nccgroup / cachegrabLinks
a tool designed to help perform and visualize trace-driven cache attacks against software in the secure world of TrustZone-enabled ARMv8 cores
☆80Updated 6 years ago
Alternatives and similar repositories for cachegrab
Users that are interested in cachegrab are comparing it to the libraries listed below
Sorting:
- Linux Kernel Source Tree Reducer☆80Updated 9 months ago
- QSEE Shellcode to directly hijack the "Normal World" Linux Kernel☆55Updated 9 years ago
- Fuzzing utility which enables sending arbitrary SCMs to TrustZone☆61Updated 9 years ago
- Kernel Address Isolation to have Side-channels Efficiently Removed☆221Updated 3 years ago
- Exploiting the Semantic Gap in Trusted Execution Environments☆55Updated 5 years ago
- Hexag00n: A collection of reverse engineering tools for the Qualcomm Digital Signal Proccesor (QDSP6)☆113Updated 8 years ago
- Android user space components for the Trustonic Trusted Execution Environment☆36Updated 9 years ago
- Differential Address Trace Analysis☆58Updated last year
- Differential fault analysis framework for AES128☆49Updated 12 years ago
- Huawei mate 7 TrustZone exploit☆110Updated 10 years ago
- Building Distributed Enclave Applications with Sancus and SGX☆13Updated 4 years ago
- Qualcomm TrustZone kernel privilege escalation☆65Updated 9 years ago
- Modifications in the qseecom driver which enable FuzzZone to operate☆23Updated 2 years ago
- Repository of the official Docker image for SideChannelMarvels.☆54Updated 7 years ago
- Emulating Exynos 4210 BootROM in QEMU☆74Updated 5 years ago
- Linux kernel JIT spray for SMEP / KERNEXEC bypass☆55Updated 12 years ago
- Shadow-Box: Lightweight and Practical Kernel Protector for ARM (Presented at BlackHat Asia 2018)☆73Updated 7 years ago
- Dump privileged ARM system registers from usermode using variant 3a of Meltdown☆245Updated 7 years ago
- Experimental version of QEMU with basic support for ARM TrustZone (security extensions)☆84Updated 11 years ago
- A Tale of Two Worlds: Assessing the Vulnerability of Enclave Shielding Runtimes☆46Updated last year
- Standalone C version of the MSM8974 TrustZone exploit☆27Updated 4 years ago
- Nailgun attack on ARM devices.☆167Updated 4 years ago
- Instruction cache leakage detection tool for modular exponentation software.☆15Updated 8 years ago
- Debugger for the Shannon Baseband☆58Updated 5 years ago
- IDA processor module for the hexagon (QDSP6) processor☆232Updated 4 months ago
- ropc-llvm is a PoC of a Turing complete ROP compiler with support for a subset of LLVM IR. It is an extension of ropc.☆69Updated 11 years ago
- Emulation and Feedback Fuzzing of Firmware with Memory Sanitization☆163Updated 4 years ago
- Secretgrind: a Valgrind analysis tool to detect secrets in memory☆61Updated 8 years ago
- MASCAB: a Micro-Architectural Side-Channel Attack Bibliography☆41Updated 6 years ago
- An IDA file loader for Mobicore trustlet and driver binaries☆59Updated 5 years ago