comsec-group / retbleedLinks
Arbitrary Speculative Code Execution with Return Instructions
☆162Updated last year
Alternatives and similar repositories for retbleed
Users that are interested in retbleed are comparing it to the libraries listed below
Sorting:
- This repository contains exploit and reverse-engineering source code regarding the Spectre-BHB/Branch History Injection vulnerability☆117Updated 3 years ago
- ☆112Updated 2 years ago
- InSpectre Gadget: in-depth inspection and exploitability analysis of Spectre disclosure gadgets☆54Updated 4 months ago
- Ghidra Processor Module to disassemble and decompile the x86 Intel Atom microcode☆82Updated 2 years ago
- Spectre based on Linear Address Masking☆69Updated last year
- The first analysis framework for CPU microcode☆397Updated 2 years ago
- A snapshotting, coverage-guided fuzzer for software (UEFI, Kernel, firmware, BIOS) built on SIMICS☆307Updated this week
- Binarly Vulnerability Research Advisories☆179Updated 3 weeks ago
- Fast, parallel, cross-variant ROP/JOP gadget search for x86/x64 binaries.☆114Updated last year
- Artifact of "Indirector: High-Precision Branch Target Injection Attacks Exploiting the Indirect Branch Predictor" [USENIX Security 2024]☆62Updated last year
- Proof-of-concept for the GhostWrite CPU bug.☆116Updated last year
- UEFI and SMM Assessment Tool☆199Updated 9 months ago
- Framework for in-VM test execution and monitoring, inspired by Sandsifter☆11Updated 5 months ago
- Ariadne: Binary Ninja Graph Analysis Plugin☆94Updated 6 months ago
- ☆60Updated 5 months ago
- Explore a live Linux kernel's memory using GDB☆116Updated 2 years ago
- ☆113Updated last year
- Highly advanced Linux anti-exploitation and anti-tamper binary protector for ELF.☆162Updated 2 years ago
- ☆74Updated last year
- A custom ELF linker/loader for installing ET_REL binary patches at runtime☆170Updated this week
- ☆182Updated last year
- Binary Type Inference Ghidra Plugin☆165Updated last year
- ☆94Updated last year
- Binary exploitation by confusing the unwinder☆63Updated 2 years ago
- ☆90Updated 2 months ago
- An educational Bochs-based snapshot fuzzer project☆185Updated 3 months ago
- The Binarly Firmware Hunt (FwHunt) rule format was designed to scan for known vulnerabilities in UEFI firmware.☆239Updated last year
- Intel ATR Training: Security of BIOS/UEFI System Firmware from Attacker and Defender Perspectives☆97Updated 8 years ago
- ☆164Updated 7 months ago
- VirtFuzz is a Linux Kernel Fuzzer that uses VirtIO to provide inputs into the kernels subsystem. It is built with LibAFL.☆125Updated last year