YoVDO

Compiler Bugs and Bug Compilers

Offered By: Hack In The Box Security Conference via YouTube

Tags

Hack In The Box Security Conference Courses Software Development Courses Cybersecurity Courses Compilers Courses GCC Courses

Course Description

Overview

Explore the intricacies of compiler bugs and malicious compiler modifications in this conference talk from the Hack In The Box Security Conference. Delve into exotic segfaults encountered while attempting to improve binary output, focusing on Linux systems. Examine popular topics like ELF files, position-independent code, and the Global Offset Table. Investigate how attackers could introduce bugs into binaries using compilers, with a focus on GCC's structure and various compilation stages. Learn about potential methods for injecting vulnerabilities, from removing sanitization code to manipulating architecture-specific machine definitions. Discover the trade-offs between stealth and effectiveness in malicious compiler modifications. Gain insights into detecting an attacker's malicious alterations and understand the importance of securing build environments against potential threats.

Syllabus

#HITB2019AMS D2T1 - Compiler Bugs And Bug Compilers - Marion Marschalek


Taught by

Hack In The Box Security Conference

Related Courses

Computer Security
Stanford University via Coursera
Cryptography II
Stanford University via Coursera
Malicious Software and its Underground Economy: Two Sides to Every Story
University of London International Programmes via Coursera
Building an Information Risk Management Toolkit
University of Washington via Coursera
Introduction to Cybersecurity
National Cybersecurity Institute at Excelsior College via Canvas Network