vusec / slamLinks
Spectre based on Linear Address Masking
☆67Updated last year
Alternatives and similar repositories for slam
Users that are interested in slam are comparing it to the libraries listed below
Sorting:
- ☆75Updated last year
- InSpectre Gadget: in-depth inspection and exploitability analysis of Spectre disclosure gadgets☆56Updated last week
- Uncovering Container Confusion in the Linux Kernel☆45Updated last year
- Proof-of-concept for the GhostWrite CPU bug.☆115Updated last year
- ☆24Updated 10 months ago
- Artifact of "Indirector: High-Precision Branch Target Injection Attacks Exploiting the Indirect Branch Predictor" [USENIX Security 2024]☆63Updated last year
- Binary exploitation by confusing the unwinder☆66Updated 2 years ago
- A migration for the page table entry based side-channel attack agains SGX enclaves.☆19Updated 8 months ago
- Same-Architecture Firmware Rehosting and Fuzzing☆124Updated 10 months ago
- ☆133Updated last week
- VirtFuzz is a Linux Kernel Fuzzer that uses VirtIO to provide inputs into the kernels subsystem. It is built with LibAFL.☆130Updated last year
- Ghidra Processor Module to disassemble and decompile the x86 Intel Atom microcode☆83Updated 2 years ago
- Arbitrary Speculative Code Execution with Return Instructions☆172Updated last year
- asnfuzzgen - ASN.1 Structure-Aware Fuzzing Compiler☆46Updated last year
- Damn Vulenerable Kernel Module for kernel fuzzing☆64Updated last year
- Proof-of-concept implementation for the paper "Indirect Meltdown: Building Novel Side-Channel Attacks from Transient Execution Attacks" (…☆22Updated 2 years ago
- This repository contains exploit and reverse-engineering source code regarding the Spectre-BHB/Branch History Injection vulnerability☆118Updated 3 years ago
- TikTag: Breaking ARM's Memory Tagging Extension with Speculative Execution (IEEE S&P 2025)☆83Updated 11 months ago
- Symbolic execution for RISC-V machine code based on the formal LibRISCV ISA model☆52Updated 5 months ago
- ☆184Updated last year
- This repo demonstrates the Return-to-Non-Secure (ret2ns) vulnerability on ARM Cortex-M TrustZone. It contains the attack and defense demo…☆32Updated last year
- RetSpill: Igniting User-Controlled Data to Burn Away Linux Kernel Protections☆64Updated last year
- A hacky tool for analysing linux kernel commits☆37Updated 2 years ago
- ☆60Updated 7 months ago
- A Binary Ninja plugin that automatically resolves type information for EFI protocol usage.☆37Updated 3 months ago
- Linux kernel branches for confidential compute research☆19Updated 6 months ago
- Kasper: Scanning for Generalized Transient Execution Gadgets in the Linux Kernel☆58Updated last year
- Easy way to run a LLVM instrumented kernel in qemu with gdb☆22Updated last year
- PoC for PixieFail vulnerabilities☆24Updated last year
- Blogpost about optimizing binary-only fuzzing with AFL++☆69Updated 2 years ago