martonbognar / gap-attacksLinks
The top repository for the code accompanying our paper "Mind the Gap: Studying the Insecurity of Provably Secure Embedded Trusted Execution Architectures".
☆14Updated 3 years ago
Alternatives and similar repositories for gap-attacks
Users that are interested in gap-attacks are comparing it to the libraries listed below
Sorting:
- A tool for detecting Spectre vulnerabilities through fuzzing☆43Updated 3 years ago
- Microarchitectural attack development frameworks for prototyping attacks in native code (C, C++, ASM) and in the browser☆61Updated 2 years ago
- Proof-of-concept implementation for the paper "Osiris: Automated Discovery of Microarchitectural Side Channels" (USENIX Security'21)☆58Updated 2 months ago
- Open-source release of "Last-Level Cache Side-Channel Attacks Are Feasible in the Modern Public Cloud" (ASPLOS '24)☆26Updated 4 months ago
- Using Malicious #VC Interrupts to Break AMD SEV-SNP (IEEE S&P 2024)☆24Updated last year
- Proof-of-concept implementation for the paper "A Security RISC: Microarchitectural Attacks on Hardware RISC-V CPUs" (IEEE S&P 2023)☆69Updated 4 months ago
- Revizor - a fuzzer to search for microarchitectural leaks in CPUs☆156Updated this week
- Artifact evaluation of paper: MorFuzz: Fuzzing Processor via Runtime Instruction Morphing enhanced Synchronizable Co-simulation☆30Updated 3 months ago
- RISC-V Tools (GNU Toolchain, ISA Simulator, Tests)☆21Updated 6 years ago
- Breaking Confidential VMs with Malicious Interrupts (USENIX Security 2024)☆32Updated last year
- Fuzzer that searches for vulnerabilities like Spectre and Meltdown in CPUs☆42Updated 2 years ago
- ☆91Updated last year
- ☆35Updated 3 years ago
- Automatic detection of speculative information flows☆68Updated 4 years ago
- Telling your secrets without page faults: Stealthy page table-based attacks on enclaved execution☆33Updated 7 years ago
- ARCHIE is a QEMU-based architecture-independent fault evaluation tool, that is able to simulate transient and permanent instruction and d…☆24Updated 3 months ago
- A flush-reload side channel attack implementation☆52Updated 3 years ago
- Constantine is a compiler-based system to automatically harden programs against microarchitectural side channels☆74Updated 2 years ago
- This repo tracks a compatible state of all sev step components and contains script to easily install everything required to setup a sev v…☆42Updated last year
- ☆45Updated 6 years ago
- Medusa Repository: Transynther tool and Medusa Attack☆23Updated 5 years ago
- The open-source component of Prime+Scope, published at CCS 2021☆34Updated 2 years ago
- HW interface for memory caches☆28Updated 5 years ago
- LLVM Implementation of different ShadowStack schemes for x86_64☆38Updated 5 years ago
- Student Starter Code for Secure Hardware Design at MIT☆77Updated last year
- Tutorial: Uncovering and mitigating side-channel leakage in Intel SGX enclaves☆51Updated 4 months ago
- Using Data Memory-Dependent Prefetchers to Leak Data at Rest☆36Updated 2 years ago
- Proof-of-concept implementation for the paper "CacheWarp: Software-based Fault Injection using Selective State Reset" (USENIX Security 20…☆63Updated 11 months ago
- OP-TEE Trusted Applications vulnerable to memory corruption bugs.☆15Updated 5 years ago
- Protecting Accelerator Execution with Arm Confidential Computing Architecture (USENIX Security 2024)☆26Updated last year