Alternatives and similar repositories for bhi-spectre-bhb

Users that are interested in bhi-spectre-bhb are comparing it to the libraries listed below

• comsec-group / retbleed
  Arbitrary Speculative Code Execution with Return Instructions
  ☆169Updated last year
• pietroborrello / ghidra-atom-microcode
  Ghidra Processor Module to disassemble and decompile the x86 Intel Atom microcode
  ☆82Updated 2 years ago
• vusec / slam
  Spectre based on Linear Address Masking
  ☆69Updated last year
• isec-tugraz / AEPIC
  ☆112Updated 2 years ago
• nyx-fuzz / QEMU-Nyx
  ☆90Updated 2 months ago
• vusec / ghostrace
  ☆75Updated last year
• amdprefetch / amd-prefetch-attacks
  ☆27Updated last year
• cispa / GhostWrite
  Proof-of-concept for the GhostWrite CPU bug.
  ☆116Updated last year
• isec-tugraz / msrevelio
  ☆39Updated 2 years ago
• cispa / osiris
  Proof-of-concept implementation for the paper "Osiris: Automated Discovery of Microarchitectural Side Channels" (USENIX Security'21)
  ☆59Updated 3 months ago
• wkz / kmemd
  Explore a live Linux kernel's memory using GDB
  ☆117Updated 2 years ago
• icicle-emu / icicle
  ☆182Updated last year
• klecko / kvm-fuzz
  PoC of fuzzing closed-source userspace binaries with KVM
  ☆164Updated last year
• pjlantz / optee-qemu
  Environment with vulnerable kernel for exploitation of the TEE driver (CVE-2021-44733)
  ☆76Updated 3 years ago
• vusec / inspectre-gadget
  InSpectre Gadget: in-depth inspection and exploitability analysis of Spectre disclosure gadgets
  ☆54Updated this week
• codexlynx / hardware-attacks-state-of-the-art
  Microarchitectural exploitation and other hardware attacks.
  ☆95Updated last year
• chop-project / chop
  Binary exploitation by confusing the unwinder
  ☆63Updated 2 years ago
• 0xf4b1 / bsod-kernel-fuzzing
  BSOD: Binary-only Scalable fuzzing Of device Drivers
  ☆162Updated 3 years ago
• isec-tugraz / prefetch
  This repository contains several tools to perform Prefetch Side-Channel Attacks
  ☆59Updated 8 years ago
• fkie-cad / libdesock
  A de-socketing library for fuzzing.
  ☆158Updated last month
• comsec-group / inception
  Training in Transient Execution and PhantomCALL, from Inception (SEC'23) Artifacts.
  ☆38Updated last year
• owenlly / Indirector_Artifact
  Artifact of "Indirector: High-Precision Branch Target Injection Attacks Exploiting the Indirect Branch Predictor" [USENIX Security 2024]
  ☆63Updated last year
• seal9055 / sfuzz
  High performance fuzzing using riscv to x86 binary translations and modern fuzzing techniques
  ☆152Updated last year
• compsec-snu / tiktag
  TikTag: Breaking ARM's Memory Tagging Extension with Speculative Execution (IEEE S&P 2025)
  ☆81Updated 9 months ago
• 0x0atang / clkscrew
  CLKscrew Code and Scripts
  ☆28Updated 5 years ago
• sefcom / RetSpill
  RetSpill: Igniting User-Controlled Data to Burn Away Linux Kernel Protections
  ☆63Updated last year
• Sentinel-One / efi_fuzz
  ☆151Updated 4 months ago
• seemoo-lab / VirtFuzz
  VirtFuzz is a Linux Kernel Fuzzer that uses VirtIO to provide inputs into the kernels subsystem. It is built with LibAFL.
  ☆127Updated last year
• AFLplusplus / qemuafl
  This fork of QEMU enables fuzzing userspace ELF binaries under AFL++.
  ☆84Updated 2 months ago
• martinradev / gdb-pt-dump
  ☆164Updated 8 months ago