3: 2019-12-09 (Mon) 18:32:02 iseki | Cur: 2020-01-06 (Mon) 09:55:16 iseki | ||
---|---|---|---|
Line 1: | Line 1: | ||
** BOF [#c9e492b5] | ** BOF [#c9e492b5] | ||
+ | - https://www.atmarkit.co.jp/ait/articles/1409/22/news010.html | ||
+ | - ROP(Return-oriented Programming) | ||
+ | - Use-After-Free | ||
- https://www.ipa.go.jp/security/awareness/vendor/programmingv2/contents/c905.html | - https://www.ipa.go.jp/security/awareness/vendor/programmingv2/contents/c905.html | ||
- Buffer Over Flow | - Buffer Over Flow | ||
#br | #br | ||
- ASLR | - ASLR | ||
- | - カナリア SSP | + | - カナリア(stack canary) SSP (Stack Smashing Protector) |
-- -fstack-protector | -- -fstack-protector | ||
-- -fno-stack-protector | -- -fno-stack-protector | ||
-- -fstack-protector-all | -- -fstack-protector-all | ||
- ASLR、DEP、FullRELRO有効、SSP、PIE | - ASLR、DEP、FullRELRO有効、SSP、PIE | ||
- | - DEP | + | - DEP【Data Execution Prevention】 |
- PIC, PIE | - PIC, PIE | ||
#br | #br | ||
Line 24: | Line 27: | ||
- | -fno-stack-protector -z execstack | + | - -fno-stack-protector -z execstack |
- Backup list of BOF
- Backup diff of BOF vs current(No. All)
- 1: 2019-12-09 (Mon) 11:49:20 iseki
- 2: 2019-12-09 (Mon) 12:00:05 iseki
- 3: 2019-12-09 (Mon) 18:32:02 iseki
- 4: 2019-12-18 (Wed) 23:19:50 iseki
- 5: 2019-12-20 (Fri) 08:52:27 iseki