IOS 安全学习资料汇总IOS 安全学习资料汇总

IOS安全学习资料汇总

(1) IOS安全学习网站收集：

samdmarshall.com
www.exploit-db.com
reverse.put.as
highaltitudehacks.com/security/
www.dllhook.com/
www.securitylearn.net/archives/
securitycompass.github.io/iPhoneLabs/…
security.ios-wiki.com
www.opensecuritytraining.info/IntroARM.ht…
truesecdev.wordpress.com/
resources.infosecinstitute.com/ios-applica…
esoftmobile.com/2014/02/14/…
bbs.iosre.com
bbs.chinapyg.com
blog.pangu.io/
yonsm.net/
nianxi.net/
cocoahuke.com/
blog.0xbbc.com
blog.imaou.com/
github.com/pandazheng/…
drops.wooyun.org
bbs.pediy.com
www.blogfshare.com/
github.com/michalmalik…
blog.qwertyoruiop.com/
github.com/secmobi/wik…
contagioexchange.blogspot.com/
contagiominidump.blogspot.com/
github.com/secmobi
www.owasp.org/index.php/O…
blog.dornea.nu/2014/10/29/…
www.dllhook.com/post/58.htm…
thexploit.com/category/se…
github.com/secmobi/wik…
github.com/mdsecresear…
sectools.org/tag/os-x/
googleprojectzero.blogspot.com/
googleprojectzero.blogspot.com/2014/10/mor…
www.macexploit.com/
code.google.com/p/google-se…
code.google.com/p/google-se…
googleprojectzero.blogspot.com/2014/11/pwn…
www.blackhat.com/docs/us-15/…
www.youtube.com/watch?v=rxU…
www.theiphonewiki.com/wiki/Firmwa…
www.trustedbsd.org/mac.html
googleprojectzero.blogspot.com/2014/10/mor…
code.google.com/p/google-se…
support.apple.com/zh-cn/HT205…
www.apple.com/support/sec…
opensource.apple.com/tarballs/
mobile-security.zeef.com/oguzhan.top…
www.powerofcommunity.net
cn.0day.today/exploits
recon.cx/2016/traini…
www.exploit-db.com/osx-rop-exp…
www.offensive-security.com/vulndev/evo…
www.yumpu.com/en/document…
contagiodump.blogspot.com/
www.dllhook.com/post/138.ht…
shell-storm.org/blog/Return…
medium.com/@harryworld…
www.poboke.com/study/rever…
www.offensive-security.com/vulndev/evo…
www.exploit-db.com/osx-rop-exp…
phrack.org/issues/69/1…
www.exploit-db.com/docs/28479.…
speakerdeck.com/milkmix/ios…

(2) IOS安全优秀博客文章

datatheorem.github.io/TrustKit/
ho.ax/posts/2012/…
www.securitylearn.net/tag/pentest…
truesecdev.wordpress.com/2015/04/09/…
github.com/secmobi/wik…
bbs.iosre.com/t/debugserv…
bbs.pediy.com/showthread.…
bbs.pediy.com/showthread.…
blog.darkrainfall.org/2013/01/os-…
dvlabs.tippingpoint.com/blog/2009/0…
drops.wooyun.org/papers/5309
www.blogfshare.com/category/io…
www.safaribooksonline.com/library/vie…
soundly.me/osx-injecti…
nadavrub.wordpress.com/2015/07/23/…
blog.dewhurstsecurity.com/
github.com/project-ima…
github.com/iSECPartner…
www.nowsecure.com/blog/
lightbulbone.com/
www.tanhao.me/pieces/1515…
dongaxis.github.io/
truesecdev.wordpress.com/2015/04/09/…

