Write Once, Pwn Anywhere

by Yang Yu
Sept. 23, 2017 0 comments Black Hat belen_caty Pen Testing & Audits bypasstechniques pwn

Modern Windows use mitigation techniques such as DEP and ASLR to mitigate exploitation. The combination of ASLR and DEP have been proven to be a solid shield in most cases. Mitigation bypass is always one of the hottest topic in the security community. This presentation contains two kind of new DEP bypass techniques, two kind of new ASLR bypass techniques, and many lesser known exploration skills. These techniques don't need ROP, JIT, third-party plugins or Non-ASLR modules. They are OS-independent, even CPU-independent in some cases. So exploits can easily "Write Once, Pwn Anywhere" now. These techniques are fairly different from traditional exploit technique. So they may also be difficult to detect and identify if you don't know them.