Home

Jonathan Levin’s *OS Internals[1] also features a plethora of useful tools for iOS/Apple analysis[2]. Tools such as joker and jtool are useful for binary format analysis (Mach-O files and the iOS kernel). These tools rely on a powerful machlib library that provides all the lower-layer functionality for binary format analysis. Unfortunately machlib is not downloadable or open source and cannot be expanded or used for other use cases.

The goal of this project is to create an open source equivalent of machlib: an library for inspecting Apple binary format files, particularly the iOS kernelcache. It will provide features to list library calls, system calls, kernel extensions, segments and sections and others. It will be a library that could then be used as a back-end for other tools.