comsec-group / retbleed
Arbitrary Speculative Code Execution with Return Instructions
☆157Updated last year
Alternatives and similar repositories for retbleed:
Users that are interested in retbleed are comparing it to the libraries listed below
- This repository contains exploit and reverse-engineering source code regarding the Spectre-BHB/Branch History Injection vulnerability☆113Updated 2 years ago
- ☆112Updated last year
- Ghidra Processor Module to disassemble and decompile the x86 Intel Atom microcode☆79Updated 2 years ago
- Training in Transient Execution and PhantomCALL, from Inception (SEC'23) Artifacts.☆33Updated last year
- ☆114Updated last year
- Binarly Vulnerability Research Advisories☆171Updated 3 months ago
- The first analysis framework for CPU microcode☆387Updated 2 years ago
- Highly advanced Linux anti-exploitation and anti-tamper binary protector for ELF.☆155Updated 2 years ago
- A binary hardening system☆103Updated last year
- InSpectre Gadget: in-depth inspection and exploitability analysis of Spectre disclosure gadgets☆50Updated 2 weeks ago
- ☆71Updated last year
- ☆154Updated 2 months ago
- A Rowhammer fuzzer for AMD Zen-based systems (USENIX Security '24).☆47Updated 7 months ago
- A snapshotting, coverage-guided fuzzer for software (UEFI, Kernel, firmware, BIOS) built on SIMICS☆289Updated this week
- Fast, parallel, cross-variant ROP/JOP gadget search for x86/x64 binaries.☆89Updated last year
- ☆92Updated 8 months ago
- Spectre based on Linear Address Masking☆68Updated last year
- UEFI and SMM Assessment Tool☆181Updated 3 months ago
- Intel ATR Training: Security of BIOS/UEFI System Firmware from Attacker and Defender Perspectives☆96Updated 7 years ago
- Kernel Address Space Layout Derandomization (KASLD) - A collection of various techniques to infer the Linux kernel base virtual address a…☆434Updated 11 months ago
- Ariadne: Binary Ninja Graph Analysis Plugin☆88Updated last month
- Binary Type Inference Ghidra Plugin☆153Updated last year
- Artifact of "Indirector: High-Precision Branch Target Injection Attacks Exploiting the Indirect Branch Predictor" [USENIX Security 2024]☆60Updated 7 months ago
- The report and the exploit of CVE-2021-26943, the kernel-to-SMM local privilege escalation vulnerability in ASUS UX360CA BIOS version 303…☆136Updated 3 years ago
- Kernel Fuzzer for Xen Project (KF/x) - Hypervisor-based fuzzing using Xen VM forking, VMI & AFL☆471Updated 8 months ago
- PoC of fuzzing closed-source userspace binaries with KVM☆163Updated 10 months ago
- Proof-of-concept code for the SMoTherSpectre exploit.☆74Updated 5 years ago
- libLISA: Instruction Discovery and Analysis on x86-64☆104Updated 3 weeks ago
- High performance fuzzing using riscv to x86 binary translations and modern fuzzing techniques☆150Updated last year
- CLKscrew Code and Scripts☆27Updated 4 years ago