Your search keyword '"ASLR"' showing total 4 results

1. TÉCNICAS DE OFENSA Y DEFENSA A LOS FALLOS POR CORRUPCIÓN DE MEMORIA Memory Corruption Failures Attack and Defense Techniques

Author

David Mora Rodríguez and Mario Muñoz

Subjects

ASLR, Corrupción de memoria, NX/XD, Sistemas operativos, Programación orientada a retornos, memory corruption, operating systems, return-oriented programming, Technology, Engineering (General). Civil engineering (General), TA1-2040

Abstract

Las técnicas de ataque a aplicaciones por corrupción de memoria aprovechan las debilidades de los programas para obtener ejecución de código arbitrario. Estos fallos de programación han sido utilizados por diferentes ataques desde la década de los ochenta. Este documento presenta las diferentes técnicas que puede utilizar un atacante para lograr su objetivo y las precauciones que debe tener un desarrollador de aplicaciones, para evitar que su programa esté expuesto a vulnerabilidades que permitan ejecutar ataques por corrupción de memoria. Los fabricantes de sistemas operativos y compiladores introdujeron diferentes mecanismos de defensa para proteger las aplicaciones. Estos mecanismos no son excluyentes y cada uno tiene sus propios objetivos de diseño para añadir nuevas capas de seguridad.Attack techniques against memory corruption applications take advantage of the programs weakness for obtaining execution of arbitrary code. These programming failures have been used for several attacks since the 80's. This document shows several techniques to be used by an attacker in order to achieve his objectives and the precautions an application developer should have for preventing the program to be exposed vulnerable situations which may allow having attacks for memory corruption. Manufacturers of operating systems and compilers introduced several defense mechanisms to protect applications. These are not excluding mechanisms and each one of them has its own design objectives for adding new security layers.

Published

2011

2. TÉCNICAS DE OFENSA Y DEFENSA A LOS FALLOS POR CORRUPCIÓN DE MEMORIA.

Author

Mora Rodríguez, David and Muñoz, Mario

Subjects

*MALWARE prevention, *DATA protection, *COMPUTER operating system security measures, *COMPUTER software development, *COMPUTER security

Abstract

Attack techniques against memory corruption applications take advantage of the programs weakness for obtaining execution of arbitrary code. These programming failures have been used for several attacks since the 80's. This document shows several techniques to be used by an attacker in order to achieve his objectives and the precautions an application developer should have for preventing the program to be exposed vulnerable situations which may allow having attacks for memory corruption. Manufacturers of operating systems and compilers introduced several defense mechanisms to protect applications. These are not excluding mechanisms and each one of them has its own design objectives for adding new security layers. [ABSTRACT FROM AUTHOR]

Published

2011

3. Adding support for ELF binaries to PErmutator

Author

Maldini, Antun and Groš, Stjepan

Subjects

operating systems, DEP, memory corruption, TEHNIČKE ZNANOSTI. Računarstvo, PErmutator, korupcija memorije, operacijski sustavi, buffer overflow, računalna sigurnost, ASLR, ELF, TECHNICAL SCIENCES. Computing, PE, computer security

Abstract

Ljudi griješe, i kao rezultat skoro svaki netrivijalan računalni program sadrži greške. Pri korištenju programskih jezika bez automatskog upravljanja memorijom, česti su propusti koji rezultiraju (potencijalnom) korupcijom memorije. S obzirom na raširenost jezika C i C++, ti problemi će ostati prisutni u doglednom vremenu. Mehanizmi zaštite od napadâ koji ih iskorištavaju su poprilično razvijeni, ali još uvijek postoje rupe koje ne uspijevaju zaštititi. U radu je dan pregled napadâ i zaštitnih mehanizama, te je PErmutator, programski sustav koji se razvija u svrhu poboljšanja zaštite permutacijom blokova kôda unutar izvršnih datotekâ, proširen podrškom za ELF izvršne datoteke, koje se koriste na *nix operacijskim sustavima. People make mistakes, and as a consequence almost every nontrivial computer program has mistakes in it. When languages without automatic memory management are used, (potential) memory corruption is a frequent occurence. With C and C++ being widely used, these issues aren't going away any time soon. The mechanisms used to protect against them are fairly advanced, but they still fail against certain attacks. In this work, an overview of attack methods and protection mechanisms is given, and the PErmutator program, currently under development with the goal of improving security by rearranging code blocks within executables, is extended by adding support for ELF executables, which are used on Unix-like operating systems.

Published

2015

4. Developing metamorphing engine for improving application immunity against computer viruses

Author

Humić, Bruno and Groš, Stjepan

Subjects

operating systems, DEP, memory corruption, TEHNIČKE ZNANOSTI. Računarstvo, randomizacija, randomization, korupcija memorije, operacijski sustavi, graf programskog toka, permutation, permutacija, ASLP, control flow graph, računalna sigurnost, ASLR, TECHNICAL SCIENCES. Computing, PE format, Microsoft Windows, PE file format, computer security

Abstract

Korupcija memorije jedan je od najstarijih oblika ranjivosti koji je danas još uvijek prisutan. Iako postoje mnogi mehanizmi zaštite, problem korupcije memorije je i dalje dosta aktualan jer se pojavom novih sigurnosnih mehanizama pojavljuju i nove metode napada. Randomizacijski postupci značajno su pripomogli u borbi protiv napada usmjerenih na memoriju, ali prostora za poboljšanje još uvijek ima. Upravo je u ovome radu započet razvoj na jednom novom randomizacijskom mehanizmu zaštite čiji cilj je provesti permutaciju nad memorijskim blokovima unutar sekcije s izvršnim kodom. Time bi se razina sigurnosti protiv navedenih oblika napada podigla na jednu novu razinu. Memory corruption is one of the oldest security vulnerabilities out there that is still very common today. Randomization based security mechanisms had a major impact on dealing with memory corruption vulnerabilities but the threat still remains. In this thesis we started work on a new randomization security mechanism whose goal is to rearrange memory blocks in the code section of a PE file. In that way, we could achieve higher security levels in the system.

Published

2015