Title :
Modern binary attacks and defences in the windows environment — Fighting against microsoft EMET in seven rounds
Author :
Zoltán L. Németh
Author_Institution :
University of Szeged, Institute of Informatics, Szeged, Hungary
Abstract :
In this paper some basic elements of the “Eternal war in the memory” [1] are investigated from a practical perspective. While that article provides an excellent theoretical overview and surveys the contemporary attacks and defences, here some concrete examples of binary exploitation are presented as a case study. As a running example we take a recent buffer overflow vulnerability of the TestDisk application [2], and offer an easy-to-follow walkthrough of some exploitation techniques and tricks against Microsoft Enhanced Mitigation Experience Toolkit (EMET).
Keywords :
"Libraries","Payloads","Registers","Servers","Informatics","Assembly","Calculators"
Conference_Titel :
Intelligent Systems and Informatics (SISY), 2015 IEEE 13th International Symposium on
DOI :
10.1109/SISY.2015.7325394