ibm-research / speculator
Tool to Analyze Speculative Execution Attacks and Mitigations
☆54Updated 3 years ago
Alternatives and similar repositories for speculator:
Users that are interested in speculator are comparing it to the libraries listed below
- Microarchitectural attack development frameworks for prototyping attacks in native code (C, C++, ASM) and in the browser☆61Updated 2 years ago
- ☆44Updated 6 years ago
- Automatic detection of speculative information flows☆67Updated 3 years ago
- Medusa Repository: Transynther tool and Medusa Attack☆21Updated 4 years ago
- A tool to enable fuzzing for Spectre vulnerabilities☆30Updated 5 years ago
- Proof-of-concept implementation for the paper "Osiris: Automated Discovery of Microarchitectural Side Channels" (USENIX Security'21)☆56Updated 3 years ago
- A tool for detecting Spectre vulnerabilities through fuzzing☆37Updated 3 years ago
- Fuzzer that searches for vulnerabilities like Spectre and Meltdown in CPUs☆42Updated 2 years ago
- oo7, a binary analysis tool to defend against Spectre vulnerabilities☆32Updated 4 years ago
- Proof-of-concept implementation for the paper "(M)WAIT for It: Bridging the Gap between Microarchitectural and Architectural Side Channel…☆25Updated last year
- Open source release of "Last-Level Cache Side-Channel Attacks Are Feasible in the Modern Public Cloud" (ASPLOS '24)☆21Updated 4 months ago
- Proof-of-concept implementation for the paper "Indirect Meltdown: Building Novel Side-Channel Attacks from Transient Execution Attacks" (…☆20Updated last year
- Tool for testing and finding minimal eviction sets☆97Updated 3 years ago
- ☆23Updated last year
- HW interface for memory caches☆26Updated 4 years ago
- Using Malicious #VC Interrupts to Break AMD SEV-SNP (IEEE S&P 2024)☆24Updated 10 months ago
- Telling your secrets without page faults: Stealthy page table-based attacks on enclaved execution☆30Updated 6 years ago
- Proof-of-concept code for the SMoTherSpectre exploit.☆74Updated 5 years ago
- Medusa Repository: Transynther tool and Medusa Attack☆20Updated 4 years ago
- Constantine is a compiler-based system to automatically harden programs against microarchitectural side channels☆72Updated 2 years ago
- Rage Against The Machine Clear: A Systematic Analysis of Machine Clears and Their Implications for Transient Execution Attacks☆20Updated 3 years ago
- GitHub (mirror) repository for the Mastik toolkit, written by Yuval Yarom https://cs.adelaide.edu.au/~yval/Mastik/☆37Updated 5 years ago
- Proof-of-concept implementation for the paper "Efficient and Generic Microarchitectural Hash-Function Recovery" (IEEE S&P 2024)☆27Updated last year
- Kasper: Scanning for Generalized Transient Execution Gadgets in the Linux Kernel☆57Updated 10 months ago
- LLVM Implementation of different ShadowStack schemes for x86_64☆38Updated 4 years ago
- some tlb experimentation code: calculate L1, L2 miss penalties and show cross-HT interference.�☆13Updated 5 years ago
- This repo tracks a compatible state of all sev step components and contains script to easily install everything required to setup a sev v…☆37Updated last year
- This repository contains several tools to perform Prefetch Side-Channel Attacks☆57Updated 8 years ago
- ☆18Updated 6 years ago