| 一种缓冲区溢出自动攻击解释器的设计 |
| |
| 引用本文: | 夏冰,董智勇,金秋. 一种缓冲区溢出自动攻击解释器的设计[J]. 河南纺织高等专科学校学报, 2008, 0(3) |
| |
| 作者姓名: | 夏冰 董智勇 金秋 |
| |
| 作者单位: | 中原工学院计算机学院; |
| |
| 基金项目: | 国家“973”重点基础研究发展规划资助项目(2002CB312105);;河南省基础与前沿技术研究计划资助项目(082300410260) |
| |
| 摘 要: | 针对网络安全问题分析了缓冲区溢出一般规律和抽象缓冲区溢出攻击过程,指出构造植入代码是攻击的关键,详细分析了植入代码的组成结构.在此基础上,提出一种缓冲区溢出攻击自动化的方案,弥补了现有缓冲区溢出攻击无法自动化、通用性差和只注重过程的不足,并能自动生成适合目标主机的植入代码类型,最后给出方案的整体设计和关键技术分析.
|
| 关 键 词: | 网络安全 缓冲区溢出 攻击解释器 植入代码 |
A Design of Automatic Attack Interpreter of Buffer Overflow |
| |
| XIA Bing,DONG Zhiyong,JIN Qiu. A Design of Automatic Attack Interpreter of Buffer Overflow[J]. Journal of Henan Textile College, 2008, 0(3) |
| |
| Authors: | XIA Bing DONG Zhiyong JIN Qiu |
| |
| Affiliation: | School of Computer College;Zhongyuan Institute of Technology;ZhengZhou 450007;China |
| |
| Abstract: | This paper analyzed the common rule of buffer overflow and extracted attacks process of buffer overflow.Then it pointed out that making injected code is a key to attack,and analyzed the structure character of injected code.On this basis,this paper brought forward a method of automatic attack interpreter,then gave the design and analysis of key technologies. |
| |
| Keywords: | network security buffer overflow automatic attack interpreter injected code |
| 本文献已被 CNKI 等数据库收录! |
