zyedidia / lfi
LFI: Practical, Efficient, and Secure Software-based Sandboxing
☆63Updated this week
Alternatives and similar repositories for lfi:
Users that are interested in lfi are comparing it to the libraries listed below
- Intra-Unikernel Isolation with Intel Memory Protection Keys☆12Updated 5 years ago
- QEMU with support for CHERI☆58Updated 2 weeks ago
- ☆19Updated 2 years ago
- ☆50Updated 2 years ago
- Using Malicious #VC Interrupts to Break AMD SEV-SNP (IEEE S&P 2024)☆24Updated 11 months ago
- ☆35Updated 3 years ago
- ☆49Updated 3 years ago
- Verification of BPF JIT compilers☆54Updated last year
- Some experiments with SMT solvers and GIMPLE IR☆73Updated 2 weeks ago
- Proof-of-concept implementation for the paper "(M)WAIT for It: Bridging the Gap between Microarchitectural and Architectural Side Channel…☆25Updated last year
- Proof-of-concept implementation for the paper "Efficient and Generic Microarchitectural Hash-Function Recovery" (IEEE S&P 2024)☆27Updated last year
- Loupe: Syscall Usage Analysis Tool☆32Updated this week
- Lists of must-read papers (mainly security papers)☆28Updated 6 months ago
- A tool to enable fuzzing for Spectre vulnerabilities☆30Updated 5 years ago
- Pin-Based Constant Execution Checker (Pin-based CEC)☆19Updated this week
- Virtualisation platform using CHERI for isolation and sharing☆37Updated 9 months ago
- GrayC: Greybox Fuzzing of Compilers and Analysers for C☆58Updated last year
- Automatic detection of speculative information flows☆67Updated 3 years ago
- Verification and optimization tool for concurrent code☆23Updated 2 weeks ago
- CheriOS -- a minimal microkernel that demonstrates "clean-slate" CHERI memory protection and object capabilities☆40Updated 2 years ago
- ☆51Updated last year
- Sail version of Arm ISA definition, currently for Armv9.3-A, and with the previous Sail Armv8.5-A model☆77Updated last month
- Artifacts for our ShowTime paper (AsiaCCS '23), including distinguishing cache hits and misses with the human eye.☆12Updated last year
- This repo tracks a compatible state of all sev step components and contains script to easily install everything required to setup a sev v…☆38Updated last year
- Breaking Confidential VMs with Malicious Interrupts (USENIX Security 2024)☆28Updated 10 months ago
- Constantine is a compiler-based system to automatically harden programs against microarchitectural side channels☆72Updated 2 years ago
- Fuzzer that searches for vulnerabilities like Spectre and Meltdown in CPUs☆42Updated 2 years ago
- XML representation of the x86 instruction set☆28Updated this week
- Microscope: Enabling Microarchitectural Replay Attacks☆19Updated 4 years ago
- Risc-V hypervisor for TEE development☆112Updated last year