Coder Social home page Coder Social logo

whoaac / spectre_meltdown Goto Github PK

View Code? Open in Web Editor NEW

This project forked from gentilkiwi/spectre_meltdown

0.0 1.0 0.0 574 KB

PoC for Spectre and customised PoC for Meltdown (CVE-2017-5754, CVE-2017-5753 and CVE-2017-5715)

C 39.70% C++ 37.70% Assembly 22.60%

spectre_meltdown's Introduction

spectre_meltdown

Processor vulnerability proof of concepts. I did not create these PoCs but have modified one slightly and have used them to perform some basic research relating to Microsoft's mitigations for Windows and provided some example screenshots below.

  • Spectre bounds check bypass and branch target injection vulnerability (CVE-2017-5715, CVE-2017-5753) requires a firmware (microcode) update.
  • Meltdown rogue data cache load vulnerability (CVE-2017-5754).

SANS Link. https://isc.sans.edu/forums/diary/Meltdown+and+Spectre+clearing+up+the+confusion/23197/

Usage for ca.exe

  • ca.exe <offset integer>

e.g.

  • ca.exe 1000

Usage for spectre.exe

  • spectre.exe

Before patching ca.exe screenshot

ca.exe screenshot

Before patching spectre.exe screenshot

spectre.exe screenshot

After patching ca.exe

PoC still works.

After patching spectre.exe screenshot

No microcode update, so it seems like Microsoft have implemented some kind of AV mitigation. The successful execution is from an AV excluded folder.

spectre.exe screenshot spectre.exe screenshot

spectre_meltdown's People

Contributors

bao7uo avatar gentilkiwi avatar

Watchers

avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.