Jump to content
Nytro

Return Oriented Programming

By Nytro, in Reverse engineering & exploit development

Recommended Posts

Nytro Mentor

Nytro

Posted
Posted

Return Oriented Programming

CSCI 6621: Network Security

Week 11, Lecture 21: Tuesday, 04/04/2011

Daniel Bilar

University of New Orleans

Department of Computer Science

Spring 2011

Goals today

• Review: Buffer overflow, format string

• Return Oriented Programming

– Chain together sequences (‘gadgets’) ending in RET

– Can use good code chunks as ‘alphabet’, string

together to get for bad code

• Some similarities to an antigram (form of anagram)

Within earshot ‡ I won't hear this

– Build “gadgets” for load?store, arithmetic,

logic, control flow, system calls

– Attack can perform arbitrary computation

using no injected code at all

Some slides gratefully adapted from Shacham BH 08 presentation

(UCSD)

Download:

http://shell-storm.org/papers/files/779.pdf

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
Go to topic listing
×
×
  • Create New...