Alternatives and similar repositories for smash

Users that are interested in smash are comparing it to the libraries listed below

• saaramar / Publications
  ☆85Updated last year
• HexHive / SMoTherSpectre
  Proof-of-concept code for the SMoTherSpectre exploit.
  ☆75Updated 5 years ago
• synacktiv / CVE-2021-3492
  PoC for CVE-2021-3492 used at Pwn2Own 2021
  ☆41Updated 3 years ago
• opensrcsec / same_type_object_reuse_exploits
  PoC exploits associated with the blog at https://grsecurity.net/exploiting_and_defending_against_same_type_object_reuse
  ☆29Updated 2 years ago
• establishingsecurity / trustzone-rootkit
  TrustZone or TreacheryZone? Giving a vendor more trust increases their power to abuse us surreptitiously.
  ☆14Updated 3 years ago
• cispa / osiris
  Proof-of-concept implementation for the paper "Osiris: Automated Discovery of Microarchitectural Side Channels" (USENIX Security'21)
  ☆57Updated 3 weeks ago
• vusec / uncontained
  Uncovering Container Confusion in the Linux Kernel
  ☆44Updated last year
• codexlynx / hardware-attacks-state-of-the-art
  Microarchitectural exploitation and other hardware attacks.
  ☆92Updated last year
• HyperDbg / slides
  Slides about HyperDbg
  ☆30Updated 3 months ago
• isec-tugraz / prefetch
  This repository contains several tools to perform Prefetch Side-Channel Attacks
  ☆59Updated 8 years ago
• vusec / blindside
  ☆36Updated 4 years ago
• chop-project / chop
  Binary exploitation by confusing the unwinder
  ☆63Updated 2 years ago
• nyx-fuzz / packer
  ☆20Updated 9 months ago
• pagabuc / kallsyms-extractor
  Tool to extract the kallsyms (System.map) from a memory dump
  ☆27Updated last year
• OleksiiOleksenko / SpecFuzz
  A tool for detecting Spectre vulnerabilities through fuzzing
  ☆41Updated 3 years ago
• koreacsl / SysBumps
  ☆26Updated 4 months ago
• FuzzySecurity / H2HC-2024
  Hackers to Hackers Conference (H2HC) presentation in São Paulo
  ☆36Updated 6 months ago
• depletionmode / wsIPC
  Working Set Page Cache side-channel IPC PoC
  ☆68Updated 6 years ago
• c3r34lk1ll3r / CVE-2017-5123
  PoC CVE-2017-5123 - LPE - Bypassing SMEP/SMAP. No KASLR
  ☆32Updated 5 years ago
• nyx-fuzz / KVM-Nyx
  ☆36Updated last year
• vusec / slam
  Spectre based on Linear Address Masking
  ☆69Updated last year
• vusec / ghostrace
  ☆74Updated last year
• leesh3288 / CTF
  Repo for storing CTF related stuff (Writeups, etc.)
  ☆51Updated last year
• bitdefender / lvi-lfb-attack-poc
  This repository contains the sources and documentation for the LVI-LFB Control Flow Hijacking attack PoC (CVE-2020-0551)
  ☆25Updated 5 years ago
• SoftwareSecurityLab / UbSym
  A Unit-Based Symbolic Execution Method for Detecting Memory Corruption Vulnerabilities in Executable Codes
  ☆43Updated 2 years ago
• MaherAzzouzi / BrowserExploitation
  Browser exploitation v8 and sandbox escape challenges with solutions.
  ☆27Updated 3 years ago
• vusec / bhi-spectre-bhb
  This repository contains exploit and reverse-engineering source code regarding the Spectre-BHB/Branch History Injection vulnerability
  ☆117Updated 3 years ago
• atredis-jordan / SymbolicTriagePost
  Supporting Materials for “Symbolic Triage” blog post
  ☆24Updated 2 years ago
• Ledger-Donjon / ledger-donjon-ctf-2020
  Ledger Donjon CTF 2020
  ☆17Updated 3 years ago
• quarkslab / tpmee
  ☆11Updated 3 years ago