21 skills found
speed47 / Spectre Meltdown CheckerReptar, Downfall, Zenbleed, ZombieLoad, RIDL, Fallout, Foreshadow, Spectre, Meltdown vulnerability/mitigation checker for Linux & BSD
nsacyber / Hardware And Firmware Security GuidanceGuidance for the Spectre, Meltdown, Speculative Store Bypass, Rogue System Register Read, Lazy FP State Restore, Bounds Check Bypass Store, TLBleed, and L1TF/Foreshadow vulnerabilities as well as general hardware and firmware security guidance. #nsacyber
microsoft / Side Channel FuzzerRevizor - Hardware fuzzing for the age of speculation
mniip / Spectre Meltdown PocA semi-demi-working proof of concept for a mix of spectre and meltdown vulnerabilities
vusec / Bhi Spectre BhbThis repository contains exploit and reverse-engineering source code regarding the Spectre-BHB/Branch History Injection vulnerability
Viralmaniar / In Spectre MeltdownThis tool allows to check speculative execution side-channel attacks that affect many modern processors and operating systems designs. CVE-2017-5754 (Meltdown) and CVE-2017-5715 (Spectre) allows unprivileged processes to steal secrets from privileged processes. These attacks present 3 different ways of attacking data protection measures on CPUs enabling attackers to read data they shouldn't be able to. This tool is originally based on Microsoft: https://support.microsoft.com/en-us/help/4073119/protect-against-speculative-execution-side-channel-vulnerabilities-in
cdisselkoen / PitchforkDetecting Spectre vulnerabilities using symbolic execution, built on angr (github.com/angr/angr)
OleksiiOleksenko / SpecFuzzA tool for detecting Spectre vulnerabilities through fuzzing
hw-sw-contracts / RevizorFuzzer that searches for vulnerabilities like Spectre and Meltdown in CPUs
winter2020 / Oo7oo7, a binary analysis tool to defend against Spectre vulnerabilities
Anton-Cao / Spectrev2 PocProof of Concept of exploit against Spectre Variant 2 Vulnerability
binsec / HauntedBinsec/Haunted is an extension of Binsec to verify speculative constant-time and detect Spectre attacks.
kianenigma / Meltdown SpectreProof of Concept implementation + Brief Tutorial of the Meltdown and Spectre attacks [+ Flush/Realod]
vibrato / Inspec MeltdownspectreInspec profile to test for the presence of the Meltdown/Spectre vulnerabilities
yadav-sachin / Spectre AttackVariant 1 of the Spectre attack which is to bypass the bounds checks in the target process and retrieve the private data. Here in this example, I have demonstrated how to retrieve a string data using the attack.
jarmouz / Spectre MeltdownMeltdown and Spectre : CPU vulnerabilities — Explained and Exploited
ikemmm / Rust SpectreA Rust iteration of the Spectre Variant 1 attack formulated in my undergraduate research. The original thesis' text explores the feasibility of exploitation of the Spectre vulnerability in security-focused languages, from which Rust is taken as a prime example.
binsec / Haunted BenchBenchmarks for Binsec/Rel tool.
biringaChi / SPECDETOfficial Implementation of SPECDET: Static and Microarchitectural ML-Based Approaches for Detecting Spectre Vulnerabilities and Attacks. HASP’22 in Conjunction With The 55th IEEE/ACM International Symposium on Microarchitecture (MICRO’22).
frblazquez / ACAAdvanced Computer Architecture at EPFL.
