Conversation

Nice! FTR, Meltdown can still also be used on Linux to bypass KASLR by leaking some IDT entries.

Quote Tweet

Jun 30, 2020

Thought Meltdown was dead? See how @NicoEconomou revived it by leaking the KVA Shadow Mappings and breaking KASLR on latest Windows 10 labs.bluefrostsecurity.de/blog/2020/06/3

121

Replying to

Haha, took you this long to realize? :)

Andrey Konovalov

@andreyknvl

Replying to

@spendergrsec

I remember discussing this with

@tehjh

at one of the OffensiveCons, so I knew for some time. The Windows blogpost reminded me though, so I decided to try reproducing, and it still works :)

12:12 AM · Jul 1, 2020Twitter Web App

Replying to

and

Oh good :)