Semantic Restoration and Automatic Transplant for ROP Exploit Script

Semantic Restoration and Automatic Transplant for ROP Exploit Script

Exploit script plays an important role in security research.Security researchers need to study how the exploit script trigger and exploit the vulnerability, so as to effectively protect the vulnerable program.However, many exploit scripts obtained from network have poor generality and adaptability.T...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:Ji suan ji ke xue 2022-11, Vol.49 (11), p.49-54
Hauptverfasser: Shi, Rui-Heng, Zhu, Yun-Cong, Zhao, Yi-Ru, Zhao, Lei
Format: Artikel
Sprache:chi
Schlagworte:
exploit script|control flow hijack|return-orinted programming|transplanting
Scripts
Semantics
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:Exploit script plays an important role in security research.Security researchers need to study how the exploit script trigger and exploit the vulnerability, so as to effectively protect the vulnerable program.However, many exploit scripts obtained from network have poor generality and adaptability.They are limited to specific operating system and execution environment, and the change of environment will lead to execution failure.This problem is particular common in exploit scripts based on return-orinted programming(ROP),makes the transplanting and exploit analysis of ROP scripts are difficult and rely on manual assistance and expert knowledge.To solve this problem, we propose ROPTrans system, which locates key semantics and its variables related to the running environment through analysing the semantic of ROP script, and then automatically generates ROP script adapted to the target environment, so as to achieve the target of transplanting ROP scripts automatically.Experimental results show that the success r
ISSN:1002-137X
DOI:10.11896/jsjkx.210900230