☆75Mar 11, 2024Updated last year
Alternatives and similar repositories for ghostrace
Users that are interested in ghostrace are comparing it to the libraries listed below
Sorting:
- InSpectre Gadget: in-depth inspection and exploitability analysis of Spectre disclosure gadgets☆60Feb 20, 2026Updated last week
- Spectre based on Linear Address Masking☆68Dec 4, 2023Updated 2 years ago
- Revizor - Hardware fuzzing for the age of speculation☆179Feb 23, 2026Updated last week
- ☆20Nov 27, 2023Updated 2 years ago
- TikTag: Breaking ARM's Memory Tagging Extension with Speculative Execution (IEEE S&P 2025)☆85Nov 25, 2024Updated last year
- ☆11May 17, 2024Updated last year
- A gdb plugin for linux kernel.☆28Jul 14, 2023Updated 2 years ago
- Pathfinder: High-Resolution Control-Flow Attacks Exploiting the Conditional Branch Predictor☆21Jul 4, 2024Updated last year
- This repository contains exploit and reverse-engineering source code regarding the Spectre-BHB/Branch History Injection vulnerability☆121Apr 12, 2022Updated 3 years ago
- use for unlock research☆25Apr 13, 2023Updated 2 years ago
- Proof-of-concept implementation for the paper "CacheWarp: Software-based Fault Injection using Selective State Reset" (USENIX Security 20…☆65Aug 12, 2024Updated last year
- The companion repository for the 39C3 talk: Build a Fake Phone, Find Real Bugs: Qualcomm GPU Emulation and Fuzzing with LibAFL QEMU☆36Feb 4, 2026Updated 3 weeks ago
- Arbitrary Speculative Code Execution with Return Instructions☆175Jan 23, 2024Updated 2 years ago
- ☆19Dec 28, 2021Updated 4 years ago
- Proof-of-concept code for the IEEE S&P 2025 paper "Peek-a-Walk: Leaking Secrets via Page Walk Side Channels"☆32Jul 2, 2025Updated 8 months ago
- LPE PoC of a vulnerability in the io_uring subsystem of the Linux Kernel.☆91Nov 23, 2023Updated 2 years ago
- ☆12Aug 31, 2022Updated 3 years ago
- Artifact of "Indirector: High-Precision Branch Target Injection Attacks Exploiting the Indirect Branch Predictor" [USENIX Security 2024]☆64Aug 9, 2024Updated last year
- study https://github.com/n132/Libc-GOT-Hijacking☆15Dec 7, 2023Updated 2 years ago
- A tool for detecting Spectre vulnerabilities through fuzzing☆46Aug 25, 2021Updated 4 years ago
- Proof-of-concept for the GhostWrite CPU bug.☆118Aug 9, 2024Updated last year
- ☆34Apr 14, 2025Updated 10 months ago
- ASPFuzz: Fuzzing the AMD SP's ROM bootloader with LibAFL using QEMU full-system emulation☆30Apr 12, 2023Updated 2 years ago
- ☆127Nov 12, 2024Updated last year
- This repository contains PoC for CVE-2024-7965. This is the vulnerability in the V8 that occurs only within ARM64.☆48Sep 16, 2024Updated last year
- ☆86Sep 19, 2024Updated last year
- ☆272Aug 2, 2025Updated 7 months ago
- ☆48Dec 19, 2018Updated 7 years ago
- Materials for my DMA attacks talk and a collection of related links☆64Jun 12, 2024Updated last year
- Report and exploit of CVE-2024-21305.☆40Jan 14, 2024Updated 2 years ago
- A Unit-Based Symbolic Execution Method for Detecting Memory Corruption Vulnerabilities in Executable Codes☆43May 7, 2023Updated 2 years ago
- The code in this project demonstrates 2 novel Spectre-V4 attacks, named as out-of-place Spectre-STL and Spectre-CTL, based on the Specula…☆22Nov 23, 2023Updated 2 years ago
- Binsec/Haunted is an extension of Binsec to verify speculative constant-time and detect Spectre attacks.☆17Oct 19, 2023Updated 2 years ago
- ☆20Dec 4, 2023Updated 2 years ago
- Materials from the DEF CON 30 talk on PACMAN☆34Oct 28, 2022Updated 3 years ago
- This upload contains the artifacts for the paper "SLAP: Data Speculation Attacks via Load Address Prediction on Apple Silicon", to appear…☆22Jan 26, 2025Updated last year
- Detecting Spectre vulnerabilities using symbolic execution, built on angr (github.com/angr/angr)☆77Sep 23, 2022Updated 3 years ago
- Repo for talk slides & materials☆21Nov 22, 2024Updated last year
- Working Set Page Cache side-channel IPC PoC☆68Jan 9, 2019Updated 7 years ago