| Windows ROP自动生成技术的研究与应用 |
| |
| 引用本文: | 颜涛,王轶骏,薛质. Windows ROP自动生成技术的研究与应用[J]. 计算机工程, 2011, 37(23): 270-272 |
| |
| 作者姓名: | 颜涛 王轶骏 薛质 |
| |
| 作者单位: | 上海交通大学信息安全学院,上海,200240 |
| |
| 摘 要: | 返回导向编程(ROP)技术可以有效绕过数据执行保护(DEP)机制,但人工分析可执行库中的二进制指令序列组合成ROP gadgets耗时而繁琐。为此,利用gadgets字典,设计并实现一种基于Windows平台的自动构建ROP Gadgets方法,允许ROP执行任意操作,并完成图灵完整性。Exploit开发人员利用自动生成的ROP gadgets,可加速绕过DEP机制的Exploit开发过程,缩短Exploit的开发时间。
|
| 关 键 词: | 缓冲区溢出 ROP自动生成 Exploit程序 数据执行保护 Gadgets字典 |
| 收稿时间: | 2011-04-15 |
Research and Application of ROP Automatica Generation Technology on Windows |
| |
| YAN Tao,WANG Yi-jun,XUE Zhi. Research and Application of ROP Automatica Generation Technology on Windows[J]. Computer Engineering, 2011, 37(23): 270-272 |
| |
| Authors: | YAN Tao WANG Yi-jun XUE Zhi |
| |
| Affiliation: | (School of Information Security,Shanghai Jiaotong University,Shanghai 200240,China) |
| |
| Abstract: | Return Oriented Programming(ROP) techniques can be used to bypass Data Execution Protection(DEP),but it is complicated and time-consuming to analyze the available code sequences in the executable library to combine them into ROP gadgets manually.This paper uses gadgets dictionary to build ROP gadgets automatically on Windows,which can perform arbitrary computation and is Turing-complete.Using ROP Gadgets generated automatically,exploit developer may accelerate the process of developing Exploit bypassing DEP. |
| |
| Keywords: | buffer overflow Return Oriented Programming(ROP) automatic generation Exploit program Data Execution Protection(DEP) Gadgets dictionary |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
| 点击此处可从《计算机工程》浏览原始摘要信息 |
|
点击此处可从《计算机工程》下载免费的PDF全文 |
