Revizor is a security-oriented fuzzer for detecting information leaks in CPUs, such as Spectre and Meltdown. It tests CPUs against Leakage Contracts and searches for unexpected leaks.
Get startedSpeculative execution attacks such as Spectre and Meltdown exploit microarchitectural optimizations to leak information across security domains. These vulnerabilities often stay undetected for years because few tools exits for systematic analysis of CPUs to find them.
Revizor targets this problem by automatically testing for microarchitectural leakage in black-box CPUs. The key idea is to employ speculation contracts to model the expected information leaks, and then to use randomized testing to compare the CPU's leakage against the model and thus detect unexpected leaks.
Finds unknown leaks in CPUs, automatically.
No special setup required; works on off-the-shelf PCs.
Detects a broad range of leaks: from classic side channels to speculative execution attacks, and more.
Fast detection: Spectre V1 detected in ~5 minutes, MDS in ~7 minutes.
Newly discovered vulnerabilities: