IAIK / msrevelio
☆35Updated last year
Related projects: ⓘ
- Medusa Repository: Transynther tool and Medusa Attack☆19Updated 4 years ago
- Proof-of-concept implementation for the paper "Efficient and Generic Microarchitectural Hash-Function Recovery" (IEEE S&P 2024)☆25Updated last year
- Microarchitectural attack development frameworks for prototyping attacks in native code (C, C++, ASM) and in the browser☆60Updated 2 years ago
- The open-source component of Prime+Scope, published at CCS 2021☆26Updated last year
- Proof-of-concept implementation for the paper "Osiris: Automated Discovery of Microarchitectural Side Channels" (USENIX Security'21)☆52Updated 2 years ago
- ☆23Updated 6 months ago
- LLVM Implementation of different ShadowStack schemes for x86_64☆37Updated 4 years ago
- HW interface for memory caches☆26Updated 4 years ago
- Medusa Repository: Transynther tool and Medusa Attack☆18Updated 4 years ago
- Kasper: Scanning for Generalized Transient Execution Gadgets in the Linux Kernel☆53Updated 4 months ago
- A tool to sample a QEMU-KVM's memory access pattern at page level based on Intel VT-x☆18Updated 5 years ago
- Rage Against The Machine Clear: A Systematic Analysis of Machine Clears and Their Implications for Transient Execution Attacks☆15Updated 3 years ago
- ☆12Updated 2 years ago
- ☆33Updated 2 years ago
- Platypus Educational Samples☆14Updated 3 years ago
- Fuzzer that searches for vulnerabilities like Spectre and Meltdown in CPUs☆41Updated last year
- Simple AMD-V (SVM) Virtualization Extensions Demo☆18Updated 6 years ago
- Proof-of-concept implementation for the paper "Indirect Meltdown: Building Novel Side-Channel Attacks from Transient Execution Attacks" (…☆20Updated 11 months ago
- A tool for detecting Spectre vulnerabilities through fuzzing☆35Updated 3 years ago
- Proof-of-concept for I See Dead Micro-Ops transient execution attack☆14Updated 2 years ago
- ☆16Updated 2 years ago
- ARM CCA support for QEMU. Check wiki for instructions. https://github.com/Huawei/Huawei_CCA_RMM/wiki☆19Updated last year
- ☆20Updated 3 years ago
- Open source release of "Last-Level Cache Side-Channel Attacks Are Feasible in the Modern Public Cloud" (ASPLOS '24)☆14Updated last month
- Repository of the paper "Reproducing Spectre Attack with gem5, How To Do It Right?"☆10Updated last year
- Opening Pandora's Box: A Systematic Study of New Ways Microarchitecture can Leak Private Data☆20Updated last year
- A version of Griffin used to provide program traces☆15Updated 4 years ago
- This repository contains several tools to perform Prefetch Side-Channel Attacks☆57Updated 7 years ago
- Proof-of-concept implementation for the paper "CacheWarp: Software-based Fault Injection using Selective State Reset" (USENIX Security 20…☆53Updated last month
- Reload+Refresh PoC☆13Updated 4 years ago