Evaluating the Effectiveness of Current Anti-ROP Defenses
暂无分享,去创建一个
Moritz Contag | Thorsten Holz | Felix Schuster | Jannik Pewny | Martin Steegmanns | Thomas Tendyck | Andreas Maaß
[1] Mark Russinovich,et al. Windows Internals, Part 2: Covering Windows Server 2008 R2 and Windows 7 (Windows Internals) , 2012 .
[2] Hovav Shacham,et al. Return-oriented programming without returns , 2010, CCS '10.
[3] Jared D. DeMott,et al. Bypassing EMET 4.1 , 2015, IEEE Security & Privacy.
[4] Hovav Shacham,et al. Return-Oriented Programming: Systems, Languages, and Applications , 2012, TSEC.
[5] Ralf-Philipp Weinmann,et al. A Framework for Automated Architecture-Independent Gadget Search , 2010, WOOT.
[6] David Brumley,et al. Q: Exploit Hardening Made Easy , 2011, USENIX Security Symposium.
[7] Harish Patil,et al. Pin: building customized program analysis tools with dynamic instrumentation , 2005, PLDI '05.
[8] Robert H. Deng,et al. ROPecker: A Generic and Practical Approach For Defending Against ROP Attacks , 2014, NDSS.
[9] Zhenkai Liang,et al. Jump-oriented programming: a new class of code-reuse attack , 2011, ASIACCS '11.
[10] Felix C. Freiling,et al. Return-Oriented Rootkits: Bypassing Kernel Code Integrity Protection Mechanisms , 2009, USENIX Security Symposium.
[11] Vasilis Pappas,et al. kBouncer : Efficient and Transparent ROP Mitigation , 2012 .
[12] Ahmad-Reza Sadeghi,et al. Just-In-Time Code Reuse: On the Effectiveness of Fine-Grained Address Space Layout Randomization , 2013, 2013 IEEE Symposium on Security and Privacy.
[13] Mark Russinovich,et al. Windows® Internals, Part 1: Covering Windows Server® 2008 R2 and Windows 7 , 2012 .
[14] Angelos D. Keromytis,et al. Transparent ROP Exploit Mitigation Using Indirect Branch Tracing , 2013, USENIX Security Symposium.
[15] Per Larsen,et al. Microgadgets: Size Does Matter in Turing-Complete Return-Oriented Programming , 2012, WOOT.
[16] Herbert Bos,et al. Out of Control: Overcoming Control-Flow Integrity , 2014, 2014 IEEE Symposium on Security and Privacy.