Explore a groundbreaking Black Hat conference talk that delves into breaking hardware-assisted kernel Control-Flow Integrity (CFI) using Page-Oriented Programming. Discover how traditional Code Reuse Attacks (CRAs) like ret2libc and Return-Oriented Programming (ROP) are being countered by CFI mechanisms in operating systems. Learn about the evolution from software-based CFIs to hardware-assisted CFIs, including Indirect Branch Tracking (IBT) and shadow stack technologies. Understand the challenges posed by these advanced security measures and how they impact conventional attack techniques. Gain insights into the latest developments in kernel security, hypervisor-based integrity protection, and the ongoing battle between attackers and defenders in the realm of control-flow hijacking and code manipulation.
Lost Control - Breaking Hardware-Assisted Kernel Control-Flow Integrity with Page-Oriented Programming
Overview
Syllabus
Lost Control-Breaking Hardware-Assisted Kernel Control-Flow Integrity with Page-Oriented Programming
Taught by
Black Hat
Related Courses
-
How to Survive the Hardware Assisted Control-Flow Integrity Enforcement
-
Hardware-Assisted Fine-Grained Control-Flow Integrity - Adding Lasers to Intel's CET/IBT
-
Drop the ROP - Fine-Grained Control-Flow Integrity for the Linux Kernel
-
Control-Flow Bending - On the Effectiveness of Control-Flow Integrity
-
Towards a Policy-Agnostic Control-Flow Integrity Implementation
-
Control Flow Integrity on RISC-V
