Reptar, Downfall, Zenbleed, ZombieLoad, RIDL, Fallout, Foreshadow, Spectre, Meltdown vulnerability/mitigation checker for Linux & BSD

The popular NoScript Security Suite browser extension.

Guidance for the Spectre, Meltdown, Speculative Store Bypass, Rogue System Register Read, Lazy FP State Restore, Bounds Check Bypass Store, TLBleed, and L1TF/Foreshadow vulnerabilities as well as general hardware and firmware security guidance. #nsacyber

SpecuCheck is a Windows utility for checking the state of the software mitigations and hardware against CVE-2017-5754 (Meltdown), CVE-2017-5715 (Spectre v2), CVE-2018-3260 (Foreshadow), and CVE-2018-3639 (Spectre v4)

Meltdown Exploit / Proof-of-concept / checks whether system is affected by Variant 3: rogue data cache load (CVE-2017-5754), a.k.a MELTDOWN.

A semi-demi-working proof of concept for a mix of spectre and meltdown vulnerabilities

Revizor - a fuzzer to search for microarchitectural leaks in CPUs

This tool allows to check speculative execution side-channel attacks that affect many modern processors and operating systems designs. CVE-2017-5754 (Meltdown) and CVE-2017-5715 (Spectre) allows unprivileged processes to steal secrets from privileged processes. These attacks present 3 different ways of attacking data protection measures on CPUs …

Reproducing malicious memory reading on Intel i5 and Intel Xeon using a Spectre attack

Microarchitectural exploitation and other hardware attacks.

Microarchitectural attack development frameworks for prototyping attacks in native code (C, C++, ASM) and in the browser

KLEESpectre is a symbolic execution engine with speculation semantic and cache modelling

oo7, a binary analysis tool to defend against Spectre vulnerabilities

Meltdown/Spectre PoC for Windows

Stickers for labeling meltdown and spectre affected devices.

a list of BIOS/Firmware fixes adressing CVE-2017-5715, CVE-2017-5753, CVE-2017-5754

Inspec profile to test for the presence of the Meltdown/Spectre vulnerabilities

Spectre-based Meltdown attack (i.e. 2-in1) proof of concept in 99 lines of code. For more details see 'The Spectre of Meltdowns' presentation:

Proof of Concept implementation + Brief Tutorial of the Meltdown and Spectre attacks [+ Flush/Realod]

Meltdown and spectre explained -- for normal people