Uzbrukumi NaCl lietotnēm
Loading...
Date
Authors
Advisor
Journal Title
Journal ISSN
Volume Title
Publisher
Latvijas Universitāte
Language
N/A
Abstract
Darbā tiek aplūkots kā pielāgot ROP pieeju uzbrukumu veikšanai x86_64 arhitektūras
lietotnēm. Tiek piedāvāta uz rīku semantikas analīzi balstīta pieeja rīku meklēšanai,
kas ļauj izmantot liela izmēra (10-60 baiti) rīkus, tādējādi atrisinot NaCl lēcienu adrešu
ierobežojumu.
Darba rezultātā ir izveidots rīks, kas spēj meklēt rīkus izpildāmajos failos un kompilēt
kodu priekš atrastā rīku komplekta. Šis kods var saturēt aritmētiskās un atmiņas operācijas,
funkciju izsaukumus, zarošanos un ciklus ar nosacījums.
The study investigates how to adjust ROP approach for exploiting NaCl executables on x86_architecture. Study offers a method for searching gadgets based on sematic analysis of their effect, it allows using large gadgets (10-60 bytes), thus solving problem of NaCl inderect jump limitations. Result of this study is tool for searching gadgets and compiling exploit code using exe- cutable specific set of gadgets. Exploit code can cointain artihmetic and memory operations, function calls, branching and conditional loops.
The study investigates how to adjust ROP approach for exploiting NaCl executables on x86_architecture. Study offers a method for searching gadgets based on sematic analysis of their effect, it allows using large gadgets (10-60 bytes), thus solving problem of NaCl inderect jump limitations. Result of this study is tool for searching gadgets and compiling exploit code using exe- cutable specific set of gadgets. Exploit code can cointain artihmetic and memory operations, function calls, branching and conditional loops.