jovanbulck / nemesisLinks
Nemesis: Studying microarchitectural timing leaks in rudimentary CPU interrupt logic
☆87Updated 3 years ago
Alternatives and similar repositories for nemesis
Users that are interested in nemesis are comparing it to the libraries listed below
Sorting:
- Kernel Address Isolation to have Side-channels Efficiently Removed☆221Updated 3 years ago
- PoC for breaking hypervisor ASLR using branch target buffer collisions☆166Updated 8 years ago
- Detecting Spectre vulnerabilities using symbolic execution, built on angr (github.com/angr/angr)☆75Updated 2 years ago
- ☆55Updated 2 years ago
- ☆70Updated 5 years ago
- Rewriting functions in compiled binaries using McSema☆89Updated 5 years ago
- Proof-of-concept code for the SMoTherSpectre exploit.☆75Updated 5 years ago
- This repository contains examples of DRAMA reverse-engineering and side-channel attacks☆183Updated 7 years ago
- Docs and resources on CPU Speculative Execution bugs☆374Updated 7 years ago
- ☆149Updated 6 years ago
- MASCAB: a Micro-Architectural Side-Channel Attack Bibliography☆41Updated 6 years ago
- Notes on various topics I'm interested in☆158Updated 9 years ago
- Implementation of G-Free: Defeating Return-Oriented Programming through Gadget-less Binaries☆95Updated 6 years ago
- A tool to enable fuzzing for Spectre vulnerabilities☆30Updated 5 years ago
- Stuff from CTF contests☆39Updated 5 years ago
- A bare-metal x86 instruction set fuzzer a la Sandsifter☆70Updated last year
- Sample programs that illustrate how to use control flow integrity with the clang compiler☆105Updated 6 years ago
- Linux i386 tool to load and execute ME modules.☆133Updated 4 years ago
- Source code of the paper "Lord of the Ring(s): Side Channel Attacks on the CPU On-Chip Ring Interconnect Are Practical"☆141Updated 3 years ago
- Instruction cache leakage detection tool for modular exponentation software.☆15Updated 8 years ago
- Experimental setup of "Intel MPX explained"☆28Updated 5 years ago
- Dump privileged ARM system registers from usermode using variant 3a of Meltdown☆243Updated 7 years ago
- KLEE Symbolic Execution Engine☆60Updated 5 years ago
- [UNMAINTAINED] Implementation of the FLUSH+RELOAD side channel attack☆62Updated 7 years ago
- ☆24Updated last year
- ☆112Updated 11 years ago
- L1TF (Foreshadow) VM guest to host memory read PoC☆111Updated 6 years ago
- My presentations and papers☆46Updated 4 years ago
- Tool for automated testing and analysis of Intel x86-64 undocumented instructions in user mode and in the kernel☆45Updated 6 years ago
- Tool to Analyze Speculative Execution Attacks and Mitigations☆55Updated 3 years ago