jprx / PacmanFinder
A Ghidra static analysis tool for locating PACMAN Gadgets
☆12Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for PacmanFinder
- M1 bare metal project in Rust☆28Updated 2 years ago
- An IOKit kext designed for microarchitectural security research on M1☆31Updated 2 years ago
- Defeating Pointer Authentication on the Apple M1 with Hardware Attacks☆33Updated 2 years ago
- Materials from the DEF CON 30 talk on PACMAN☆28Updated 2 years ago
- Patch your macOS kernel to enable support for the high-resolution timers on M1☆22Updated 7 months ago
- Proof-of-concept implementation for the paper "Efficient and Generic Microarchitectural Hash-Function Recovery" (IEEE S&P 2024)☆26Updated last year
- Pathfinder: High-Resolution Control-Flow Attacks Exploiting the Conditional Branch Predictor☆16Updated 4 months ago
- ☆23Updated 8 months ago
- Synthesis of loop-free programs☆14Updated this week
- Artifact of "Indirector: High-Precision Branch Target Injection Attacks Exploiting the Indirect Branch Predictor" [USENIX Security 2024]☆55Updated 3 months ago
- Proof-of-concept implementation for the paper "Osiris: Automated Discovery of Microarchitectural Side Channels" (USENIX Security'21)☆54Updated 2 years ago
- Binary Ninja plugin for visualizing coverage over time☆25Updated 2 years ago
- Using Data Memory-Dependent Prefetchers to Leak Data at Rest☆32Updated 2 years ago
- Official Solution and Source Code for the "Mock Kernel" challenge from UIUCTF 2023☆49Updated last year
- Linux kernel branches for confidential compute research☆16Updated 2 weeks ago
- Proof-of-concept implementation for the paper "Indirect Meltdown: Building Novel Side-Channel Attacks from Transient Execution Attacks" (…☆20Updated last year
- Symbolic execution for RISC-V machine code based on the formal LibRISCV ISA model☆42Updated 4 months ago
- Proof-of-concept C implementation of AES with masking technique to prevent side-channel analysis attacks☆28Updated 4 years ago
- Intel Management Engine JTAG Proof of Concept - 2022 Instructions☆32Updated 2 years ago
- binary ninja related code☆24Updated 2 years ago
- Binsec/Rel is an extension of Binsec that implements relational symbolic execution for constant-time verification and secret-erasure at b…☆33Updated last year
- A Unit-Based Symbolic Execution Method for Detecting Memory Corruption Vulnerabilities in Executable Codes☆43Updated last year
- Proof-of-concept implementation for the paper "Hammulator: Simulate Now - Exploit Later" (DRAMSec 2023)☆11Updated last year
- A cheat sheet that summarises "strategies" (or techniques) to use with angr.☆29Updated 3 years ago
- Microarchitectural attack development frameworks for prototyping attacks in native code (C, C++, ASM) and in the browser☆60Updated 2 years ago
- Constantine is a compiler-based system to automatically harden programs against microarchitectural side channels☆67Updated last year
- BigMap integration on AFL++☆15Updated 3 years ago
- WebKit CodeQL Databases☆13Updated 8 months ago
- Supporting Materials for “Symbolic Triage” blog post☆24Updated 2 years ago
- A framework for lifting ARM32 to LLVM-IR and merging resulting code with LLVM-IR generated from source-code.☆13Updated 2 years ago