Exetools  

Go Back   Exetools > General > General Discussion

Notices

Reply
 
Thread Tools Display Modes
  #1  
Old 04-27-2017, 07:57
MOV_EDI_EDI MOV_EDI_EDI is offline
Guest
 
Join Date: Apr 2017
Posts: 1
Rept. Given: 0
Rept. Rcvd 0 Times in 0 Posts
Thanks Given: 1
Thanks Rcvd at 1 Time in 1 Post
MOV_EDI_EDI Reputation: 0
Interesting blog from Endgame on disarming Control Flow Guard in exploits

I thought this was a very interesting blog post (from Endgame) on bypassing Control Flow Guard making use of something called "Counterfeit Object-Oriented Programming (COOP)" which looks like an interesting alternative to ROP (Return-Oriented Programming).

https://www.endgame.com/blog/disarming-control-flow-guard-using-advanced-code-reuse-attacks
Reply With Quote
The Following User Says Thank You to MOV_EDI_EDI For This Useful Post:
niculaita (04-27-2017)
Reply

Tags
control flow guard, coop, exploitation, rop

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Net reactor 6x control flow remover and string decryptor Zeokat Source Code 0 11-14-2020 00:07
Using IDA Pro to generate Control Flow Graphs chants General Discussion 3 09-24-2020 00:31
Matt Pietrek's blog disrupt0r General Discussion 1 07-11-2004 14:55


All times are GMT +8. The time now is 18:09.


Always Your Best Friend: Aaron, JMI, ahmadmansoor, ZeNiX, chessgod101
( 1998 - 2024 )