HW-CACHE-TIMINGCredential Access

Cache Timing Attack (FLUSH+RELOAD / PRIME+PROBE)

Measure cache-access timing to recover AES / RSA / ECC keys from co-resident processes — devastating in multi-tenant clouds and browsers.

§ Where this technique fits

HW-CACHE-TIMING is catalogued under the Credential Access tactic of the offensive-security kill-chain. It appears in 1 approved dossier in the registry, typically at step 2 on average.

§ Dossiers chaining this technique

Spectre-class side-channel → cross-tenant memory leak
Pre-mitigation cloud VM lets a co-tenant trigger speculative loads from kernel / sibling-VM memory. Cache-side-channel measurements recover sensitive data, including TLS keys + cloud creds.
step 2 / 6

§ What commonly comes next

01
OS Credential Dumping
T1003 · Credential Access
seen 1×
02
Spectre / Meltdown-class Side-Channel
HW-SPECTRE · Credential Access
seen 1×

§ Where this technique fits

§ Dossiers chaining this technique

Spectre-class side-channel → cross-tenant memory leak

§ What commonly comes next