[llvm-commits] CVS: llvm-www/safecode/menagerie/attacks.html

John Criswell criswell at cs.uiuc.edu
Fri Jun 18 09:13:29 PDT 2010 


Changes in directory llvm-www/safecode/menagerie:

attacks.html updated: 1.3 -> 1.4
---
Log message:

Added the classic Alepha1 paper on stack smashing.
Added the paper on the Return-oriented rootkit compiler.
Re-ordered attack papers based on year of publication.


---
Diffs of the changes:  (+49 -5)

 attacks.html |   54 +++++++++++++++++++++++++++++++++++++++++++++++++-----
 1 file changed, 49 insertions(+), 5 deletions(-)


Index: llvm-www/safecode/menagerie/attacks.html
diff -u llvm-www/safecode/menagerie/attacks.html:1.3 llvm-www/safecode/menagerie/attacks.html:1.4
--- llvm-www/safecode/menagerie/attacks.html:1.3	Thu Jun 17 09:15:41 2010
+++ llvm-www/safecode/menagerie/attacks.html	Fri Jun 18 11:13:17 2010
@@ -79,9 +79,36 @@
 
 			<a name="Papers"></a>
 			<h1>Memory Safety Exploit Papers</h1>
-
 				<ul>
         <li>
+        <a href="https://www.usenix.org/events/sec09/tech/full_papers/hund.pdf">
+        <b>
+        Return-Oriented Rookits: Bypassing Kernel Code Integrity Protectin
+        Mechanisms</b></a>
+        <br>
+        Ralf Hund, Thorsten Holz, and Felix C. Freiling
+        <br>
+        <i>Proceedings of the Eighteenth USENIX Security Symposium</i>,
+        Montreal, Canada, August 2009.
+        <br>
+        </li>
+
+        <br>
+
+        <li>
+        <a href="http://whitepapers.zdnet.com/abstract.aspx?docid=1296547">
+        <b>
+        Dangling Pointer: Smashing the Pointer for Fun and Profit</b></a>
+        <br>
+        Jonathan Afek and Adi Sharabani
+        <br>
+        Whitepaper, 2007.
+        <br>
+        </li>
+
+        <br>
+
+        <li>
         <a href="https://db.usenix.org/events/sec05/tech/full_papers/chen/chen.pdf">
         <b>
         Non-Control-Data Attacks Are Realistic Threats
@@ -97,14 +124,31 @@
         <br>
 
         <li>
-        <a href="http://whitepapers.zdnet.com/abstract.aspx?docid=1296547">
+        <a href="http://portal.acm.org/citation.cfm?id=1030083.1030124">
         <b>
-        Dangling Pointer: Smashing the Pointer for Fun and Profit</b></a>
+        On the Effectiveness of Address-Space Randomization
+        </b></a>
         <br>
-        Jonathan Afek and Adi Sharabani
+        Hovav Shacham, Matthew Page, Ben Pfaff, Eu-Jin Goh, Nagendra Modadugu,
+        and Dan Boneh
         <br>
-        Whitepaper, 2007.
+        <i>Proceedings of the Eleventh ACM conference on Computer and
+           Communications Security (CCS 2005)</i>,
+        Washington, D.C., October 2004.
+        </li>
+
+        <br>
+
+        <li>
+        <a href="http://phrack.org/issues.html?issue=49&id=14#article">
+        <b>
+        Smashing The Stack For Fun And Profit
+        </b></a>
+        <br>
+        Aleph1
         <br>
+        <i>Phrack</i> Volume 7, Issue 49,
+        August 11, 1996.
         </li>
         </ul>
         </li>

More information about the llvm-commits mailing list