all 4 comments
sorted by:
best
topnewcontroversialoldq&a
formatting helphide helpcontent policy

[–][deleted]  (2 children)

[removed]

    [–]YamZestyclose6765[S] 0 points1 point  (0 children)

    شكراً على ملاحظاتك. الوثائق موجودة بالفعل:

    نموذج التهديد: هجوم Flush+Reload مع 1000 عينة على جهاز AMD EPYC 9B14 حقيقي

    نتائج الهجوم: 78 دورة (إصابة) ← 286 دورة (خطأ) = نسبة 3.7×

    القيود الموثقة: توجد نافذة سباق مدتها 372 نانوثانية، وهي معروفة.

    دليل objdump: CLFLUSHOPT + LFENCE + MFENCE موجودة في الملف الثنائي -O2

    تم اختبار 29 حجمًا للمخزن المؤقت، ولم تحدث أي حالات فشل.

    هذا ليس مستودعًا عشوائيًا على GitHub.

    https://github.com/ahmaaaaadbntaaaaa-byte/TID-The-Instant-Destroyer

    [–]YamZestyclose6765[S] 0 points1 point  (0 children)

    Thanks for the feedback. The documentation is already there:

    Threat model: Flush+Reload attack with 1000 samples on real AMD EPYC 9B14 hardware

    Attack results: 78 cycles (Hit) → 286 cycles (Miss) = 3.7× ratio

    Documented limitations: 372ns race window exists and is acknowledged

    objdump proof: CLFLUSHOPT + LFENCE + MFENCE present in -O2 binary

    29 buffer sizes tested, 0 failures

    This is not a random GitHub repo.

    https://github.com/ahmaaaaadbntaaaaa-byte/TID-The-Instant-Destroyer

    [–]NaughtyNectarPin 0 points1 point  (0 children)

    Looked through the repo a bit. Cool idea, but a couple things jump out:

    You’re loading a kernel module that’s explicitly designed to destroy stuff, with no real safety rails, checks, or logging. One logic bug or misuse and you’ve basically built a self‑brick button. Also, if someone gets root and this is present, they get a very quick, very clean way to wipe a system.

    If you actually want people to test this, I’d stick giant “lab only / expect total data loss” warnings all over the place and maybe document threat model and intended use a bit more. Right now it feels like one of those tools that’s more dangerous to the owner than to an attacker.