google/security-research
Mar 2025 – May 2025
2 Months active
Languages Used
CMakefileAssembly
Technical Skills
Cache Side ChannelsExploit DevelopmentLow-level Systems ProgrammingPerformance AnalysisReverse EngineeringCPU Architecture
akrasuski1
PROFILE
Akrasuski1
Over a two-month period, contributed advanced security research to the google/security-research repository by developing proof-of-concept exploits targeting CPU microarchitectural vulnerabilities. Delivered a C and assembly implementation of Evict+Time and Prime+Probe cache-timing attacks during page table walks, providing reproducible artifacts and detailed documentation to support vulnerability validation and threat modeling. Additionally, created a Branch History Injection (BHI) exploit in both C and assembly, demonstrating intra-mode attack surfaces on Intel architectures and informing mitigation strategies. The work emphasized low-level systems programming, performance analysis, and vulnerability research, offering actionable resources for security assessment, defense testing, and responsible disclosure planning.
Overall Statistics
Feature vs Bugs
50%Features
Repository Contributions
2Total
Bugs
1
Commits
2
Features
1
Lines of code
1,806
Activity Months2
Your Network
25 peopleWork History
May 2025
1 Commits
May 1, 2025May 2025 monthly summary for google/security-research focused on vulnerability demonstration artifacts and defensive readiness rather than production fixes. Delivered a PoC for Branch History Injection (BHI) vulnerability in an intra-mode context, with reproducible assembly and C sources to illustrate the attack surface and guide mitigations across affected Intel architectures. The work provides actionable material for validation, defense testing, and patch prioritization.
1 Commits
May 1, 2025May 2025 monthly summary for google/security-research focused on vulnerability demonstration artifacts and defensive readiness rather than production fixes. Delivered a PoC for Branch History Injection (BHI) vulnerability in an intra-mode context, with reproducible assembly and C sources to illustrate the attack surface and guide mitigations across affected Intel architectures. The work provides actionable material for validation, defense testing, and patch prioritization.
May 2025
March 2025
1 Commits • 1 Features
Mar 1, 2025March 2025 monthly summary for google/security-research: Delivered a proof-of-concept demonstrating Evict+Time and Prime+Probe cache-timing attacks during page table walks, with a C implementation and build instructions. This work advances understanding of page-table side channels and informs threat modeling, mitigations, and responsible disclosure planning. No major bugs fixed this month; the focus was on delivering a reproducible PoC and accompanying documentation.
March 2025
1 Commits • 1 Features
Mar 1, 2025March 2025 monthly summary for google/security-research: Delivered a proof-of-concept demonstrating Evict+Time and Prime+Probe cache-timing attacks during page table walks, with a C implementation and build instructions. This work advances understanding of page-table side channels and informs threat modeling, mitigations, and responsible disclosure planning. No major bugs fixed this month; the focus was on delivering a reproducible PoC and accompanying documentation.
Activity
Loading activity data...
Quality Metrics
Correctness80.0%
Maintainability80.0%
Architecture85.0%
Performance70.0%
AI Usage20.0%
Skills & Technologies
Programming Languages
AssemblyCMakefile
Technical Skills
CPU ArchitectureCache Side ChannelsExploit DevelopmentLow-Level Systems ProgrammingLow-level Systems ProgrammingPerformance AnalysisReverse EngineeringVulnerability Research
Repositories Contributed To
Overview of all repositories you've contributed to across your timeline