vusec / slam
Spectre based on Linear Address Masking
☆68Updated last year
Alternatives and similar repositories for slam:
Users that are interested in slam are comparing it to the libraries listed below
- ☆71Updated last year
- Uncovering Container Confusion in the Linux Kernel☆43Updated last year
- InSpectre Gadget: in-depth inspection and exploitability analysis of Spectre disclosure gadgets☆50Updated last week
- Artifact of "Indirector: High-Precision Branch Target Injection Attacks Exploiting the Indirect Branch Predictor" [USENIX Security 2024]☆60Updated 7 months ago
- Proof-of-concept for the GhostWrite CPU bug.☆106Updated 7 months ago
- A hacky tool for analysing linux kernel commits☆36Updated 2 years ago
- RetSpill: Igniting User-Controlled Data to Burn Away Linux Kernel Protections☆55Updated 10 months ago
- VirtFuzz is a Linux Kernel Fuzzer that uses VirtIO to provide inputs into the kernels subsystem. It is built with LibAFL.☆118Updated 9 months ago
- Binary exploitation by confusing the unwinder☆59Updated 2 years ago
- Damn Vulenerable Kernel Module for kernel fuzzing☆56Updated 4 months ago
- Linux Kernel N-day Exploit/Analysis.☆63Updated 4 months ago
- kAFL Fuzzer☆33Updated 3 weeks ago
- Kernel Read Write Execute☆40Updated last month
- SyzBridge is a research project that adapts Linux upstream PoCs to downstream distributions. It provides rich interfaces that allow you t…☆34Updated 3 months ago
- TikTag: Breaking ARM's Memory Tagging Extension with Speculative Execution (IEEE S&P 2025)☆60Updated 3 months ago
- A migration for the page table entry based side-channel attack agains SGX enclaves.☆15Updated last month
- ☆52Updated last week
- A Rowhammer fuzzer for AMD Zen-based systems (USENIX Security '24).☆47Updated 7 months ago
- ☆113Updated last week
- Linux kernel branches for confidential compute research☆17Updated last month
- Blogpost about optimizing binary-only fuzzing with AFL++☆63Updated last year
- Proof-of-concept implementation for the paper "CacheWarp: Software-based Fault Injection using Selective State Reset" (USENIX Security 20…☆60Updated 7 months ago
- ☆35Updated last year
- Full Chain Analysis of CVE-2022-4262, a non-trivial feedback slot type confusion in V8.☆98Updated last month
- A tool combining DWARF info and source to search for kernel heap objects☆22Updated last year
- Proof-of-concept implementation for the paper "Osiris: Automated Discovery of Microarchitectural Side Channels" (USENIX Security'21)☆56Updated 3 years ago
- ConfFuzz - Fuzzing for Interface Vulnerabilities☆44Updated last year
- Pre-Silicon Hardware Fuzzing Toolkit☆54Updated last month
- PoC for PixieFail vulnerabilities☆21Updated last year