1: 2019-12-09 (Mon) 11:49:20 iseki  |
Cur: 2020-01-06 (Mon) 09:55:16 iseki |
||
|---|---|---|---|
| Line 1: | Line 1: | ||
| ** BOF [#c9e492b5] | ** BOF [#c9e492b5] | ||
| + | - https://www.atmarkit.co.jp/ait/articles/1409/22/news010.html | ||
| + | - ROP(Return-oriented Programming) | ||
| + | - Use-After-Free | ||
| + | - https://www.ipa.go.jp/security/awareness/vendor/programmingv2/contents/c905.html | ||
| - Buffer Over Flow | - Buffer Over Flow | ||
| #br | #br | ||
| - ASLR | - ASLR | ||
| - | - カナリア | + | - カナリア(stack canary) SSP (Stack Smashing Protector) |
| + | -- -fstack-protector | ||
| + | -- -fno-stack-protector | ||
| + | -- -fstack-protector-all | ||
| + | - ASLR、DEP、FullRELRO有効、SSP、PIE | ||
| + | - DEP【Data Execution Prevention】 | ||
| + | - PIC, PIE | ||
| #br | #br | ||
| + | |||
| + | PIC (Position Independent Code) | ||
| + | |||
| + | |||
| + | ASLR (Address Space Layout Randomization) | ||
| + | |||
| + | sysctl -w kernel.randomize_va_space=0 | ||
| + | sysctl -w kernel.randomize_va_space=2 | ||
| + | |||
| + | KASLR : カーネルの位置をランダム化したもの | ||
| + | |||
| + | |||
| + | - -fno-stack-protector -z execstack | ||
- Backup list of BOF
- Backup diff of BOF vs current(No. All)
- 1: 2019-12-09 (Mon) 11:49:20 iseki
- 2: 2019-12-09 (Mon) 12:00:05 iseki
- 3: 2019-12-09 (Mon) 18:32:02 iseki
- 4: 2019-12-18 (Wed) 23:19:50 iseki
- 5: 2019-12-20 (Fri) 08:52:27 iseki
