Hacking Blind

https://www.youtube.com/watch?v=OAk23u9b-88

“Hacking Blind” by Bittau et al: A deeply disturbing paper about how a malicious client can launch buffer overflow attacks on a server even if the attacker has no access to the server’s binary or source code, and even if the server uses stack canaries and address space randomization. Reading about these attack methods is like watching a documentary about those horrible goblin fish that live at the bottom of the ocean and use bioluminescence to spread evil. Even if you don’t think about them, they’re thinking about you.

Backlinks

James Mickens