comsec-group / retbleedLinks
Arbitrary Speculative Code Execution with Return Instructions
☆160Updated last year
Alternatives and similar repositories for retbleed
Users that are interested in retbleed are comparing it to the libraries listed below
Sorting:
- This repository contains exploit and reverse-engineering source code regarding the Spectre-BHB/Branch History Injection vulnerability☆117Updated 3 years ago
- ☆112Updated 2 years ago
- Ghidra Processor Module to disassemble and decompile the x86 Intel Atom microcode☆82Updated 2 years ago
- InSpectre Gadget: in-depth inspection and exploitability analysis of Spectre disclosure gadgets☆55Updated 3 months ago
- Spectre based on Linear Address Masking☆69Updated last year
- Training in Transient Execution and PhantomCALL, from Inception (SEC'23) Artifacts.☆37Updated last year
- The first analysis framework for CPU microcode☆396Updated 2 years ago
- Artifact of "Indirector: High-Precision Branch Target Injection Attacks Exploiting the Indirect Branch Predictor" [USENIX Security 2024]☆61Updated 11 months ago
- Proof-of-concept for the GhostWrite CPU bug.☆115Updated 11 months ago
- UEFI and SMM Assessment Tool☆193Updated 8 months ago
- Fast, parallel, cross-variant ROP/JOP gadget search for x86/x64 binaries.☆114Updated last year
- Binarly Vulnerability Research Advisories☆178Updated this week
- A snapshotting, coverage-guided fuzzer for software (UEFI, Kernel, firmware, BIOS) built on SIMICS☆307Updated this week
- ☆74Updated last year
- ☆58Updated 5 months ago
- ☆39Updated 2 years ago
- ☆94Updated last year
- Constantine is a compiler-based system to automatically harden programs against microarchitectural side channels☆74Updated 2 years ago
- Ariadne: Binary Ninja Graph Analysis Plugin☆93Updated 5 months ago
- TikTag: Breaking ARM's Memory Tagging Extension with Speculative Execution (IEEE S&P 2025)☆78Updated 8 months ago
- VirtFuzz is a Linux Kernel Fuzzer that uses VirtIO to provide inputs into the kernels subsystem. It is built with LibAFL.☆125Updated last year
- Binary Type Inference Ghidra Plugin☆164Updated last year
- Binary exploitation by confusing the unwinder☆63Updated 2 years ago
- Source code & scripts for experimental characterization and real-system demonstration of RowPress, a widespread read disturbance phenomen…☆33Updated last year
- Proof-of-concept implementation for the paper "Indirect Meltdown: Building Novel Side-Channel Attacks from Transient Execution Attacks" (…☆22Updated last year
- Intel ATR Training: Security of BIOS/UEFI System Firmware from Attacker and Defender Perspectives☆97Updated 8 years ago
- Explore a live Linux kernel's memory using GDB☆115Updated 2 years ago
- ☆182Updated last year
- ☆113Updated last year
- Determine which CPU architecture is used in a binary file.☆122Updated 4 months ago