jprx / DEFCON30-PACMANLinks
Materials from the DEF CON 30 talk on PACMAN
☆33Updated 2 years ago
Alternatives and similar repositories for DEFCON30-PACMAN
Users that are interested in DEFCON30-PACMAN are comparing it to the libraries listed below
Sorting:
- An IOKit kext designed for microarchitectural security research on M1☆43Updated 2 years ago
- Defeating Pointer Authentication on the Apple M1 with Hardware Attacks☆44Updated 3 years ago
- M1 bare metal project in Rust☆31Updated 3 years ago
- Ghidra Processor Module to disassemble and decompile the x86 Intel Atom microcode☆82Updated 2 years ago
- A Ghidra static analysis tool for locating PACMAN Gadgets☆13Updated 3 years ago
- Arbitrary Speculative Code Execution with Return Instructions☆169Updated last year
- InSpectre Gadget: in-depth inspection and exploitability analysis of Spectre disclosure gadgets☆56Updated last week
- ☆75Updated last year
- TikTag: Breaking ARM's Memory Tagging Extension with Speculative Execution (IEEE S&P 2025)☆81Updated 9 months ago
- Patch your macOS kernel to enable support for the high-resolution timers on M1☆35Updated 4 months ago
- Constantine is a compiler-based system to automatically harden programs against microarchitectural side channels☆75Updated 2 years ago
- Artifact of "Indirector: High-Precision Branch Target Injection Attacks Exploiting the Indirect Branch Predictor" [USENIX Security 2024]☆63Updated last year
- ☆112Updated 2 years ago
- This repository contains exploit and reverse-engineering source code regarding the Spectre-BHB/Branch History Injection vulnerability☆118Updated 3 years ago
- Intel Management Engine JTAG Proof of Concept - 2022 Instructions☆33Updated 3 years ago
- Official Solution and Source Code for the "Mock Kernel" challenge from UIUCTF 2023☆49Updated 2 years ago
- This repository contains several tools to perform Prefetch Side-Channel Attacks☆59Updated 8 years ago
- ☆27Updated last year
- A firmware base address search tool.☆44Updated last year
- Revizor - a fuzzer to search for microarchitectural leaks in CPUs☆161Updated 3 weeks ago
- Source code & scripts for experimental characterization and real-system demonstration of RowPress, a widespread read disturbance phenomen…☆34Updated last year
- NinjaDiff is a binary diffing plugin for Binary Ninja. Read more on our blog, and contribute code & improvements!☆69Updated 3 years ago
- ☆39Updated 2 years ago
- A code skeleton of Samsung's Shannon S5000 baseband modem.☆46Updated 5 years ago
- Spectre based on Linear Address Masking☆69Updated last year
- FirmWire has replaced ShannonEE. OLD: A dynamic analysis environment for Samsung's Shannon baseband.☆43Updated 3 years ago
- ☆50Updated 3 years ago
- WTF Snapshot fuzzing of macOS targets☆98Updated last year
- Code of KextFuzz: Fuzzing macOS Kernel EXTensions on Apple Silicon via Exploiting Mitigations (USENIX Security'23)☆83Updated 2 years ago
- Proof-of-concept implementation for the paper "Osiris: Automated Discovery of Microarchitectural Side Channels" (USENIX Security'21)☆59Updated 3 months ago