slap-flop / slap-artifactsLinks
This upload contains the artifacts for the paper "SLAP: Data Speculation Attacks via Load Address Prediction on Apple Silicon", to appear at the 2025 IEEE Symposium on Security and Privacy.
☆19Updated 7 months ago
Alternatives and similar repositories for slap-artifacts
Users that are interested in slap-artifacts are comparing it to the libraries listed below
Sorting:
- Pathfinder: High-Resolution Control-Flow Attacks Exploiting the Conditional Branch Predictor☆20Updated last year
- Artifact of "Indirector: High-Precision Branch Target Injection Attacks Exploiting the Indirect Branch Predictor" [USENIX Security 2024]☆63Updated last year
- Using Data Memory-Dependent Prefetchers to Leak Data at Rest☆37Updated 3 years ago
- ☆17Updated last year
- Defeating Pointer Authentication on the Apple M1 with Hardware Attacks☆44Updated 3 years ago
- InSpectre Gadget: in-depth inspection and exploitability analysis of Spectre disclosure gadgets☆56Updated last week
- ☆27Updated last year
- Proof-of-concept code for the IEEE S&P 2025 paper "Peek-a-Walk: Leaking Secrets via Page Walk Side Channels"☆25Updated 2 months ago
- Training in Transient Execution and PhantomCALL, from Inception (SEC'23) Artifacts.☆39Updated last year
- M1 bare metal project in Rust☆31Updated 3 years ago
- Proof-of-concept implementation for the paper "Indirect Meltdown: Building Novel Side-Channel Attacks from Transient Execution Attacks" (…☆22Updated last year
- Implementation for the DIMVA'22 paper "Branch Different - Spectre Attacks on Apple Silicon"☆34Updated 3 years ago
- Source code & scripts for experimental characterization and real-system demonstration of RowPress, a widespread read disturbance phenomen…☆34Updated last year
- TikTag: Breaking ARM's Memory Tagging Extension with Speculative Execution (IEEE S&P 2025)☆81Updated 9 months ago
- Proof-of-concept implementation for the paper "Efficient and Generic Microarchitectural Hash-Function Recovery" (IEEE S&P 2024)☆30Updated 2 years ago
- Materials from the DEF CON 30 talk on PACMAN☆33Updated 2 years ago
- Pre-Silicon Hardware Fuzzing Toolkit☆58Updated last month
- This repo demonstrates the Return-to-Non-Secure (ret2ns) vulnerability on ARM Cortex-M TrustZone. It contains the attack and defense demo…☆32Updated last year
- Artifact evaluation of paper: MorFuzz: Fuzzing Processor via Runtime Instruction Morphing enhanced Synchronizable Co-simulation☆43Updated 4 months ago
- Revizor - a fuzzer to search for microarchitectural leaks in CPUs☆161Updated 3 weeks ago
- HW interface for memory caches☆28Updated 5 years ago
- Patch your macOS kernel to enable support for the high-resolution timers on M1☆35Updated 4 months ago
- The code in this project demonstrates 2 novel Spectre-V4 attacks, named as out-of-place Spectre-STL and Spectre-CTL, based on the Specula…☆22Updated last year
- Constantine is a compiler-based system to automatically harden programs against microarchitectural side channels☆75Updated 2 years ago
- Trigger the rowhammer bug on ARMv8☆33Updated 6 years ago
- Use hardware performance counters to find mapping of addresses to L3 slices in Intel processors☆17Updated 2 years ago
- ☆39Updated 2 years ago
- Proof-of-concept for I See Dead Micro-Ops transient execution attack☆14Updated 3 years ago
- Medusa Repository: Transynther tool and Medusa Attack☆23Updated 5 years ago
- ☆18Updated 3 years ago