YoVDO

ELFPack - ELF Binary Section Docking in Stageless Payload Delivery

Offered By: Ekoparty Security Conference via YouTube

Tags

Ekoparty Security Conference Courses Cybersecurity Courses Binary Exploitation Courses

Course Description

Overview

Explore a 45-minute conference talk from Ekoparty 2022 that delves into ELF binary construction and the innovative use of ELF sections for payload hosting, retrieval, and loading. Learn about the concept of ELF section docking, which allows for independent attachment of payload-containing sections to loaders. Discover techniques for in-field re-attachment of sections without compilers, useful for long-term offensive operations. Examine how ELF docking serves as an alternative to packing for complex payloads, offering flexibility in various delivery scenarios. Gain insights into detection evasion features implemented in open-source proof-of-concept tools. Presented by Dimitry Snezhkov, a former red team operator now focused on security research and tool development.

Syllabus

Dimitry Snezhkov (CyberFinance) - ELFPack: ELF Binary Section - Ekoparty 2022


Taught by

Ekoparty Security Conference

Related Courses

Case Studies in Embedded VR - Silvio Cesare - Ekoparty Security Conference - 2022
Ekoparty Security Conference via YouTube
The Making of an Aerospace Village Badge - Dan Allen - Ekoparty 2021: Patagon Aerospace
Ekoparty Security Conference via YouTube
IIoT, Data Infrastructure, Smart Factory - Sarka Pekarova - Ekoparty 2021: OT - IIOT - IOT Space
Ekoparty Security Conference via YouTube
Gotham City- SSH from Zero to Trust - Lucas Calisi - Ekoparty Security Conference - 2021
Ekoparty Security Conference via YouTube
Sleight of ARM- Demystifying Intel Houdini - Brian Hong - Ekoparty 2021- Hardware Hacking Space
Ekoparty Security Conference via YouTube