Cool. B'bye ROP on OpenBSD? http://goo.gl/HqDqpX
-
-
If I read correctly u need to leak a stack address instead of cookie, then use gadgets that don't have the xor.If that's the case, it isn't.
-
the SSP check call sits before the epilog, this right before the RET in the epilog.. but leaking a stack addy defeats this AFAICT
- 2 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.