-friendly reference finder in IDA

IDARefHunter Updated: This project's been introduced on IDA Plugin Contest 2021! Why do we need RefHunter? Getting reference information in one specif

29 Dec 4, 2022

Driver Buddy Reloaded is an IDA Pro Python plugin that helps automate some tedious Windows Kernel Drivers reverse engineering tasks.

Driver Buddy Reloaded Quickstart Table of Contents Installation Usage About Driver Buddy Reloaded Finding DispatchDeviceControl Labelling WDM & WDF St

199 Jan 4, 2023

An IDA pro python script to decrypt Qbot malware string

Qbot-Strings-Decrypter An IDA pro python script to decrypt Qbot malware strings.

6 Sep 1, 2022

Better-rtti-parser - IDA script to parse RTTI information in executable

RTTI parser Parses RTTI information from executable. Example HexRays decompiler view Before: After: Functions window Before: After: Structs window Ins

101 Jan 4, 2023

IDA Frida Plugin for tracing something interesting.

IDAFrida A simple IDA plugin to generate FRIDA script. Edit template for functions or you can use the default template. Select functions you want to t

133 Dec 24, 2022

Patching - Interactive Binary Patching for IDA Pro

Patching - Interactive Binary Patching for IDA Pro Overview Patching assembly code to change the behavior of an existing program is not uncommon in ma

589 Dec 30, 2022

RedDrop is a quick and easy web server for capturing and processing encoded and encrypted payloads and tar archives.

RedDrop Exfil Server Check out the accompanying MaverisLabs Blog Post Here! RedDrop Exfil Server is a Python Flask Web Server for Penetration Testers,

53 Nov 1, 2022

Dependency Combobulator is an Open-Source, modular and extensible framework to detect and prevent dependency confusion leakage and potential attacks.

Dependency Combobulator Dependency Combobulator is an Open-Source, modular and extensible framework to detect and prevent dependency confusion leakage

84 Dec 23, 2022

Dome - Subdomain Enumeration Tool. Fast and reliable python script that makes active and/or passive scan to obtain subdomains and search for open ports.

DOME - A subdomain enumeration tool Check the Spanish Version Dome is a fast and reliable python script that makes active and/or passive scan to obtai

329 Jan 1, 2023

Comments

noob question xD

hello, i wonder how to find base address per iboot file?, what im trying, always i get this !: [i] bootloader : RELEASE [!] Failed to find base address, it's now set to 0x0 [+] Rebasing to address 0x0

IDA 7.6 on windows

thanks

opened by P5-2005 4

Not sure if AVPBooter.vmapple2 is being rebased correctly

Loading file 'AVPBooter.vmapple2.bin' into database...
Detected file format: SecureROM (AArch64)
  0. Creating a new segment  (0000000000000000-0000000000028250) ... ... OK
[i] bootloader : RELEASE
[+] Rebasing to address 0x100000
Rebasing program to 0x0000000000100000...
[+] _image4_get_partial : 0x100828
[+] _panic : 0x10367c
[+] _platform_get_usb_serial_number_string : 0x102378
[+] _platform_get_usb_more_other_string : 0x102530
[+] _task_init : 0x1042ac
[+] _arm_exception_abort : 0x10e9d4
[+] _platform_get_usb_vendor_id : 0x107d00
[+] _usb_core_init : 0x104ee0
[+] _usb_init_with_controller : 0x104f58
[+] _der_expect_ia5string : 0x1009f0

I personally doubt 0x100000 is the correct rebase address, especially given the amount of errors in the pseudo code:

Although, I'm quite new to reversing iBoot so I could be very wrong though

opened by Naville 0

Releases(v1.0.1)

v1.0.1(Dec 20, 2022)

Fixes and improvments
Source code(tar.gz)
Source code(zip)
v1.0.0(Sep 21, 2021)
Rebase file to its correct base address

Find specific functions based on strings, functions xref or bytes pattern

Bonus for dev/debug images : find a lot of functions based on panic/assert (tested on 12.x 3Dtouchcal images)

Source code(tar.gz)
Source code(zip)

Owner

matteyeux

BadOps. Sometimes I write code

GitHub Repository

将hw时信息收集以及简单的漏洞操作步骤简单化

Braised-vegetables 将hw时信息收集以及简单的漏洞扫描操作步骤简单化使用subfinder(被动子域名爆破收集) subdomain(主动域名爆破) nabbu(端口扫描) httpx(探测目录浏览) crawlergo(360深度爬虫) chorme(谷歌浏览器) xray(漏

19 Nov 15, 2022

LaxrFar Python Obfuscator

LaxrFar Python Obfuscator Usage First do the things from "Upload to Webserver" o

5 Jul 19, 2022

Ducky Script is the payload language of Hak5 gear.

