Alternatives and similar repositories for GhostWrite

Users that are interested in GhostWrite are comparing it to the libraries listed below

• owenlly / Indirector_Artifact
  Artifact of "Indirector: High-Precision Branch Target Injection Attacks Exploiting the Indirect Branch Predictor" [USENIX Security 2024]
  ☆62Updated last year
• vusec / slam
  Spectre based on Linear Address Masking
  ☆69Updated last year
• vusec / inspectre-gadget
  InSpectre Gadget: in-depth inspection and exploitability analysis of Spectre disclosure gadgets
  ☆54Updated 4 months ago
• scy-phy / FetchBench
  ☆17Updated last year
• CactiLab / ret2ns-Cortex-M-TrustZone
  This repo demonstrates the Return-to-Non-Secure (ret2ns) vulnerability on ARM Cortex-M TrustZone. It contains the attack and defense demo…
  ☆32Updated last year
• badramattack / badram
  ☆60Updated 5 months ago
• vusec / ghostrace
  ☆74Updated last year
• vusec / bhi-spectre-bhb
  This repository contains exploit and reverse-engineering source code regarding the Spectre-BHB/Branch History Injection vulnerability
  ☆117Updated 3 years ago
• comsec-group / inception
  Training in Transient Execution and PhantomCALL, from Inception (SEC'23) Artifacts.
  ☆37Updated last year
• quarkslab / pixiefail
  PoC for PixieFail vulnerabilities
  ☆23Updated last year
• codexlynx / hardware-attacks-state-of-the-art
  Microarchitectural exploitation and other hardware attacks.
  ☆94Updated last year
• xairy / dma-attacks
  Materials for my DMA attacks talk and a collection of related links
  ☆55Updated last year
• CMU-SAFARI / RowPress
  Source code & scripts for experimental characterization and real-system demonstration of RowPress, a widespread read disturbance phenomen…
  ☆33Updated last year
• agra-uni-bremen / BinSym
  Symbolic execution for RISC-V machine code based on the formal LibRISCV ISA model
  ☆50Updated 3 months ago
• comsec-group / retbleed
  Arbitrary Speculative Code Execution with Return Instructions
  ☆162Updated last year
• itewqq / SGX-PTE-SPY
  A migration for the page table entry based side-channel attack agains SGX enclaves.
  ☆18Updated 6 months ago
• cispa / hammulator
  Proof-of-concept implementation for the paper "Hammulator: Simulate Now - Exploit Later" (DRAMSec 2023)
  ☆17Updated 2 years ago
• FPSG-UIUC / augury
  Using Data Memory-Dependent Prefetchers to Leak Data at Rest
  ☆36Updated 2 years ago
• comsec-group / zenhammer
  Artifacts for "ZenHammer: Rowhammer Attacks on AMD Zen-based Platforms" (USENIX Security '24).
  ☆54Updated 2 months ago
• cispa / osiris
  Proof-of-concept implementation for the paper "Osiris: Automated Discovery of Microarchitectural Side Channels" (USENIX Security'21)
  ☆59Updated 2 months ago
• MATCHA-MIT / SHD-StarterCode
  Student Starter Code for Secure Hardware Design at MIT
  ☆78Updated last year
• cispa / indirect-meltdown
  Proof-of-concept implementation for the paper "Indirect Meltdown: Building Novel Side-Channel Attacks from Transient Execution Attacks" (…
  ☆22Updated last year
• IntelLabs / PreSiFuzz
  Pre-Silicon Hardware Fuzzing Toolkit
  ☆58Updated last week
• compsec-snu / tiktag
  TikTag: Breaking ARM's Memory Tagging Extension with Speculative Execution (IEEE S&P 2025)
  ☆79Updated 9 months ago
• CTSRD-CHERI / cheri-specification
  CHERI ISA Specification
  ☆24Updated last week
• ahoi-attacks / WeSee
  Using Malicious #VC Interrupts to Break AMD SEV-SNP (IEEE S&P 2024)
  ☆24Updated last year
• pietroborrello / ghidra-atom-microcode
  Ghidra Processor Module to disassemble and decompile the x86 Intel Atom microcode
  ☆82Updated 2 years ago
• cispa / CacheWarp
  Proof-of-concept implementation for the paper "CacheWarp: Software-based Fault Injection using Selective State Reset" (USENIX Security 20…
  ☆63Updated last year
• hoseinyavarzadeh / Pathfinder_Attack
  Pathfinder: High-Resolution Control-Flow Attacks Exploiting the Conditional Branch Predictor
  ☆18Updated last year
• trailofbits / LeftoverLocalsRelease
  The public release of LeftoverLocals code
  ☆68Updated last year