v1v2 (latest)

Block Oriented Programming: Automating Data-Only Attacks

12 May 2018

Papers citing "Block Oriented Programming: Automating Data-Only Attacks"

24 / 24 papers shown

Non-control-Data Attacks and Defenses: A reviewIEEE Access (IEEE Access), 2025

Lei Chong

AAML

116

27 Mar 2025

CleanStack: A New Dual-Stack for Defending Against Stack-Based Memory Corruption Attacks

Lei Chong

21 Mar 2025

One for All and All for One: GNN-based Control-Flow Attestation for Embedded DevicesIEEE Symposium on Security and Privacy (S&P), 2024

293

12 Mar 2024

Beyond Control: Exploring Novel File System Objects for Data-Only Attacks on Linux Systems

185

31 Jan 2024

Top of the Heap: Efficient Memory Error Protection for Many Heap ObjectsConference on Computer and Communications Security (CCS), 2023

152

10 Oct 2023

Poster: Control-Flow Integrity in Low-end Embedded DevicesConference on Computer and Communications Security (CCS), 2023

Sashidhar Jakkamsetti

Youngil Kim

Andrew Searles

Gene Tsudik

208

19 Sep 2023

Penetrating Shields: A Systematic Analysis of Memory Corruption Mitigations in the Spectre Era

Weon Taek Na

J. Emer

Mengjia Yan

246

08 Sep 2023

InversOS: Efficient Control-Flow Protection for AArch64 Applications with Privilege Inversion

Zhuojia Shen

J. Criswell

241

18 Apr 2023

xTag: Mitigating Use-After-Free Vulnerabilities via Software-Based Pointer Tagging on Intel x86-64European Symposium on Security and Privacy (Euro S&P), 2022

211

08 Mar 2022

SFIP: Coarse-Grained Syscall-Flow-Integrity Protection in Modern Systems

203

28 Feb 2022

Domain Page-Table Isolation

231

21 Nov 2021

RegGuard: Leveraging CPU Registers for Mitigation of Control- and Data-Oriented AttacksComputers & security (CS), 2021

Munir Geden

K. Rasmussen

169

20 Oct 2021

Identifying Non-Control Security-Critical Data through Program Dependence Learning

189

27 Aug 2021

DIALED: Data Integrity Attestation for Low-end Embedded DevicesDesign Automation Conference (DAC), 2021

Ivan De Oliveira Nunes

Sashidhar Jakkamsetti

Gene Tsudik

194

24 Mar 2021

Survey of Methods for Automated Code-Reuse Exploit GenerationProgramming and computer software (PCS), 2020

A. Vishnyakov

A. Nurmukhametov

152

16 Nov 2020

TeeRex: Discovery and Exploitation of Memory Corruption Vulnerabilities in SGX EnclavesUSENIX Security Symposium (USENIX Security), 2020

Tobias Cloosters

Michael Rodler

Lucas Davi

154

15 Jul 2020

Steroids for DOPed Applications: A Compiler for Automated Data-Oriented Programming

Jannik Pewny

Philipp Koppe

Thorsten Holz

126

05 Jul 2020

Methodologies for Quantifying (Re-)randomization Security and Timing under JIT-ROP

200

07 Oct 2019

Analyzing Control Flow Integrity with LLVM-CFIAsia-Pacific Computer Systems Architecture Conference (APCSAC), 2019

Claudia Eckert

02 Oct 2019

Exploit Prediction Scoring System (EPSS)

166

129

13 Aug 2019

DMON: A Distributed Heterogeneous N-Variant System

139

08 Mar 2019

Exploitation Techniques and Defenses for Data-Oriented Attacks

180

22 Feb 2019

Automated CFI Policy Assessment with Reckon

Paul Muntean

20 Dec 2018

Shining Light On Shadow StacksIEEE Symposium on Security and Privacy (IEEE S&P), 2018

308

166

07 Nov 2018