cispa / GhostWriteLinks
Proof-of-concept for the GhostWrite CPU bug.
☆115Updated last year
Alternatives and similar repositories for GhostWrite
Users that are interested in GhostWrite are comparing it to the libraries listed below
Sorting:
- Spectre based on Linear Address Masking☆67Updated last year
- Artifact of "Indirector: High-Precision Branch Target Injection Attacks Exploiting the Indirect Branch Predictor" [USENIX Security 2024]☆63Updated last year
- InSpectre Gadget: in-depth inspection and exploitability analysis of Spectre disclosure gadgets☆56Updated 2 weeks ago
- ☆75Updated last year
- ☆18Updated last year
- Symbolic execution for RISC-V machine code based on the formal LibRISCV ISA model☆52Updated 5 months ago
- This repo demonstrates the Return-to-Non-Secure (ret2ns) vulnerability on ARM Cortex-M TrustZone. It contains the attack and defense demo…☆32Updated last year
- Arbitrary Speculative Code Execution with Return Instructions☆172Updated last year
- Training in Transient Execution and PhantomCALL, from Inception (SEC'23) Artifacts.☆39Updated last year
- Proof-of-concept implementation for the paper "Hammulator: Simulate Now - Exploit Later" (DRAMSec 2023)☆17Updated last month
- This repository contains exploit and reverse-engineering source code regarding the Spectre-BHB/Branch History Injection vulnerability☆118Updated 3 years ago
- Artifacts for "ZenHammer: Rowhammer Attacks on AMD Zen-based Platforms" (USENIX Security '24).☆58Updated 4 months ago
- TikTag: Breaking ARM's Memory Tagging Extension with Speculative Execution (IEEE S&P 2025)☆83Updated 11 months ago
- A migration for the page table entry based side-channel attack agains SGX enclaves.☆19Updated 8 months ago
- Materials for my DMA attacks talk and a collection of related links☆59Updated last year
- Student Starter Code for Secure Hardware Design at MIT☆81Updated last year
- Proof-of-concept implementation for the paper "Indirect Meltdown: Building Novel Side-Channel Attacks from Transient Execution Attacks" (…☆22Updated 2 years ago
- Pathfinder: High-Resolution Control-Flow Attacks Exploiting the Conditional Branch Predictor☆20Updated last year
- ☆60Updated 7 months ago
- Ghidra Processor Module to disassemble and decompile the x86 Intel Atom microcode☆83Updated 2 years ago
- ☆24Updated 11 months ago
- Pre-Silicon Hardware Fuzzing Toolkit☆60Updated 2 months ago
- Proof-of-concept implementation for the paper "CacheWarp: Software-based Fault Injection using Selective State Reset" (USENIX Security 20…☆63Updated last year
- Proof-of-concept implementation for the paper "Osiris: Automated Discovery of Microarchitectural Side Channels" (USENIX Security'21)☆60Updated 4 months ago
- Uncovering Container Confusion in the Linux Kernel☆45Updated last year
- Microarchitectural exploitation and other hardware attacks.☆96Updated last year
- Artifacts for Cascade: CPU Fuzzing via Intricate Program Generation (USENIX Security 2024)☆136Updated last year
- Binary exploitation by confusing the unwinder☆66Updated 2 years ago
- Source code & scripts for experimental characterization and real-system demonstration of RowPress, a widespread read disturbance phenomen…☆35Updated last year
- This specification is integrated into the Priv. and Unpriv. specifications. This repo is no longer maintained. Please refer to the Priv. …☆92Updated last week