jprx / DEFCON30-PACMANLinks
Materials from the DEF CON 30 talk on PACMAN
☆32Updated 2 years ago
Alternatives and similar repositories for DEFCON30-PACMAN
Users that are interested in DEFCON30-PACMAN are comparing it to the libraries listed below
Sorting:
- Defeating Pointer Authentication on the Apple M1 with Hardware Attacks☆43Updated 2 years ago
- An IOKit kext designed for microarchitectural security research on M1☆43Updated 2 years ago
- M1 bare metal project in Rust☆31Updated 2 years ago
- A Ghidra static analysis tool for locating PACMAN Gadgets☆13Updated 2 years ago
- Artifact of "Indirector: High-Precision Branch Target Injection Attacks Exploiting the Indirect Branch Predictor" [USENIX Security 2024]☆61Updated 9 months ago
- ☆24Updated last year
- Proof-of-concept implementation for the paper "Osiris: Automated Discovery of Microarchitectural Side Channels" (USENIX Security'21)☆57Updated 3 years ago
- Patch your macOS kernel to enable support for the high-resolution timers on M1☆32Updated 3 weeks ago
- Using Data Memory-Dependent Prefetchers to Leak Data at Rest☆36Updated 2 years ago
- InSpectre Gadget: in-depth inspection and exploitability analysis of Spectre disclosure gadgets☆52Updated last month
- Official Solution and Source Code for the "Mock Kernel" challenge from UIUCTF 2023☆48Updated last year
- Student Starter Code for Secure Hardware Design at MIT☆75Updated last year
- Intel Management Engine JTAG Proof of Concept - 2022 Instructions☆33Updated 2 years ago
- Arbitrary Speculative Code Execution with Return Instructions☆162Updated last year
- Proof-of-concept C implementation of AES with masking technique to prevent side-channel analysis attacks☆37Updated 4 years ago
- Training in Transient Execution and PhantomCALL, from Inception (SEC'23) Artifacts.☆36Updated last year
- Proof-of-concept implementation for the paper "Reviving Meltdown 3a" (ESORICS 2023)☆15Updated last year
- Pathfinder: High-Resolution Control-Flow Attacks Exploiting the Conditional Branch Predictor☆17Updated 11 months ago
- Code of KextFuzz: Fuzzing macOS Kernel EXTensions on Apple Silicon via Exploiting Mitigations (USENIX Security'23)☆79Updated last year
- Constantine is a compiler-based system to automatically harden programs against microarchitectural side channels☆74Updated 2 years ago
- How to use LLVM passes☆32Updated 3 years ago
- This repository contains several tools to perform Prefetch Side-Channel Attacks☆59Updated 8 years ago
- Ghidra P-Code emulation and static LLVM lifting in Python☆31Updated 3 years ago
- ☆15Updated last year
- Automated recovery of Linux kernel build configurations☆24Updated 3 years ago
- ☆74Updated last year
- Ghidra Processor Module to disassemble and decompile the x86 Intel Atom microcode☆82Updated 2 years ago
- Proof-of-concept code for the SMoTherSpectre exploit.☆75Updated 5 years ago
- Proof-of-concept implementation for the paper "Indirect Meltdown: Building Novel Side-Channel Attacks from Transient Execution Attacks" (…☆22Updated last year
- TikTag: Breaking ARM's Memory Tagging Extension with Speculative Execution (IEEE S&P 2025)☆74Updated 6 months ago