Blind Return Oriented Programming (BROP) edit / delete

"Evolving" an ROP attack against an automatically-restarting server. This works by finding two gadgets whose behaviour you can distinguish (e.g. crashing vs. hanging), then constructing ROP chains that will have different behaviour depending on how many items are popped, then trying lots of addresses and combinations of arguments to find gadgets. Neat!

to buffer-overflow exploit rop security ... on 29 June 2015

How to Prevent the next Heartbleed edit / delete

An interesting review of some of the approaches that didn't prevent the OpenSSL heartbeat bug (either because they weren't effective or because they weren't applied).

to buffer-overflow checking openssl security static-analysis testing ... on 02 May 2014

Browser bookmarks: tasty+ | tasty= Log in | Export | Atom

Tags related to buffer-overflow

- buffer-overflow
1 + checking
1 + exploit
1 + openssl
1 + rop
2 + security
1 + static-analysis
1 + testing