Overview
Explore a groundbreaking Black Hat conference talk that delves into breaking hardware-assisted kernel Control-Flow Integrity (CFI) using Page-Oriented Programming. Discover how traditional Code Reuse Attacks (CRAs) like ret2libc and Return-Oriented Programming (ROP) are being countered by CFI mechanisms in operating systems. Learn about the evolution from software-based CFIs to hardware-assisted CFIs, including Indirect Branch Tracking (IBT) and shadow stack technologies. Understand the challenges posed by these advanced security measures and how they impact conventional attack techniques. Gain insights into the latest developments in kernel security, hypervisor-based integrity protection, and the ongoing battle between attackers and defenders in the realm of control-flow hijacking and code manipulation.
Syllabus
Lost Control-Breaking Hardware-Assisted Kernel Control-Flow Integrity with Page-Oriented Programming
Taught by
Black Hat