Jump to content
Nytro

Return Oriented Programming

By Nytro, in Reverse engineering & exploit development

Recommended Posts

Nytro Mentor

Nytro

Posted
Posted

Return Oriented Programming

CSCI 6621: Network Security

Week 11, Lecture 21: Tuesday, 04/04/2011

Daniel Bilar

University of New Orleans

Department of Computer Science

Spring 2011

Goals today

• Review: Buffer overflow, format string

• Return Oriented Programming

– Chain together sequences (‘gadgets’) ending in RET

– Can use good code chunks as ‘alphabet’, string

together to get for bad code

• Some similarities to an antigram (form of anagram)

Within earshot ‡ I won't hear this

– Build “gadgets” for load?store, arithmetic,

logic, control flow, system calls

– Attack can perform arbitrary computation

using no injected code at all

Some slides gratefully adapted from Shacham BH 08 presentation

(UCSD)

Download:

http://shell-storm.org/papers/files/779.pdf

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
Go to topic listing
×
×
  • Create New...