Ducky Script is the payload language of Hak5 gear. Since its introduction with the USB Rubber Ducky in 2010, Ducky Script has grown in capability while maintaining simplicity. Aided by Bash for logic

6 Oct 07, 2022

Lightweight and beneficial Dependency Injection plugin for apscheduler

Implementation of dependency injection for apscheduler Prerequisites: apscheduler-di solves the problem since apscheduler doesn't support Dependency I

11 Dec 07, 2022

Password database With special stuff

This is a Password database I made for myself, as I want to keep all my passwords in the same place. but still protected, shall anyone get access to the file. And so I made this simple password datab

9 Oct 30, 2022

A token logger for discord + steals Brave/Chrome passwords and usernames

Backdoor Machine - ❗ For educational purposes only ❗ A program made in python for stealing passwords and usernames from Google Chrome/Brave and tokenl

36 Jul 18, 2021

HTTP Protocol Stack Remote Code Execution Vulnerability CVE-2022-21907

CVE-2022-21907 Description POC for CVE-2022-21907: HTTP Protocol Stack Remote Code Execution Vulnerability. create by antx at 2022-01-17. Detail HTTP

365 Nov 30, 2022

Spring-0day/CVE-2022-22965

CVE-2022-22965 Spring Framework/CVE-2022-22965 Vulnerability ID: CVE-2022-22965/CNVD-2022-23942/QVD-2022-1691 Reproduce the vulnerability docker pull

4 Apr 05, 2022

SEBUAH TOOLS TERMUX CRACK AKUN FF HOMKI AKUN EPEP DAH SATU FOLLOW AE YA BROO AWOKWOK

print " INSTALL TOOLS " $ pkg update && upgrade $ pkg install python2 $ pkg install git $ pip2 install lolcat $ pip2 install bs4 $ pip2 install reques

2 Nov 29, 2021

This is a partial and quick and dirty proof of concept implementation of the following specifications to configure a tor client to use trusted exit relays only.

This is a partial and quick and dirty proof of concept implementation of the following specifications to configure a tor client to use trusted exit re

22 Nov 09, 2022

Grafana-POC(CVE-2021-43798)

Grafana-Poc 此工具请勿用于违法用途。一、使用方法：python3 grafana_hole.py 在domain.txt中填入ip:port 二、漏洞影响范围影响版本： Grafana 8.0.0 - 8.3.0 安全版本： Grafana 8.3.1, 8.2.7, 8.1.8,

8 Jan 03, 2023

Remote control your Greenbone Vulnerability Manager (GVM)

Greenbone Vulnerability Management Tools The Greenbone Vulnerability Management Tools gvm-tools are a collection of tools that help with remote contro

130 Dec 17, 2022

SpiderFoot automates OSINT collection so that you can focus on analysis.

SpiderFoot is an open source intelligence (OSINT) automation tool. It integrates with just about every data source available and utilises a range of m

9k Jan 08, 2023

DirBruter is a Python based CLI tool. It looks for hidden or existing directories/files using brute force method. It basically works by launching a dictionary based attack against a webserver and analyse its response.

DirBruter DirBruter is a Python based CLI tool. It looks for hidden or existing directories/files using brute force method. It basically works by laun

12 Dec 17, 2022

IDA loader for Apple's iBoot, SecureROM and AVPBooter

Related tags

Overview

IDA iBoot Loader

Installation

Credits

You might also like...

User-friendly reference finder in IDA

Driver Buddy Reloaded is an IDA Pro Python plugin that helps automate some tedious Windows Kernel Drivers reverse engineering tasks.

An IDA pro python script to decrypt Qbot malware string

Better-rtti-parser - IDA script to parse RTTI information in executable

IDA Frida Plugin for tracing something interesting.

Patching - Interactive Binary Patching for IDA Pro

RedDrop is a quick and easy web server for capturing and processing encoded and encrypted payloads and tar archives.

Dependency Combobulator is an Open-Source, modular and extensible framework to detect and prevent dependency confusion leakage and potential attacks.

Dome - Subdomain Enumeration Tool. Fast and reliable python script that makes active and/or passive scan to obtain subdomains and search for open ports.

Comments

noob question xD

Not sure if AVPBooter.vmapple2 is being rebased correctly

Releases(v1.0.1)

v1.0.1(Dec 20, 2022)

v1.0.0(Sep 21, 2021)

Owner

matteyeux

将hw时信息收集以及简单的漏洞操作步骤简单化

LaxrFar Python Obfuscator

Ducky Script is the payload language of Hak5 gear.

Lightweight and beneficial Dependency Injection plugin for apscheduler

Password database With special stuff

A token logger for discord + steals Brave/Chrome passwords and usernames

HTTP Protocol Stack Remote Code Execution Vulnerability CVE-2022-21907

Spring-0day/CVE-2022-22965

SEBUAH TOOLS TERMUX CRACK AKUN FF HOMKI AKUN EPEP DAH SATU FOLLOW AE YA BROO AWOKWOK

This is a partial and quick and dirty proof of concept implementation of the following specifications to configure a tor client to use trusted exit relays only.

Grafana-POC(CVE-2021-43798)

Remote control your Greenbone Vulnerability Manager (GVM)

SpiderFoot automates OSINT collection so that you can focus on analysis.

DirBruter is a Python based CLI tool. It looks for hidden or existing directories/files using brute force method. It basically works by launching a dictionary based attack against a webserver and analyse its response.

Blinder is a tool that will help you simplify the exploitation of blind SQL injection

GitHub Advance Security Compliance Action

BurpSuite Extension: Log4j2 RCE Scanner

Hack computer in the form of RAR files from all types of clients, even Linux

Proof of concept GnuCash Webinterface

Python Library For Ethical Hacker