协程框架式编程：滥用现代 C++ 破坏控制流完整性.pdf

《协程框架式编程：滥用现代 C++ 破坏控制流完整性.pdf》由会员分享，可在线阅读，更多相关《协程框架式编程：滥用现代 C++ 破坏控制流完整性.pdf（231页珍藏版）》请在三个皮匠报告上搜索。

1、Breaking Control Flow Integrity by Abusing Modern C+Breaking Control Flow Integrity by Abusing Modern C+Marcos Bajo h3xduckChristian RossowCoroutine FrameCoroutine Frame-Oriented Oriented ProgrammingProgrammingThe Old AgesThe Old Ages1972Buffer overflows1stmentioned200020102020The Old AgesThe Old Ag

2、esret2libc1972200020102020Buffer overflows1stmentionedStackcanariesThe Old AgesThe Old Agesret2libc1972200020102020Buffer overflows1stmentionedStackcanariesDEP/NXASLRThe Old AgesThe Old Agesret2libc1972200020102020Buffer overflows1stmentionedStackcanariesDEP/NXASLRROPJOPDOPThe Modern AgesThe Modern

3、Ages1972200020102020CFI 1stmentionedThe Modern AgesThe Modern Ages1972200020102020CFI 1stmentionedCFGLLVM CFIIntel CETCode ReuseCode Reuse Code ReuseCode ReuseControl Flow IntegrityControl Flow Integrity“C ”f A LR,DEP,r Make exploits harderControl Flow IntegrityConstruct Control Flow Graph(CFG)Instr

4、umentation to enforce CFGCode-reuse techniques stoppedSorry,yes,ROP is dead Who We AreWho We AreMarcos Bajoaka PhD Student at CISPA(Germany)https:/ things I love:MalwareExploits DucksWho We AreWho We AreChristian RPhD Student at CISPA(Germany)https:/ things I love:MalwareExploits DucksFaculty at CIS

5、PACS Professor at Saarbrcken&DortmundLeader of the Systems Security GroupMarcos Bajoaka h3xduckrossowcispa.dechrossow(We do very cool things,reach out!)What We Will LearnWhat We Will Learn1.Userspace CFI defensesHow does CFI look like in an everyday system?What We Will LearnWhat We Will Learn1.Users

6、pace CFI defensesHow does CFI look like in an everyday system?2.Bypassing CFIHow can we exploit programs protected by CFI schemes?What We Will LearnWhat We Will Learn1.Userspace CFI defensesHow does CFI look like in an everyday system?2.Bypassing CFIHow can we exploit programs protected by CFI schem