Explore @cispa Open Source projects

Top Rating
- Top Contributors
  Discover the Top Open Source contributors by country or by language
- Interviews
  Discover real stories from Open Source developers
Discover

Discover your Favorite Language
Discover the top trending repositories and projects on Github. Explore the latest trends in your preferred languages.

Ruby

Clojure

Rust

Shell

Kotlin

Scala

CSS

Objective-C

More Languages
Awesome

Awesome repositories
Discover the most awesome repositories and projects of your favorite languages. Inspired by the Awesome-* lists trend in GitHub.

C

Rust

Java

Perl

Swift

Lua

Groovy

Dart

More Languages
By Country

Rankings by Country
Discover the community of talented open source contributors in each country.

🇪🇸 Spain

🇺🇿 Uzbekistan

🇮🇸 Iceland

🇳🇦 Namibia

🇨🇭 Switzerland

🇭🇺 Hungary

🇸🇾 Syria

🇦🇫 Afghanistan

All Countries Compare Countries

CISPA (@cispa)

cispa

Stars
516
Global Org. Rank 23,424 (Top 8 %)
Registered over 7 years ago
Most used languages

C
33.3 %

Python
30.0 %

C++
16.7 %

HTML
6.7 %

Jupyter Notebook
6.7 %

Rust
3.3 %

TypeScript
3.3 %
Location 🇩🇪 Germany
Country Total Rank 6,688
Country Ranking

C
210

Jupyter Notebook
448

C++
723

Python
2,017

Rust
2,675

TypeScript
2,747

HTML
3,450

GhostWrite

Proof-of-concept for the GhostWrite CPU bug.

CacheWarp

Proof-of-concept implementation for the paper "CacheWarp: Software-based Fault Injection using Selective State Reset" (USENIX Security 2024)

Security-RISC

Proof-of-concept implementation for the paper "A Security RISC: Microarchitectural Attacks on Hardware RISC-V CPUs" (IEEE S&P 2023)

osiris

Proof-of-concept implementation for the paper "Osiris: Automated Discovery of Microarchitectural Side Channels" (USENIX Security'21)

browser-cpu-fingerprinting

This repository contains the code for our paper "Browser-based CPU Fingerprinting".

Jupyter Notebook

loop-DoS

Repository for application-layer loop DoS

persistent-clientside-xss

Exploit generator and Taint Engine to find persistent (and reflected) client-side XSS

BranchDifferent

Implementation for the DIMVA'22 paper "Branch Different - Spectre Attacks on Apple Silicon"

Microarchitectural-Hash-Function-Recovery

Proof-of-concept implementation for the paper "Efficient and Generic Microarchitectural Hash-Function Recovery" (IEEE S&P 2024)

mwait

Proof-of-concept implementation for the paper "(M)WAIT for It: Bridging the Gap between Microarchitectural and Architectural Side Channels" (USENIX Security'23)

indirect-meltdown

Proof-of-concept implementation for the paper "Indirect Meltdown: Building Novel Side-Channel Attacks from Transient Execution Attacks" (ESORICS 2023)

full-domain-functional-bootstrap

xs-observations

Code for our 2023 IEEE S&P Paper "The Leaky Web: Automated Discovery of Cross-Site Information Leaks in Browsers and the Web"

Jupyter Notebook

ampfuzz

Fuzzer for Amplification Vulnerabilities (USENIX '22, Krupp et al)

hammulator

Proof-of-concept implementation for the paper "Hammulator: Simulate Now - Exploit Later" (DRAMSec 2023)

regcheck

Proof-of-concept implementation for the paper "Reviving Meltdown 3a" (ESORICS 2023)

Switchpoline

Proof-of-concept implementation for the paper "Switchpoline: A Software Mitigation for Spectre-BTB and Spectre-BHB on ARMv8" (AsiaCCS 2024)

http-conformance

Code for our 2024 ACM AsiaCCS Paper "Who's Breaking the Rules? Studying Conformance to the HTTP Specifications and its Security Impact"

gdpr-consent

Code for our paper: "Share First, Ask Later (or Never?) - Studying Violations of GDPR's Explicit Consent in Android Apps"

login-security-landscape

Code for our 2024 IEEE S&P Paper "To Auth or Not To Auth? A Comparative Analysis of the Pre- and Post-Login Security Landscape"

micsec-training

The material for the hands-on session "Turning Timing Differences into Data Leakage" at Mic-Sec 2022

IRQGuard

cascading-spy-sheets

This repository contains the artifact for our paper "Cascading Spy Sheets: Exploiting the Complexity of Modern CSS for Email and Browser Fingerprinting" published at NDSS 2025.

framing-control-proxy

A server-side proxy to convert X-Frame-Options into CSP frame-ancestors and vice versa.

the-security-lottery

This repository contains our code for the data collection and analysis. It is a product of our work published at the 31st USENIX Security Symposium 2022.

bitahoy

artist

framing-control-analytics

Analysis Library used for the paper "A Tale of Two Headers: A Formal Analysis of Inconsistent Click-Jacking Protection on the Web"

12-angry-developers-web-applications

This repository contains our code for each version (programming language) for the Coding Task. It is a product of our work published at the 28th ACM Conference on Computer and Communications Security (CCS) in 2021.

consent-notices

DNS-Applayer-DDoS-Protection

Code and datasets for protecting DNS infrastructures against application-layer DDoS attacks (EuroS&P '23 paper)