Spectre Exploits in the “Wild”

This page summarizes the projects mentioned and recommended in the original post on news.ycombinator.com
mitigation Kernel meltdown spectre Linux

SurveyJS - Open-Source JSON Form Builder to Create Dynamic Forms Right in Your App
With SurveyJS form UI libraries, you can build and style forms in a fully-integrated drag & drop form builder, render them in your JS app, and store form submission data in any backend, inc. PHP, ASP.NET Core, and Node.js.
surveyjs.io
featured
InfluxDB - Power Real-Time Data Analytics at Scale
Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
www.influxdata.com
featured

  • safeside

    Discontinued Understand and mitigate software-observable side-channels

    • Google's SafeSide project published a number of practical demonstrations of leaking data through side-channels.

    https://github.com/google/safeside

  • spectre-meltdown-checker

    Reptar, Downfall, Zenbleed, ZombieLoad, RIDL, Fallout, Foreshadow, Spectre, Meltdown vulnerability/mitigation checker for Linux & BSD

    • > - To what extend is this fixed by the mitigations which the kernel provides [0] for the Intel bugs? What do I have to add to my kernel command line?

    You can test your (linux/bsd) system with the following:

    https://github.com/speed47/spectre-meltdown-checker

    A shell script to tell if your system is vulnerable against the several "speculative execution" CVEs that were made public since 2018.

  • SurveyJS

    Open-Source JSON Form Builder to Create Dynamic Forms Right in Your App. With SurveyJS form UI libraries, you can build and style forms in a fully-integrated drag & drop form builder, render them in your JS app, and store form submission data in any backend, inc. PHP, ASP.NET Core, and Node.js.

    SurveyJS logo

  • Brace

    Toolkit compatible with multiple Linux distros that allows for installation of handpicked applications, along with corresponding configs that have been tuned for reasonable privacy and security. (by divestedcg)

    • I have a much more up-to-date and comprehensive GPL-3.0 package called 'brace' available here: https://github.com/divestedcg/brace

    Supports Fedora, Arch, Debian, and openSUSE.

    Has GNOME, Firefox, kernel cmdline, sysctl, firewalld, NetworkManager, and systemd unit hardening among other things.

    Goes well with firejail (am a developer of): https://github.com/netblue30/firejail

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts

  • Linux Mint: It use mitigation of intel cpu bug?

    1 project | /r/linuxmint | 4 May 2023

  • Package to Notify/check for Kernel Vulns?

    1 project | /r/archlinux | 14 Jan 2023

  • Spectre Meltdown Checker gives summary of 1 red in Debian but 0 red in Fedora 36.

    1 project | /r/debian | 26 Jun 2022

  • Intel Finds Bug in AMD's Spectre Mitigation, AMD Issues Fix

    1 project | /r/Amd | 14 Mar 2022

  • Any opinion about NUC as home server?

    1 project | /r/HomeServer | 24 May 2021