martonbognar / gap-attacksLinks
The top repository for the code accompanying our paper "Mind the Gap: Studying the Insecurity of Provably Secure Embedded Trusted Execution Architectures".
☆16Updated 3 years ago
Alternatives and similar repositories for gap-attacks
Users that are interested in gap-attacks are comparing it to the libraries listed below
Sorting:
- Constantine is a compiler-based system to automatically harden programs against microarchitectural side channels☆82Updated 2 months ago
- Open-source release of "Last-Level Cache Side-Channel Attacks Are Feasible in the Modern Public Cloud" (ASPLOS '24)☆33Updated 10 months ago
- A tool for detecting Spectre vulnerabilities through fuzzing☆46Updated 4 years ago
- Proof-of-concept implementation for the paper "Osiris: Automated Discovery of Microarchitectural Side Channels" (USENIX Security'21)☆65Updated 7 months ago
- Proof-of-concept implementation for the paper "A Security RISC: Microarchitectural Attacks on Hardware RISC-V CPUs" (IEEE S&P 2023)☆77Updated 2 months ago
- Automatic detection of speculative information flows☆75Updated 4 years ago
- Microarchitectural attack development frameworks for prototyping attacks in native code (C, C++, ASM) and in the browser☆62Updated 3 years ago
- ☆20Updated 7 years ago
- Fuzzer that searches for vulnerabilities like Spectre and Meltdown in CPUs☆41Updated 3 years ago
- Revizor - Hardware fuzzing for the age of speculation☆180Updated last week
- Using Malicious #VC Interrupts to Break AMD SEV-SNP (IEEE S&P 2024)☆26Updated last year
- Kasper: Scanning for Generalized Transient Execution Gadgets in the Linux Kernel☆58Updated last year
- ☆101Updated last year
- Tool for testing and finding minimal eviction sets☆107Updated 4 years ago
- Tutorial: Uncovering and mitigating side-channel leakage in Intel SGX enclaves☆55Updated 10 months ago
- Telling your secrets without page faults: Stealthy page table-based attacks on enclaved execution☆35Updated 7 years ago
- Website for Research Artifacts from the Security Community☆30Updated last week
- Student Starter Code for Secure Hardware Design at MIT☆86Updated last week
- ☆48Updated 7 years ago
- ARCHIE is a QEMU-based architecture-independent fault evaluation tool, that is able to simulate transient and permanent instruction and d…☆33Updated 3 weeks ago
- OP-TEE Trusted Applications vulnerable to memory corruption bugs.☆16Updated 5 years ago
- Medusa Repository: Transynther tool and Medusa Attack☆23Updated 5 years ago
- Reload+Refresh PoC☆16Updated 5 years ago
- Proof-of-concept code for the IEEE S&P 2025 paper "Peek-a-Walk: Leaking Secrets via Page Walk Side Channels"☆31Updated 7 months ago
- ☆25Updated 4 years ago
- This repo tracks a compatible state of all sev step components and contains script to easily install everything required to setup a sev v…☆44Updated last year
- Tool to Analyze Speculative Execution Attacks and Mitigations☆56Updated 4 years ago
- SyzTrust's main repository. Start here to install.☆17Updated last year
- RISC-V Tools (GNU Toolchain, ISA Simulator, Tests)☆23Updated 6 years ago
- Artifact evaluation of paper: MorFuzz: Fuzzing Processor via Runtime Instruction Morphing enhanced Synchronizable Co-simulation☆49Updated 9 months ago