nccgroup / cachegrab
a tool designed to help perform and visualize trace-driven cache attacks against software in the secure world of TrustZone-enabled ARMv8 cores
☆79Updated 5 years ago
Alternatives and similar repositories for cachegrab:
Users that are interested in cachegrab are comparing it to the libraries listed below
- QSEE Shellcode to directly hijack the "Normal World" Linux Kernel☆54Updated 8 years ago
- Kernel Address Isolation to have Side-channels Efficiently Removed☆216Updated 3 years ago
- Fuzzing utility which enables sending arbitrary SCMs to TrustZone☆61Updated 9 years ago
- Dump privileged ARM system registers from usermode using variant 3a of Meltdown☆242Updated 7 years ago
- Automated Return-Oriented Programming Chaining☆83Updated 8 years ago
- Exploiting the Semantic Gap in Trusted Execution Environments☆55Updated 5 years ago
- Preventing code-reuse attacks by stopping code pointer leakages☆36Updated 9 years ago
- Android user space components for the Trustonic Trusted Execution Environment☆34Updated 9 years ago
- Building Distributed Enclave Applications with Sancus and SGX☆13Updated 4 years ago
- MASCAB: a Micro-Architectural Side-Channel Attack Bibliography☆41Updated 6 years ago
- Emulation and Feedback Fuzzing of Firmware with Memory Sanitization☆160Updated 3 years ago
- ☆28Updated 2 years ago
- ☆63Updated 3 years ago
- Emulating Exynos 4210 BootROM in QEMU☆71Updated 5 years ago
- An IDA file loader for Mobicore trustlet and driver binaries☆59Updated 5 years ago
- Sample programs that illustrate how to use control flow integrity with the clang compiler☆105Updated 6 years ago
- Traditional Mitigation in GCC to defend Memory Corruption Vulnerability☆20Updated 3 years ago
- Modifications in the qseecom driver which enable FuzzZone to operate☆23Updated 2 years ago
- K-Hunt: Pinpointing Insecure Crypto Keys☆44Updated 6 years ago
- Huawei mate 7 TrustZone exploit☆111Updated 9 years ago
- Linux Kernel Source Tree Reducer☆80Updated 4 months ago
- Instruction cache leakage detection tool for modular exponentation software.☆14Updated 7 years ago
- Control-Flow Integrity implementation for the Linux Kernel 3.19☆20Updated 5 years ago
- Linux kernel JIT spray for SMEP / KERNEXEC bypass☆55Updated 12 years ago
- Debugger for the Shannon Baseband☆58Updated 4 years ago
- Differential fault analysis framework for AES128☆48Updated 11 years ago
- QEMU-based framework exposing several of QEMU-internal APIs to a LuaJIT core injected into QEMU itself. Among other things, this allows f…☆148Updated 6 years ago
- Nailgun attack on ARM devices.☆162Updated 3 years ago
- A Tale of Two Worlds: Assessing the Vulnerability of Enclave Shielding Runtimes☆45Updated last year
- Reverse-engineering tools and exploits for Samsung's implementation of TrustZone☆147Updated 5 years ago