Learn, hack!

Hacking and security documentation: slides, papers, video and audio recordings. All in high-quality, daily updated, avoiding security crap documents. Spreading hacking knowledge, for free, enjoy. Follow on .

The Info Leak Era on Software Exploitation

Type
Video
Tags
exploiting
Authors
Fermin Serna
Event
Black Hat USA 2012
Indexed on
May 24, 2014
URL
https://media.blackhat.com/us-12/video/us-12-Serna-The-Info-Leak-Era-on-Sofrware-Exploitation.mp4
File name
us-12-Serna-The-Info-Leak-Era-on-Sofrware-Exploitation.mp4
File size
179.8 MB
MD5
e9d4959254bc3dab18235698a15f430c
SHA1
86c0b104bd72cee4e00bd8bbef1aca0ae80d8ca0

Previously, and mainly due to application compatibility. ASLR has not been as effective as it has been expected. Nowadays, once some of the problems to fully deploy ASLR has been solved, it has become the key mitigation preventing reliable exploitation of software vulnerabilities. Defeating ASLR is a hot topic in the exploitation world. During this talk, it will be presented why other mitigations without ASLR are not strong ones and why if you defeat ASLR you mainly defeat the rest of them. Methods to defeat ASLR had been fixed lately and the current way for this is using information leak vulnerabilities.

About us

Secdocs is a project aimed to index high-quality IT security and hacking documents. These are fetched from multiple data sources: events, conferences and generally from interwebs.

Statistics

Serving 8166 documents and 531.0 GB of hacking knowledge, indexed from 2419 authors from 163 security conferences.

Contribute

To support this site and keep it alive, you can click on the buttons below. Any help is really appreciated! This service is provided for free, but real money is needed to pay bills.

Flattr this Click here to lend your support to: Keep live SecDocs for an year and make a donation at www.pledgie.com !