By 熊猫正正

(1)  IOS安全学习网站收集:


(2)  IOS安全优秀博客文章



(3)  IOS安全优秀GitHub


Apple OS X ROOT提权API后门


OSX dylib injection

IOS IPA package refine and resign

ROP Exploitation

Scan an IPA file and parses its info.plist

A PoC Mach-O infector via library injection


Interprocess Code injection for Mac OS X

OS X Auditor is a free Mac OS X computer forensics tool

remove PIE for osx

A TE executable format loader for IDA

Mobile Security Framework

A library that enables dynamically rebinding symbols in Mach-O binaries running on iOS

OSX and iOS related security tools


Dumps decrypted mach-o files from encrypted iPhone applications from memory to disk

Simple Swift wrapper for Keychain that works on iOS and OS X

idb is a tool to simplify some common tasks for iOSpentesting and research

Pentesting apps using Parse as a backend

The iOS Reverse Engineering Toolkit

XNU – Mac OS X kernel

Code injection + payload communications for OSX

iOS related code

OSX injection tutorial: Hello World

Reveal Loader dynamically loads libReveal.dylib ( support) into iOS apps on jailbroken devices

NSUserDefaults category with AES encrypt/decrypt keys and values

Blackbox tool to disable SSL certificate validation


Untested iOS Tweak to hook OpenSSL functions

IOS *.plistencryptor project. Protect your *.plist files from jailbroken

Re-codesigning tool for iOSipa file

Scans iPhone/iPad/iPod applications for PIE flags



(4)  IOS安全优秀书籍

Hacking and Securing iOS Applications

Mac OS X and iOSInternals:To the Apple’s Core

OS X and iOS Kernel Programming

OS X ABI Mach-O File Format

The Mac Hacker’s Handbook

Mac OS X Interals:A Systems Approach







(5)  IOS安全Twitter


原文链接:    原文作者:熊猫正正