vusec / bhi-spectre-bhbLinks
This repository contains exploit and reverse-engineering source code regarding the Spectre-BHB/Branch History Injection vulnerability
☆117Updated 3 years ago
Alternatives and similar repositories for bhi-spectre-bhb
Users that are interested in bhi-spectre-bhb are comparing it to the libraries listed below
Sorting:
- Arbitrary Speculative Code Execution with Return Instructions☆160Updated last year
- Ghidra Processor Module to disassemble and decompile the x86 Intel Atom microcode☆82Updated 2 years ago
- Spectre based on Linear Address Masking☆69Updated last year
- ☆112Updated 2 years ago
- ☆74Updated last year
- Proof-of-concept for the GhostWrite CPU bug.☆115Updated 11 months ago
- ☆26Updated last year
- ☆39Updated 2 years ago
- Proof-of-concept implementation for the paper "Osiris: Automated Discovery of Microarchitectural Side Channels" (USENIX Security'21)☆58Updated 2 months ago
- InSpectre Gadget: in-depth inspection and exploitability analysis of Spectre disclosure gadgets☆54Updated 3 months ago
- ☆90Updated last month
- Binary exploitation by confusing the unwinder☆63Updated 2 years ago
- This repository contains several tools to perform Prefetch Side-Channel Attacks☆59Updated 8 years ago
- Training in Transient Execution and PhantomCALL, from Inception (SEC'23) Artifacts.☆37Updated last year
- ☆164Updated 6 months ago
- ☆100Updated 3 years ago
- Microarchitectural exploitation and other hardware attacks.☆92Updated last year
- ☆98Updated 2 years ago
- Simple script to find kernel objects of a certain size in the Linux kernel☆109Updated 2 years ago
- Explore a live Linux kernel's memory using GDB☆115Updated 2 years ago
- ☆58Updated 5 months ago
- Intel ATR Training: Security of BIOS/UEFI System Firmware from Attacker and Defender Perspectives☆97Updated 8 years ago
- Proof of concept code for the Spectre CPU exploit.☆306Updated 2 years ago
- Artifact of "Indirector: High-Precision Branch Target Injection Attacks Exploiting the Indirect Branch Predictor" [USENIX Security 2024]☆61Updated 11 months ago
- High performance fuzzing using riscv to x86 binary translations and modern fuzzing techniques☆153Updated last year
- ☆182Updated last year
- TikTag: Breaking ARM's Memory Tagging Extension with Speculative Execution (IEEE S&P 2025)☆78Updated 8 months ago
- PoC of fuzzing closed-source userspace binaries with KVM☆166Updated last year
- Kasper: Scanning for Generalized Transient Execution Gadgets in the Linux Kernel☆58Updated last year
- BSOD: Binary-only Scalable fuzzing Of device Drivers☆161Updated 3 years ago