CVE-2017-5754

This repository provides a curated list of references and PoC links for CVE-2017-5754 (Meltdown), a side-channel vulnerability allowing unauthorized memory reads from kernel space. It includes academic papers, exploit repositories, and technical analyses but does not contain direct exploit code.

SpecuCheck is a Windows utility that queries the system for mitigation status against speculative execution vulnerabilities (e.g., Meltdown, Spectre) using undocumented NtQuerySystemInformation API calls. It does not exploit vulnerabilities but checks for patch presence and mitigation states.

This repository contains a proof-of-concept exploit for CVE-2017-5754 (Meltdown), which checks if a Linux system is vulnerable by comparing system call addresses obtained via the Meltdown exploit with those listed in /proc/kallsyms.

This repository contains a Python script that checks for speculative execution side-channel vulnerabilities (CVE-2017-5754 and CVE-2017-5715) by leveraging PowerShell commands to inspect system settings. It does not exploit the vulnerabilities but scans for their presence.

This repository provides a detailed writeup and references for CVE-2017-5754 (Meltdown), including links to functional PoCs and technical analyses. It does not contain direct exploit code but offers comprehensive resources for understanding the vulnerability.

This repository contains a proof-of-concept exploit for CVE-2017-5754 (Meltdown), demonstrating speculative execution side-channel attacks to leak kernel memory. The code includes cache timing techniques and speculative execution triggers to read arbitrary memory addresses.

This is a shell script that scans AWS EC2 instances to determine if they have been patched against Meltdown (CVE-2017-5754) by checking console output for specific kernel strings. It does not exploit the vulnerability but verifies patch status.

This repository contains a proof-of-concept exploit for CVE-2017-5754 (Meltdown) that checks if a Linux system is vulnerable by comparing system call addresses obtained via the Meltdown exploit with those listed in /proc/kallsyms.