llsoftsecbook icon indicating copy to clipboard operation
llsoftsecbook copied to clipboard
verified publisher icon llsoftsec

Section 2.4.1 "Return-oriented Programming": Explain how assembly gadgets could be generated from C/C++

Open kbeyls opened this issue 2 years ago • 3 comments

See TODO in text.

kbeyls avatar Feb 21 '23 19:02 kbeyls

Hi,

I think it's worth discussing some modern mitigations for ROP, like pinsyscall(2) from OpenBSD.

lucic71 avatar May 14 '23 20:05 lucic71

Hi @lucic71, thanks for the suggestion! I think it's worthwhile adding a section on mitigations beyond CFI that aren't just compiler-based, like the above mentioned pinsyscall, Linux's seccomp (and similar features in other systems, system call interposition more generally), a more detailed view of ASLR (which the post you linked to also mentions) and so on. I'll create a separate issue to track this!

g-kouv avatar May 15 '23 10:05 g-kouv

Created #199.

g-kouv avatar May 15 '23 10:05 g-kouv