-
-
[讨论]JIT Spray is back
-
发表于: 2011-8-1 22:13
-
这篇叫 jit spray is back(http://exploitspace.blogspot.com/2011/06/flash-jit-spraying-is-back_04.html)的文献讲述了新的攻击方式,有谁看懂了吗? 望探讨一下。
[培训]内核驱动高级班,冲击BAT一流互联网大厂工作,每周日13:00-18:00直播授课
|
|
|---|---|
|
|
|
|
|
的确啊~~ 不过习惯就好~~
 JIT Spray技术在其他JIT引擎上是否存在类似问题,也是我一直思考的问题,即将/正在举行的blackhat上的这篇文章貌似就是这方面的(Attacking Clientside JIT Compilers),望大侠们继续关注~~ 
|
|
|
|
|
|
OK~~
搜集到的主要文献如下,大致按时间逆序排列: The-Flash-JIT-Spraying-is-Back Understanding and Exploiting Flash ActionScript Vulnerabilities The shellcode storm caused by the butterfly effect You can’t stop us:latest trends on exploit techniques JIT spraying and mitigations JIT-SPRAY Attacks & Advanced Shellcode Writing-JIT-Spray-Shellcode(附带中文翻译) INTERPRETER EXPLOITATION: POINTER INFERENCE AND JIT SPRAYING(附带中文翻译) 欢迎大家补充和交流 
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
blackhat2011上关于jit spray的paper已经放出来了 http://www.matasano.com/research/jit/
这篇文献还是灰常灰常的给力的~~ 还没看, 大家继续讨论哈 上传一份,作为备份 |
|
|
|
|
|
|
|
|
|
