Alternatives and similar repositories for ret2ns-Cortex-M-TrustZone

Users that are interested in ret2ns-Cortex-M-TrustZone are comparing it to the libraries listed below

• owenlly / Indirector_Artifact
  Artifact of "Indirector: High-Precision Branch Target Injection Attacks Exploiting the Indirect Branch Predictor" [USENIX Security 2024]
  ☆64Updated last year
• vusec / ghostrace
  ☆75Updated last year
• IntelLabs / PreSiFuzz
  Pre-Silicon Hardware Fuzzing Toolkit
  ☆60Updated 5 months ago
• cispa / indirect-meltdown
  Proof-of-concept implementation for the paper "Indirect Meltdown: Building Novel Side-Channel Attacks from Transient Execution Attacks" (…
  ☆22Updated 2 years ago
• hoseinyavarzadeh / Pathfinder_Attack
  Pathfinder: High-Resolution Control-Flow Attacks Exploiting the Conditional Branch Predictor
  ☆21Updated last year
• cispa / GhostWrite
  Proof-of-concept for the GhostWrite CPU bug.
  ☆118Updated last year
• vusec / slam
  Spectre based on Linear Address Masking
  ☆68Updated 2 years ago
• agra-uni-bremen / BinSym
  Symbolic execution for RISC-V machine code based on the formal LibRISCV ISA model
  ☆54Updated 8 months ago
• cispa / osiris
  Proof-of-concept implementation for the paper "Osiris: Automated Discovery of Microarchitectural Side Channels" (USENIX Security'21)
  ☆65Updated 8 months ago
• SyzTrust / syztrust
  SyzTrust's main repository. Start here to install.
  ☆19Updated last year
• sycuricon / MorFuzz
  Artifact evaluation of paper: MorFuzz: Fuzzing Processor via Runtime Instruction Morphing enhanced Synchronizable Co-simulation
  ☆49Updated 9 months ago
• pietroborrello / constantine
  Constantine is a compiler-based system to automatically harden programs against microarchitectural side channels
  ☆82Updated 3 months ago
• vusec / inspectre-gadget
  InSpectre Gadget: in-depth inspection and exploitability analysis of Spectre disclosure gadgets
  ☆59Updated last week
• codexlynx / hardware-attacks-state-of-the-art
  Microarchitectural exploitation and other hardware attacks.
  ☆96Updated last year
• amdprefetch / amd-prefetch-attacks
  ☆30Updated last year
• isec-tugraz / KernelSnitch
  ☆27Updated last year
• scy-phy / FetchBench
  ☆20Updated 2 years ago
• cispa / Security-RISC
  Proof-of-concept implementation for the paper "A Security RISC: Microarchitectural Attacks on Hardware RISC-V CPUs" (IEEE S&P 2023)
  ☆80Updated 3 months ago
• Keysight / FiSim
  An open-source deterministic fault attack simulator prototype
  ☆62Updated 5 years ago
• cispa / hammulator
  Proof-of-concept implementation for the paper "Hammulator: Simulate Now - Exploit Later" (DRAMSec 2023)
  ☆17Updated 4 months ago
• pr0me / SAFIREFUZZ
  Same-Architecture Firmware Rehosting and Fuzzing
  ☆129Updated last year
• cispa / Microarchitectural-Hash-Function-Recovery
  Proof-of-concept implementation for the paper "Efficient and Generic Microarchitectural Hash-Function Recovery" (IEEE S&P 2024)
  ☆33Updated 2 years ago
• vusec / uncontained
  Uncovering Container Confusion in the Linux Kernel
  ☆46Updated last year
• badramattack / badram
  ☆62Updated 11 months ago
• icicle-emu / icicle
  ☆187Updated 2 years ago
• TeumessianFox / ASPFuzz
  ASPFuzz: Fuzzing the AMD SP's ROM bootloader with LibAFL using QEMU full-system emulation
  ☆30Updated 2 years ago
• itewqq / SGX-PTE-SPY
  A migration for the page table entry based side-channel attack agains SGX enclaves.
  ☆19Updated last year
• 0x0atang / clkscrew
  CLKscrew Code and Scripts
  ☆28Updated 5 years ago
• isec-tugraz / msrevelio
  ☆45Updated 2 years ago
• Huawei / Huawei_CCA_QEMU
  ARM CCA support for QEMU. Check wiki for instructions. https://github.com/Huawei/Huawei_CCA_RMM/wiki
  ☆28Updated 2 years ago