bird.makeup

Branch History Injection (BHI) is back! Disclosing Native BHI, bypassing deployed Spectre-v2/BHI mitigations (e.g., eBPF=off) to leak arbitrary kernel/host memory (e.g., root password hash below). Joint work by @SanWieb @HBitmasks @herbertbos @c_giuffrida: https://vusec.net/projects/native-bhi
See Tweet

Service load: 1933 hours to fetch all users
Source Code Support us on Patreon