(3) IOS安全优秀GitHub

Contains all example codes for O'Reilly's iOS 9 Swift Programming Cookbook
github.com/vandadnp/iO…
XCodeGhost清除脚本
github.com/pandazheng/…
Apple OS X ROOT提权API后门
github.com/tihmstar/ro…
Effortless and universal SSL pinning for iOS and OS X
github.com/datatheorem…
Patch PE, ELF, Mach-O binaries with shellcode
github.com/secretsquir…
iReSign allows iDevice app bundles (.ipa) files to be signed or resigned with a digital certificate from Apple for distribution
github.com/maciekish/i…
A Mach-O Load Command deobfuscator
github.com/x43x61x69/M…
Dylib插入Mach-O文件
github.com/Tyilo/inser…
dylib injector for mach-o binaries
github.com/KJCracks/yo…
Fast iOS executable dumper
github.com/KJCracks/Cl…
Binary distribution of the libimobiledevice library for Mac OS X
github.com/benvium/lib…
python utilities related to dylib hijacking on OS X
github.com/synack/Dyli…
OSX dylib injection
github.com/scen/osxinj
IOS IPA package refine and resign
github.com/Yonsm/iPAFi…
ROP Exploitation
github.com/JonathanSal…
Class-dump any Mach-o file without extracting it from dyld_shared_cache
github.com/limneos/cla…
Scan an IPA file and parses its info.plist
github.com/apperian/iO…
A PoC Mach-O infector via library injection
github.com/gdbinit/osx…
IOS-Headers
github.com/MP0w/iOS-He…
Interprocess Code injection for Mac OS X
github.com/rentzsch/ma…
OS X Auditor is a free Mac OS X computer forensics tool
github.com/jipegit/OSX…
remove PIE for osx
github.com/CarinaTT/My…
A TE executable format loader for IDA
github.com/gdbinit/TEL…
Mobile Security Framework
github.com/ajinabraham…
A library that enables dynamically rebinding symbols in Mach-O binaries running on iOS
github.com/facebook/fi…
OSX and iOS related security tools
github.com/ashishb/osx…
Introspy-Analyzer
github.com/iSECPartner…
Dumps decrypted mach-o files from encrypted iPhone applications from memory to disk
github.com/stefanesser…
Simple Swift wrapper for Keychain that works on iOS and OS X
github.com/kishikawaka…
idb is a tool to simplify some common tasks for iOS pentesting and research
github.com/dmayer/idb
Pentesting apps using Parse as a backend
github.com/igrekde/Par…
The iOS Reverse Engineering Toolkit
github.com/Vhacker/iRE…
XNU - Mac OS X kernel
github.com/opensource-…
Code injection + payload communications for OSX
github.com/mhenr18/inj…
iOS related code
github.com/samdmarshal…
OSX injection tutorial: Hello World
github.com/arbinger/os…
Reveal Loader dynamically loads libReveal.dylib (Reveal.app support) into iOS apps on jailbroken devices
github.com/heardrwt/Re…
NSUserDefaults category with AES encrypt/decrypt keys and values
github.com/NZN/NSUserD…
Blackbox tool to disable SSL certificate validation
github.com/iSECPartner…
应用逆向工程抽奖插件
github.com/iosre/iosre…
Untested iOS Tweak to hook OpenSSL functions
github.com/nabla-c0d3/…
IOS .plist encryptor project. Protect your *.plist files from jailbroken
github.com/FelipeFMMob…
Re-codesigning tool for iOS ipa file
github.com/hayaq/recod…
Scans iPhone/iPad/iPod applications for PIE flags
github.com/stefanesser…
xnu local privilege escalation via cve-2015-1140 IOHIDSecurePromptClient injectStringGated heap overflow | poc||gtfo
github.com/kpwn/vpwn
MachOView
github.com/gdbinit/Mac…
A cross-platform protocol library to communicate with iOS devices
github.com/libimobiled…
WireLurkerDetector
github.com/pandazheng/…
Released in accordance with GPL licensing
github.com/p0sixspwn/p…
xnu local privilege escalation via cve-2015
github.com/kpwn/tpwn
A simple universal memory editor (game trainer) on OSX/iOS
github.com/pandazheng/…
BinaryCookieReader源码
github.com/pandazheng/…
Tiamo's bootloader
github.com/pandazheng/…
incomplete ios 8.4.1 jailbreak by Kim Jong Cracks
github.com/pandazheng/…
Security Scanner for OSX
github.com/openscanner…
Sample kernel extension that demonstrates how to hide from kextstat
github.com/rc0r/KextHi…
Example Mac OS X kernel extension that resolves symbols from the running kernel image
github.com/snare/Kerne…
Sample Mac OS X (Mountain Lion) kernel extension that demonstrates how to hide files by hijacking getdirentries syscalls
github.com/rc0r/FileHi…
Sample Mac OS X (Mountain Lion) kernel extension that demonstrates how to hide a process by modifying allproc and pidhashtbl
github.com/rc0r/Proces…
The Mach-O disassembler. Now 64bit and Xcode 6 compatible
github.com/x43x61x69/o…
A Mach-O binary codesign remover
github.com/x43x61x69/c…
A Mach-O Load Command deobfuscator
github.com/x43x61x69/M…
Very simple keylogger for self-quantifying on Mac OS X
github.com/dannvix/key…
Manage iOS devices through iTunes lib
github.com/xslim/mobil…
Detects the hardware, software and display of the current iOS or Mac OS X device at runtime
github.com/lmirosevic/…
Python Arsenal for Reverse Engineering
pythonarsenal.com/
A OS X crypto ransomware PoC
github.com/gdbinit/gop…

(4) IOS安全优秀书籍

《Hacking and Securing iOS Applications》
《Mac OS X and iOS Internals:To the Apple’s Core》
《OS X and iOS Kernel Programming》
《OS X ABI Mach-O File Format》
《The Mac Hacker’s Handbook》
《Mac OS X Interals:A Systems Approach》
《黑客攻防技术宝典-IOS实战篇》
《IOS应用安全攻防实战》
《IOS应用逆向工程》
《IOS取证实战》
《安全技术大系：IOS取证分析》

IOS 安全学习资料汇总

IOS安全学习资料汇总

(1) IOS安全学习网站收集：

(2) IOS安全优秀博客文章

(3) IOS安全优秀GitHub

(4) IOS安全优秀书籍

(5) IOS安全Twitter

(6) OSX/IOS Exploit分析文章

ipsw

Mac下的一些软件