Lost Control - Breaking Hardware-Assisted Kernel Control-Flow Integrity with Page-Oriented Programming
Offered By: Black Hat via YouTube
Course Description
Overview
Explore a groundbreaking Black Hat conference talk that delves into breaking hardware-assisted kernel Control-Flow Integrity (CFI) using Page-Oriented Programming. Discover how traditional Code Reuse Attacks (CRAs) like ret2libc and Return-Oriented Programming (ROP) are being countered by CFI mechanisms in operating systems. Learn about the evolution from software-based CFIs to hardware-assisted CFIs, including Indirect Branch Tracking (IBT) and shadow stack technologies. Understand the challenges posed by these advanced security measures and how they impact conventional attack techniques. Gain insights into the latest developments in kernel security, hypervisor-based integrity protection, and the ongoing battle between attackers and defenders in the realm of control-flow hijacking and code manipulation.
Syllabus
Lost Control-Breaking Hardware-Assisted Kernel Control-Flow Integrity with Page-Oriented Programming
Taught by
Black Hat
Related Courses
Attack on Titan M, Reloaded - Vulnerability Research on a Modern Security ChipBlack Hat via YouTube Attacks From a New Front Door in 4G & 5G Mobile Networks
Black Hat via YouTube AAD Joined Machines - The New Lateral Movement
Black Hat via YouTube Better Privacy Through Offense - How to Build a Privacy Red Team
Black Hat via YouTube Whip the Whisperer - Simulating Side Channel Leakage
Black Hat via YouTube