Explore a groundbreaking conference talk from DEF CON 31 that delves into the revolutionary Shiva system for ELF binary patching. Learn about the evolution of ELF binary modification techniques, from early virus implementations to modern patching solutions. Discover how Shiva functions as a JIT binary patching system and custom ELF interpreter, enabling developers to write patches in C code without extensive reverse engineering knowledge. Understand the fundamental connections between ELF binary patching, linkers, loaders, and virus technology, while examining advanced concepts like userland-exec() and linker chaining. Follow demonstrations of complex patching scenarios, function splicing, program transformation, and potential applications in creating sophisticated in-memory backdoors. Master cutting-edge techniques for maintaining legacy software through modular patching capabilities, bridging the gap between development and reverse engineering in the ELF binary ecosystem.
Overview
Syllabus
DEF CON 31 - Revolutionizing ELF binary patching w Shiva - ElfMaster
Taught by
DEFCONConference