Untuk memberi Anda pengalaman terbaik, situs ini menggunakan cookie. Tinjau Kebijakan Privasi kami dan Ketentuan Layanan untuk belajar lebih. Mengerti!
Artwork

Video
Konten disediakan oleh Black Hat Briefings, USA 2007 [Video] Presentations from the security conference.. Semua konten podcast termasuk episode, grafik, dan deskripsi podcast diunggah dan disediakan langsung oleh Black Hat Briefings, USA 2007 [Video] Presentations from the security conference. atau mitra platform podcast mereka. Jika Anda yakin seseorang menggunakan karya berhak cipta Anda tanpa izin, Anda dapat mengikuti proses yang diuraikan di sini https://id.player.fm/legal.
Player FM - Aplikasi Podcast
Offline dengan aplikasi Player FM !
Get it on App Store Get it on Google Play

Black Hat Briefings, USA 2007 [Video] Presentations from the security conference. «
Stephan Chenette & Moti Joseph: Defeating Web Browser Heap Spray Attacks

35:27
 
Putar
Memutar
Bagikan
 

MP4Beranda episode
Manage episode 152211974 series 1053194
Konten disediakan oleh Black Hat Briefings, USA 2007 [Video] Presentations from the security conference.. Semua konten podcast termasuk episode, grafik, dan deskripsi podcast diunggah dan disediakan langsung oleh Black Hat Briefings, USA 2007 [Video] Presentations from the security conference. atau mitra platform podcast mereka. Jika Anda yakin seseorang menggunakan karya berhak cipta Anda tanpa izin, Anda dapat mengikuti proses yang diuraikan di sini https://id.player.fm/legal.
In 2007 black hat Europe a talk was given titled: "Heap Feng Shui in JavaScript" That presentation introduced a new technique for precise manipulation of the browser heap layout using specific sequences of JavaScript allocations. This allowed an attacker to set up the heap in any desired state and exploit difficult heap corruption vulnerabilities with more reliability and precision. Our talk is a defensive response to this new technique. We will begin with an overview of "in the wild" heap spray exploits and how we can catch them, as well other zero day exploits using our exploit-detection module. We will give an overview of the analysis engine we have built that utilizes this module and we will demonstrate scanning and detection of a "live" website hosting a heap corruption vulnerability. The talk will focus on Internet Explorer exploitation, but the general technique presented is applicable to other browsers as well.
  continue reading

89 episode

#Video
Artwork

Stephan Chenette & Moti Joseph: Defeating Web Browser Heap Spray Attacks

Black Hat Briefings, USA 2007 [Video] Presentations from the security conference.

published

Putar Memutar
iconBagikan
 
MP4Beranda episode
Manage episode 152211974 series 1053194
Konten disediakan oleh Black Hat Briefings, USA 2007 [Video] Presentations from the security conference.. Semua konten podcast termasuk episode, grafik, dan deskripsi podcast diunggah dan disediakan langsung oleh Black Hat Briefings, USA 2007 [Video] Presentations from the security conference. atau mitra platform podcast mereka. Jika Anda yakin seseorang menggunakan karya berhak cipta Anda tanpa izin, Anda dapat mengikuti proses yang diuraikan di sini https://id.player.fm/legal.
In 2007 black hat Europe a talk was given titled: "Heap Feng Shui in JavaScript" That presentation introduced a new technique for precise manipulation of the browser heap layout using specific sequences of JavaScript allocations. This allowed an attacker to set up the heap in any desired state and exploit difficult heap corruption vulnerabilities with more reliability and precision. Our talk is a defensive response to this new technique. We will begin with an overview of "in the wild" heap spray exploits and how we can catch them, as well other zero day exploits using our exploit-detection module. We will give an overview of the analysis engine we have built that utilizes this module and we will demonstrate scanning and detection of a "live" website hosting a heap corruption vulnerability. The talk will focus on Internet Explorer exploitation, but the general technique presented is applicable to other browsers as well.
  continue reading

89 episode

#Video

Semua episode

×
 
Loading …

Selamat datang di Player FM!

Player FM memindai web untuk mencari podcast berkualitas tinggi untuk Anda nikmati saat ini. Ini adalah aplikasi podcast terbaik dan bekerja untuk Android, iPhone, dan web. Daftar untuk menyinkronkan langganan di seluruh perangkat.

 

Dengarkan 500+ topik
Player FM - Aplikasi Podcast
Offline dengan aplikasi Player FM !
Get it on App Store Get it on Google Play

Panduan Referensi Cepat

Podcast Teratas
Laga Raga - Berita Olahraga Terkini
Digipreneur Podcast - Digital Marketing, Startup, Teknologi, dan Bisnis Online di Indonesia
Podcast Awal Minggu
Dummy Podcast Indonesia
Show Box
Rasarab - Indonesia
Indonesian News - NHK WORLD RADIO JAPAN
Asumsi Bersuara
Actionesia
Sains Sekitar Kita
TemuKonco Podcast
Player FM logo
Bantuan/FAQ | Tingkatkan | Mengiklankan
Seni|Bisnis|Komedi|Ekonomi|Hiburan|Berita|Politik|Agama
Ilmu Pengetahuan|Sepak Bola|Olah raga|Cerita|Teknologi|Kejahatan
Hak Cipta 2024 | Peta Situs | Kebijakan Privasi | Ketentuan Layanan | | hak cipta
Episode being played series thumbnail
icon icon
Kecepatan
Pengaturan Seri
1x
1x
Volume
100%
icon
icon icon
/

Lihat Player FM di ...
Player FM
Browser
Chrome
Safari
Firefox