RECENT POSTS
- Introduction to FreeBSD Security Best Practices
- Working with Package Management in FreeBSD
- Understanding FreeBSD Security Advisories and Updates
- Troubleshooting Common System Administration Issues in FreeBSD
- Tips for Hardening FreeBSD to achieve System Protection
- Setting Up DHCP Server in FreeBSD
- Secure User and Group Management in FreeBSD Systems
- Secure Remote Access with SSH in FreeBSD
- Optimizing System Performance in FreeBSD
- Network Packet Capture with tcpdump in FreeBSD
- All posts ...
Do you have GDPR compliance issues ?
Check out Legiscope a GDPR compliance software, that will save you weeks of work, automating your documentation, the training of your teams and all processes you need to keep your organisation compliant with privacy regulations
Spectre-meltdown-checker
Jul 20, 2023
Checks your system for the speculative execution CVEs
A shell script to tell if your system is vulnerable against the several “speculative execution” CVEs that were made public since 2018.
- CVE-2017-5753 [bounds check bypass] aka ‘Spectre Variant 1’
- CVE-2017-5715 [branch target injection] aka ‘Spectre Variant 2’
- CVE-2017-5754 [rogue data cache load] aka ‘Meltdown’ aka ‘Variant 3’
- CVE-2018-3640 [rogue system register read] aka ‘Variant 3a’
- CVE-2018-3639 [speculative store bypass] aka ‘Variant 4’
- CVE-2018-3615 [L1 terminal fault] aka ‘Foreshadow SGX’
- CVE-2018-3620 [L1 terminal fault] aka ‘Foreshadow-NG OS’
- CVE-2018-3646 [L1 terminal fault] aka ‘Foreshadow-NG VMM’
- CVE-2018-12126 [microarchitectural store buffer data sampling MSBDS] aka ‘Fallout’
- CVE-2018-12130 [microarchitectural fill buffer data sampling MFBDS] aka ‘ZombieLoad’
- CVE-2018-12127 [microarchitectural load port data sampling MLPDS] aka ‘RIDL’
- CVE-2019-11091 [microarchitectural data sampling uncacheable memory MDSUM] aka ‘RIDL’
- CVE-2019-11135 [TSX asynchronous abort] aka ‘TAA’ aka ‘ZombieLoad V2’
- CVE-2018-12207 [machine check exception on page size changes MCEPSC] aka ‘No eXcuses’ aka ‘iTLB Multihit’
- CVE-2020-0543 [Special Register Buffer Data Sampling SRBDS]
- Older
- Newer
Checkout these related ports:
- Zzuf - Transparent application input fuzzer
- Zlint - X.509 certificate linter
- Zeronet - Decentralized websites using Bitcoin crypto and BitTorrent network
- Zenmap - GUI frontend for the Nmap scanning utility
- Zeek - System for detecting network intruders in real-time
- Zaproxy - The OWASP zed attack proxy
- Yubioath-desktop - GUI for displaying OATH codes with a Yubikey
- Yubikey-personalization-gui - Graphical YubiKey personalization tool
- Yubikey-manager-qt - Cross-platform application for configuring any YubiKey
- Yubikey-agent - Seamless ssh-agent for YubiKeys
- Yubico-piv-tool - Yubico PIV tool
- Ylva - Command line password manager and file encryption program
- Ykpers - Library and tool for personalization of Yubico's YubiKey
- Ykclient - Yubico C client library
- Yersinia - Layer 2 vulnerability scanner (switches, spanning tree, 802.1q ...)