@weber_daniel profile picture
Daniel Weber @weber_daniel

Microarchitectural Security | PhD Student @cispa | Stealing Flags for @saarsec

Joined November 2018
  • Tweets 167
  • Following 365
  • Followers 512
17 Photos and videos
Pinned Tweet
Daniel Weber@weber_daniel
Apr 17
After an embargo of 256 days, I'm happy to reveal our newest work: we present TREVEX, a black-box CPU fuzzer that detects transient execution vulnerabilities in an automated manner. Running TREVEX on AMD, Intel, and Zhaoxin CPUs discovered multiple new CPU vulnerabilities!
1
63
316
30,216
After an embargo of 256 days, I'm happy to reveal our newest work: we present TREVEX, a black-box CPU fuzzer that detects transient execution vulnerabilities in an automated manner. Running TREVEX on AMD, Intel, and Zhaoxin CPUs discovered multiple new CPU vulnerabilities!
1
63
316
30,216
more replies
I'm very happy how this project together with @fth0mas , @LTrampert , @Rayiizzz, and @misc0110 turned out!
1
4
1,000
Blog post about FP-DSS: roots.ec/blog/fpdss/ Tool and code: github.com/cispa/trevex TREVEX paper: roots.ec/publications/weber2… AMD advisory (FP-DSS): amd.com/en/resources/product… AMD advisory (FPVI variant): amd.com/en/resources/product…
2
14
940
We're [1] disclosing StackWarp, a CPU vulnerability allowing complete AMD SEV VM takeovers! The project was lead by @Rayiizzz, who is also on the academic job market, so hit him up if u want research like this on your campus! [1] @Rayiizzz, T. Hornetz, me, @fth0mas, @misc0110
1
4
7
989
More Info Exploits: stackwarpattack.com/ AMD's Fix: amd.com/en/resources/product…
2
207
Daniel Weber retweeted
Ruiyi Zhang@Rayiizzz
Jan 15
For more details on the discovery process and our findings, we refer to our research paper, which is published at USENIX Security 2026. paper: stackwarpattack.com/ github: github.com/cispa/StackWarp \cc Tristan Hornetz, @weber_daniel, @fth0mas, @misc0110

2
6
57
7,773
Daniel Weber retweeted
Ruiyi Zhang@Rayiizzz
Jan 15
Today we reveal StackWarp: a new CPU vulnerability exploiting a synchronization bug in AMD’s stack engine across Zen 1–5 CPUs. It enables deterministic manipulation of Confidential VM's stack pointer, allowing RCE and privilege escalation via both control- and data-flow hijacking
0:53
16
176
1,355
150,080
Thrilled to present our (Lukas G., @LTrampert ,Youheng L, @jovanbulck ,@misc0110) newest paper ("SCASE: Automated Secret Recovery via Side-Channel-Assisted Symbolic Execution") at #USENIX Security this week! 1/n
2
3
7
646
Using Athena, you can create PoC attacks without needing to care about your target's implementation or memory layout! Paper: d-we.me/papers/scase_usenix2… Code: github.com/cispa/scase PS: I'm available for hire soon, so ping me if you're at USENIX and know exciting opportunities!
4
220
Replying to @LTrampert @jovanbulck @misc0110
Automation is the key to further bridge the gap between academic research and practical side-channel attacks! Thus, we automate side-channel attacks by leveraging a symbolic execution engine.
1
64
Heading to Black Hat Asia now! @LTrampert and I will give a briefing about deanonymizing users not only on the web but also in their email clients! #BHASIA
3
5
578
Daniel Weber retweeted
RuhrSec – IT Security Conference
@ruhrsec
21 Feb 2025
Here comes another fantastic talk—get ready! "Beauty at a Cost: Privacy Implications of CSS on the Web and in Emails.“ by @LTrampert and @weber_daniel. 🌐 #RuhrSec Website ruhrsec.de/2025/ 📖 RuhrSec Program ruhrsec.de/2025/index.html#p… #itsecurity #itsicherheit
2
6
571
Daniel Weber retweeted
Matteo Rizzo@_MatteoRizzo
3 Feb 2025
github.com/google/security-r… Our newest research project is finally public! We can load malicious microcode on Zen1-Zen4 CPUs!

AMD: Microcode Signature Verification Vulnerability

### Summary Google Security Team has identified a security vulnerability in some AMD Zen-based CPUs. This vulnerability allows an adversary with local administrator privileges (ring 0 from outside...

github.com
12
270
800
123,946
Super excited to present our (L. Niemann, @____salmon____, @jan__reineke, @misc0110) newest paper at #ACSAC2024! We show how modern CPU hardware can be leveraged to stop side-channel attacks almost instantly (~200 CPU cycles)! Code/Paper: github.com/cispa/IRQGuard
2
14
59
4,176
In "No Leakage Without State Change", we propose to shift away from monitoring entire systems for malicious processes towards enabling high-profile processes to monitor their own behavior to detect the influences of microarchitectural attacks. Details: misc0110.net/files/irqguard_…
3
205
Daniel Weber retweeted
ACSAC@ACSAC_Conf
28 Nov 2024
The first #ACSAC2024 #PaperPreview today is by Weber et al., who show that HW features can be used to stop #SideChannel #attacks almost immediately by monitoring the victim: openconf.org/acsac2024/modul… #cybersecurity @weber_daniel @____salmon____ @jan__reineke @misc0110 @cispa
Weber et al.'s "No Leakage Without State Change: Repurposing Configurable Cpu Exceptions To Prevent Microarchitectural Attacks"

ALT Weber et al.'s "No Leakage Without State Change: Repurposing Configurable Cpu Exceptions To Prevent Microarchitectural Attacks"
2
6
815
Daniel Weber retweeted
Andreas Kogler@0xhilbert
13 Oct 2024
Excited to announce the release of the Rapid Data Analysis (RDA) framework! RDA streamlines side-channel analysis with plotting, processing, and analysis tools—usable directly from the terminal or in scripts. Check it out: github.com/0xhilbert/rda #SideChannel
1
9
20
2,449
Congrats! It was a pleasure working with you!
Andreas Kogler@0xhilbert
25 Aug 2024
I defended my PhD with distinction at @tugraz last friday! 🎉 Thank you to all the friends and folks who made this journey unforgettable. Special shoutout to @lavados, who went above and beyond by designing a game based on a "beer"-idea: Werewolves in the context of academia 🐺🎓
1
5
344
Load more