martonbognar / gap-attacks
The top repository for the code accompanying our paper "Mind the Gap: Studying the Insecurity of Provably Secure Embedded Trusted Execution Architectures".
☆13Updated 2 years ago
Alternatives and similar repositories for gap-attacks:
Users that are interested in gap-attacks are comparing it to the libraries listed below
- Microarchitectural attack development frameworks for prototyping attacks in native code (C, C++, ASM) and in the browser☆61Updated 2 years ago
- Automatic detection of speculative information flows☆67Updated 3 years ago
- Using Malicious #VC Interrupts to Break AMD SEV-SNP (IEEE S&P 2024)☆24Updated 9 months ago
- Fuzzer that searches for vulnerabilities like Spectre and Meltdown in CPUs☆42Updated 2 years ago
- SyzTrust's main repository. Start here to install.☆15Updated 11 months ago
- A tool for detecting Spectre vulnerabilities through fuzzing☆35Updated 3 years ago
- Open source release of "Last-Level Cache Side-Channel Attacks Are Feasible in the Modern Public Cloud" (ASPLOS '24)☆21Updated 3 months ago
- ARCHIE is a QEMU-based architecture-independent fault evaluation tool, that is able to simulate transient and permanent instruction and d…☆22Updated 9 months ago
- Protecting Accelerator Execution with Arm Confidential Computing Architecture (USENIX Security 2024)☆26Updated last year
- This repo tracks a compatible state of all sev step components and contains script to easily install everything required to setup a sev v…☆34Updated last year
- Medusa Repository: Transynther tool and Medusa Attack☆21Updated 4 years ago
- Proof-of-concept implementation for the paper "Osiris: Automated Discovery of Microarchitectural Side Channels" (USENIX Security'21)☆56Updated 3 years ago
- The open-source component of Prime+Scope, published at CCS 2021☆30Updated last year
- Telling your secrets without page faults: Stealthy page table-based attacks on enclaved execution☆30Updated 6 years ago
- Artifact evaluation of paper: MorFuzz: Fuzzing Processor via Runtime Instruction Morphing enhanced Synchronizable Co-simulation☆25Updated last year
- ☆20Updated last year
- LLVM Implementation of different ShadowStack schemes for x86_64☆38Updated 4 years ago
- Proof-of-concept implementation for the paper "Efficient and Generic Microarchitectural Hash-Function Recovery" (IEEE S&P 2024)☆27Updated last year
- Proof-of-concept implementation for the paper "A Security RISC: Microarchitectural Attacks on Hardware RISC-V CPUs" (IEEE S&P 2023)☆58Updated 6 months ago
- Using Data Memory-Dependent Prefetchers to Leak Data at Rest☆35Updated 2 years ago
- ☆35Updated 3 years ago
- ☆22Updated last year
- ProSpeCT: Provably Secure Speculation for the Constant-Time Policy.☆15Updated 3 months ago
- Revizor - a fuzzer to search for microarchitectural leaks in CPUs☆121Updated this week
- This repository contains the hardware, software, and OS support for the Programmable Hardware Monitor (PHMon).☆26Updated 4 years ago
- HW interface for memory caches☆26Updated 4 years ago
- Constantine is a compiler-based system to automatically harden programs against microarchitectural side channels☆72Updated 2 years ago
- ☆13Updated 3 years ago
- ☆22Updated 4 years ago
- ☆21Updated 3 years ago