vusec / bhi-spectre-bhb
This repository contains exploit and reverse-engineering source code regarding the Spectre-BHB/Branch History Injection vulnerability
☆113Updated 2 years ago
Alternatives and similar repositories for bhi-spectre-bhb:
Users that are interested in bhi-spectre-bhb are comparing it to the libraries listed below
- Arbitrary Speculative Code Execution with Return Instructions☆157Updated last year
- Ghidra Processor Module to disassemble and decompile the x86 Intel Atom microcode☆79Updated 2 years ago
- Environment with vulnerable kernel for exploitation of the TEE driver (CVE-2021-44733)☆75Updated 3 years ago
- 0day VirtualBox 6.1.2 Escape for RealWorld CTF 2020/2021 CVE-2021-2119☆139Updated 4 years ago
- ☆71Updated last year
- ☆99Updated 3 years ago
- PoC of fuzzing closed-source userspace binaries with KVM☆163Updated 10 months ago
- Spectre based on Linear Address Masking☆68Updated last year
- Intel ATR Training: Security of BIOS/UEFI System Firmware from Attacker and Defender Perspectives☆97Updated 7 years ago
- High performance fuzzing using riscv to x86 binary translations and modern fuzzing techniques☆150Updated last year
- A Rowhammer fuzzer for AMD Zen-based systems (USENIX Security '24).☆47Updated 7 months ago
- Kernel Fuzzer for Xen Project (KF/x) - Hypervisor-based fuzzing using Xen VM forking, VMI & AFL☆471Updated 8 months ago
- The report and the exploit of CVE-2021-26943, the kernel-to-SMM local privilege escalation vulnerability in ASUS UX360CA BIOS version 303…☆136Updated 3 years ago
- ☆88Updated 5 months ago
- Binary exploitation by confusing the unwinder☆59Updated 2 years ago
- ☆95Updated 2 years ago
- BSOD: Binary-only Scalable fuzzing Of device Drivers☆160Updated 3 years ago
- ☆168Updated last month
- ☆23Updated last year
- InSpectre Gadget: in-depth inspection and exploitability analysis of Spectre disclosure gadgets☆50Updated 2 weeks ago
- CLKscrew Code and Scripts☆27Updated 4 years ago
- ☆154Updated 2 months ago
- ☆178Updated last year
- Simple script to find kernel objects of a certain size in the Linux kernel☆108Updated 2 years ago
- ☆144Updated 4 months ago
- ☆92Updated 8 months ago
- L1TF (Foreshadow) VM guest to host memory read PoC☆111Updated 6 years ago
- Automatic ROPChain Generation☆284Updated 5 years ago
- ☆83Updated 6 months ago
- LibAFL-based snapshot fuzzer to fuzz TMNF's RPC interface. Includes a free RCE exploit!☆41Updated 2 years ago