microsoft / sca-fuzzerLinks
Revizor - a fuzzer to search for microarchitectural leaks in CPUs
☆156Updated this week
Alternatives and similar repositories for sca-fuzzer
Users that are interested in sca-fuzzer are comparing it to the libraries listed below
Sorting:
- Microarchitectural attack development frameworks for prototyping attacks in native code (C, C++, ASM) and in the browser☆61Updated 2 years ago
- Proof-of-concept implementation for the paper "Osiris: Automated Discovery of Microarchitectural Side Channels" (USENIX Security'21)☆58Updated last month
- Constantine is a compiler-based system to automatically harden programs against microarchitectural side channels☆74Updated 2 years ago
- Automatic detection of speculative information flows☆68Updated 4 years ago
- Proof-of-concept implementation for the paper "CacheWarp: Software-based Fault Injection using Selective State Reset" (USENIX Security 20…☆63Updated 11 months ago
- Kasper: Scanning for Generalized Transient Execution Gadgets in the Linux Kernel☆58Updated last year
- Tool to Analyze Speculative Execution Attacks and Mitigations☆55Updated 3 years ago
- Fuzzer that searches for vulnerabilities like Spectre and Meltdown in CPUs☆42Updated 2 years ago
- TikTag: Breaking ARM's Memory Tagging Extension with Speculative Execution (IEEE S&P 2025)☆78Updated 8 months ago
- Medusa Repository: Transynther tool and Medusa Attack☆23Updated 5 years ago
- A tool for detecting Spectre vulnerabilities through fuzzing☆43Updated 3 years ago
- Website and PoC collection for transient execution attacks☆185Updated last year
- Open-source release of "Last-Level Cache Side-Channel Attacks Are Feasible in the Modern Public Cloud" (ASPLOS '24)☆26Updated 4 months ago
- InSpectre Gadget: in-depth inspection and exploitability analysis of Spectre disclosure gadgets☆55Updated 3 months ago
- Tool for testing and finding minimal eviction sets☆104Updated 4 years ago
- A tool to enable fuzzing for Spectre vulnerabilities☆30Updated 5 years ago
- ☆35Updated 3 years ago
- The open-source component of Prime+Scope, published at CCS 2021☆34Updated 2 years ago
- Breaking Confidential VMs with Malicious Interrupts (USENIX Security 2024)☆32Updated last year
- Student Starter Code for Secure Hardware Design at MIT☆77Updated last year
- Proof-of-concept implementation for the paper "Efficient and Generic Microarchitectural Hash-Function Recovery" (IEEE S&P 2024)☆30Updated last year
- ☆39Updated 2 years ago
- Using Malicious #VC Interrupts to Break AMD SEV-SNP (IEEE S&P 2024)☆24Updated last year
- Proof-of-concept implementation for the paper "(M)WAIT for It: Bridging the Gap between Microarchitectural and Architectural Side Channel…☆26Updated last year
- Proof-of-concept code for the IEEE S&P 2025 paper "Peek-a-Walk: Leaking Secrets via Page Walk Side Channels"☆24Updated last month
- ☆26Updated last year
- Rage Against The Machine Clear: A Systematic Analysis of Machine Clears and Their Implications for Transient Execution Attacks☆23Updated 4 years ago
- ☆45Updated 6 years ago
- Medusa Repository: Transynther tool and Medusa Attack☆19Updated 5 years ago
- Proof-of-concept implementation for the paper "Indirect Meltdown: Building Novel Side-Channel Attacks from Transient Execution Attacks" (…☆22Updated last year