google / hammer-kit
☆77Updated 3 years ago
Related projects: ⓘ
- Source code of the paper "Lord of the Ring(s): Side Channel Attacks on the CPU On-Chip Ring Interconnect Are Practical"☆138Updated 3 years ago
- ☆111Updated last year
- Constantine is a compiler-based system to automatically harden programs against microarchitectural side channels☆65Updated last year
- A tool to enable fuzzing for Spectre vulnerabilities☆30Updated 4 years ago
- TRRespass☆119Updated 3 years ago
- IPC scripts for access to Intel CRBUS☆118Updated 3 years ago
- Website and PoC collection for transient execution attacks☆165Updated 6 months ago
- Docs and resources on CPU Speculative Execution bugs☆371Updated 6 years ago
- Arbitrary Speculative Code Execution with Return Instructions☆150Updated 7 months ago
- Nemesis: Studying microarchitectural timing leaks in rudimentary CPU interrupt logic☆86Updated 2 years ago
- Processor fuzzer targeting the Armv8-A ISA☆55Updated last year
- A microarchitectural leakage detection framework using dynamic instrumentation.☆65Updated 3 months ago
- Proof-of-concept code for the SMoTherSpectre exploit.☆73Updated 4 years ago
- Source code & scripts for experimental characterization and real-system demonstration of RowPress, a widespread read disturbance phenomen…☆30Updated 8 months ago
- Kernel Test Framework☆140Updated 6 months ago
- GUSTAVE is a fuzzing platform for embedded OS kernels. It is based on QEMU and AFL (and all of its forkserver siblings). It allows to fuz…☆193Updated 3 years ago
- Tool for testing and finding minimal eviction sets☆95Updated 3 years ago
- An experimental high performance, fuzzing oriented Intel Processor Trace capture and analysis suite☆126Updated 2 years ago
- ☆109Updated last year
- ☆23Updated 6 months ago
- Next-gen Rowhammer fuzzer that uses non-uniform, frequency-based patterns (IEEE S&P '22).☆221Updated 7 months ago
- Proof-of-concept implementation for the paper "Osiris: Automated Discovery of Microarchitectural Side Channels" (USENIX Security'21)☆52Updated 2 years ago
- Kasper: Scanning for Generalized Transient Execution Gadgets in the Linux Kernel☆53Updated 4 months ago
- A C library and binary for generating machine code of x86_64 assembly language and executing on the fly without invoking another compiler…☆184Updated last year
- Tool to Analyze Speculative Execution Attacks and Mitigations☆53Updated 2 years ago
- a friendly wrapper around ptrace☆125Updated 2 years ago
- ☆43Updated 5 years ago
- A tool for detecting Spectre vulnerabilities through fuzzing☆35Updated 3 years ago
- The code to the SGX-ROP paper☆183Updated 4 years ago
- Proof-of-concept implementation for the paper "Indirect Meltdown: Building Novel Side-Channel Attacks from Transient Execution Attacks" (…☆20Updated 11 months ago