Alternatives and similar repositories for badram

Users that are interested in badram are comparing it to the libraries listed below

• owenlly / Indirector_Artifact
  Artifact of "Indirector: High-Precision Branch Target Injection Attacks Exploiting the Indirect Branch Predictor" [USENIX Security 2024]
  ☆64Updated last year
• isec-tugraz / msrevelio
  ☆42Updated 2 years ago
• pietroborrello / ghidra-atom-microcode
  Ghidra Processor Module to disassemble and decompile the x86 Intel Atom microcode
  ☆86Updated 2 years ago
• vusec / inspectre-gadget
  InSpectre Gadget: in-depth inspection and exploitability analysis of Spectre disclosure gadgets
  ☆58Updated last month
• cispa / Microarchitectural-Hash-Function-Recovery
  Proof-of-concept implementation for the paper "Efficient and Generic Microarchitectural Hash-Function Recovery" (IEEE S&P 2024)
  ☆30Updated 2 years ago
• intel / vmtaint
  Full-VM taint analysis with Xen, Intel(R) Processor Trace and Triton.
  ☆41Updated 2 years ago
• misc0110 / PTEditor
  A small library to modify all page-table levels of all processes from user space for x86_64 and ARMv8.
  ☆277Updated 8 months ago
• libiht / libiht
  Intel Hardware Trace Library - Kernel Space Componment
  ☆78Updated 2 months ago
• comsec-group / retbleed
  Arbitrary Speculative Code Execution with Return Instructions
  ☆175Updated last year
• cispa / GhostWrite
  Proof-of-concept for the GhostWrite CPU bug.
  ☆116Updated last year
• itewqq / SGX-PTE-SPY
  A migration for the page table entry based side-channel attack agains SGX enclaves.
  ☆19Updated 10 months ago
• tandasat / Hello-VT-rp
  A simple hypervisor demonstrating the use of the Intel VT-rp (redirect protection) technology.
  ☆111Updated last year
• vusec / ghostrace
  ☆76Updated last year
• vusec / slam
  Spectre based on Linear Address Masking
  ☆67Updated 2 years ago
• BreakingBoot / FuzzUEr
  ☆16Updated last year
• hoseinyavarzadeh / Pathfinder_Attack
  Pathfinder: High-Resolution Control-Flow Attacks Exploiting the Conditional Branch Predictor
  ☆21Updated last year
• quarkslab / tritondse
  Triton-based DSE library with loading and exploration capabilities (and more!)
  ☆134Updated last week
• xairy / dma-attacks
  Materials for my DMA attacks talk and a collection of related links
  ☆62Updated last year
• vusec / bhi-spectre-bhb
  This repository contains exploit and reverse-engineering source code regarding the Spectre-BHB/Branch History Injection vulnerability
  ☆118Updated 3 years ago
• IntelLabs / kafl.linux
  Linux kernel branches for confidential compute research
  ☆20Updated 8 months ago
• amdprefetch / amd-prefetch-attacks
  ☆30Updated last year
• mahaloz / sailr-eval
  The SAILR paper's evaluation pipline for measuring the quality of decompilation
  ☆117Updated last year
• ahoi-attacks / heckler
  Breaking Confidential VMs with Malicious Interrupts (USENIX Security 2024)
  ☆34Updated last year
• eliaskousk / vmrun
  Simple AMD-V (SVM) Virtualization Extensions Demo
  ☆20Updated 8 years ago
• cassanof / safe-llvm
  LLVM Without The ROP Gadgets!
  ☆26Updated last year
• Jakob-Koschel / llvm-passes
  How to use LLVM passes
  ☆36Updated 3 years ago
• agra-uni-bremen / BinSym
  Symbolic execution for RISC-V machine code based on the formal LibRISCV ISA model
  ☆54Updated 6 months ago
• trailofbits / binrec-tob
  BinRec: Dynamic Binary Lifting and Recompilation
  ☆145Updated 2 years ago
• pietroborrello / constantine
  Constantine is a compiler-based system to automatically harden programs against microarchitectural side channels
  ☆82Updated last month
• intel / vmsifter
  Framework for in-VM test execution and monitoring, inspired by Sandsifter
  ☆12Updated 3 months ago