Questions about the AEPIC LEAK? @jerry_intel gets insights from @borello_pietro and Andreas Kogler at Black Hat #BHUSA See INTEL-SA-00657 for mitigations! intel.ly/3QyA63Z

#ProjectCircuitBreaker x LiveOverflow 🔴? Oh, what a treat! Check out this new video on cutting-edge tips to discovering #vulnerabilities in #Intel CPUs: intel.ly/3zQn7Ej & info on Project Circuit Breaker: intel.ly/3AfQCkh

#tbt to LiveOverflow 🔴's partnership with #ProjectCircuitBreaker on discovering vulnerabilities in Intel CPUs. Check it out here: youtu.be/x_R1DeZxGc0

I forgot to tweet out my last video on finding bugs in CPUs 😱 It’s one of my all time favorite videos and I’m very proud of it! A lot of effort went into researching and making the video. Thanks again Sebastian Österlund and Intel Security for making it happen 🥰 youtube.com/watch?v=x_R1De…

How I started chasing speculative type confusion bugs in the kernel and ended up with 'real' ones Jakob Koschel gave a talk at the Linux Plumbers Conference 2024 conference about the tool for discovering speculative type confusion bugs in the Linux kernel. Video: youtu.be/KkOdMwZRpYY?t=… [1/2]

My Talk "How I started chasing speculative type confusion bugs in the kernel and ended up with 'real' ones " Linux Plumbers Conference 2024 is now uploaded on YT (youtube.com/watch?v=LigVc7…). You can check it out if you missed it ;)

LibAFL QEMU full-system mode is a thing! Check out the example that fuzz a small ARM FreeRTOS firmware at github.com/AFLplusplus/Li… Next step: fast memory and devices snapshots

Disclosing CHOP, aka how attackers can bypass commodity return address protections such as stack cookies by hijacking the exception handling process. Paper to appear NDSS Symposium: download.vusec.net/papers/chop_nd…. Joint work by Duta Victor Fabian Freyer Fabio Pagani nSinus-R (@[email protected]) Cristiano Giuffrida

📢 We are hiring! If you are into the security of low-level things such as kernels, compilers, hardware designs and like to do your PhD in ETH's top-notch environment, you should definitely consider applying! #PhD #Security #HDL #RISCV #Rowhammer #Spectre jobs.ethz.ch/job/view/JOPG_…

🚀 RELEASE: kAFL v0.6 ➡️ 6.0 kernel ➡️ new repo: IntelLabs/kafl.actions: github.com/IntelLabs/kafl… What if you could integrate kAFL in your favorite Github Action pipeline ? Now you can ! ✨

Let’s see how long it takes until they start playing a loop of Swan Lake on TV… youtu.be/Xd2nTXsivHs

Our uncontained paper USENIX Security is online! Find out how the Linux kernel is the "container of" several type confusion bugs, detected by our sanitizer & static analyzer. Joint work by Jakob Koschel Pietro Borrello Daniele Cono D'Elia Herbert Bos Cristiano Giuffrida: vusec.net/projects/uncon…

Our Quarantine RAID Conference paper is online! Quarantine enforces strict CPU core-based isolation to mitigate transient execution attacks vs. cloud VMs. Joint work by Mathé Hertogh Manuel Wiesinger Sebastian Österlund nSinus-R (@[email protected]) Nadav Amit Herbert Bos Cristiano Giuffrida: download.vusec.net/papers/quarant…

A year ago I made a video about the RIDL CPU vulnerability. In case you haven't seen it, here it is uploaded to Twitter directly! The most interesting part of this has been learning about the prior research that later lead to the discovery of these modern side-channel

Emulated full system snapshot fuzzing by Intel 👀 haunted.computer/@novafacing/11…

We have open PhD/PostDoc positions in the COMSEC group at ETH. If you want to build the next high-profile hardware attack, come up with new analysis techniques, or work on strong software/hardware mitigations at the OS/compiler/HDL level, you should apply! comsec.ethz.ch/join

Interested in low-level hacking, embedded systems, and trusted execution environments? We currently have a PhD opening, feel free to reach out for more information! Application deadline: April 1st 2024.

This took a significant amount of time and money, and now we know what DRAM vendors are doing in their sense amplifiers! Lots of research opportunities moving forward. All the images and the reverse engineered circuits are now publicly available.

🚀 kAFL release v0.9 ! ✨kernel upgraded from 6.0 ➡️ 6.8 (fixes compatibility issues with last gen CPUs) github.com/IntelLabs/kAFL…

Happy to report that our InSpectreGadget paper won a Distinguished Paper award at USENIX Security: download.vusec.net/papers/inspect… VUSec Sander Wiebing alvise Cristiano Giuffrida Here is Sander Wiebing presenting the paper: