SkillAgentSearch skills...

Rubicon

No description available

GenerateConvertImprove

Install / Use

/learn @comsec-group/Rubicon
About this skill

Quality Score

0/100

Supported Platforms

Universal

README

Rubicon: Precise Microarchitectural Attacks with Page-Granular Massaging

Welcome to the Rubicon repository! Rubicon is the first deterministic, general-purpose memory massaging primitive for microarchitectural attacks. It enables precise and reliable control over where data lands in physical memory, something that attacks like Rowhammer and Spectre fundamentally depend on. By manipulating the state of the Linux allocator, Rubicon replaces fragile techniques like spraying and brute-force scanning with a fast, robust, and scalable solution. This opens the door to practical, high-reliability exploitation that was previously infeasible.

This repository provides all the resources necessary to explore, reproduce, and build upon our work. For more details about Rubicon, please visit our website or read our research paper.

Repository Overview

  • rubicon-mechanisms: Implements the core Rubicon mechanisms, designed to manipulate the Linux memory allocator for deterministic control over physical memory placement.
  • rubicon-microbenchmarks: Contains microbenchmarks used to evaluate the performance and effectiveness of the Rubicon mechanisms.
  • rubicon-blacksmith: Extends the Blacksmith Rowhammer fuzzer with Rubicon, creating a complete end-to-end Rowhammer attack.
  • rubicon-retbleed: Features the Rubicon-enhanced Retbleed attack, which precisely positions /etc/shadow at a known physical memory location, eliminating the need for the original Retbleed's lengthy scanning phase.

We hope Rubicon serves as a valuable resource for your research and development efforts. Contributions and feedback are always welcome!

Citing our Work

To cite Rubicon in academic papers, please use the following BibTeX entry:

@inproceedings{boelcskei_rubicon_2025,
	title = {{Rubicon: Precise Microarchitectural Attacks with Page-Granular Massaging}}, 
	url = {Paper=https://comsec.ethz.ch/wp-content/files/rubicon_eurosp25.pdf},
	booktitle = {{EuroS\&P}},
	author = {Bölcskei, Matej and Jattke, Patrick and Wikner, Johannes and Razavi, Kaveh},
	month = jun,
	year = {2025},
	keywords = {dir\_os, type\_conf}
}

Related Skills

node-connect

347.6k

Diagnose OpenClaw node connection and pairing failures for Android, iOS, and macOS companion apps

frontend-design

108.4k

Create distinctive, production-grade frontend interfaces with high design quality. Use this skill when the user asks to build web components, pages, or applications. Generates creative, polished code that avoids generic AI aesthetics.

openai-whisper-api

347.6k

Transcribe audio via OpenAI Audio Transcriptions API (Whisper).

qqbot-media

347.6k

QQBot 富媒体收发能力。使用 <qqmedia> 标签,系统根据文件扩展名自动识别类型(图片/语音/视频/文件)。

comsec-group

View profile

View on GitHub
GitHub Stars16
CategoryDevelopment
Updated4d ago
Forks3
comsec-group/rubicon

Security Score

85/100

Audited on Mar 30, 2026

No findings