{"html":"","provider_name":"Hatena Blog","blog_url":"https://inaz2.hatenablog.com/","blog_title":"\u3082\u3082\u3044\u308d\u30c6\u30af\u30ce\u30ed\u30b8\u30fc","height":"190","width":"100%","author_url":"https://blog.hatena.ne.jp/inaz2/","provider_url":"https://hatena.blog","categories":["Exploit"],"description":"\u300cx64\u3067Dynamic ROP\u306b\u3088\u308bASLR+DEP+RELRO\u56de\u907f\u3092\u3084\u3063\u3066\u307f\u308b\u300d\u3067\u306f\u3001libc\u30d0\u30a4\u30ca\u30ea\u3092\u8aad\u307f\u51fa\u3057\u305d\u306e\u4e2d\u306b\u542b\u307e\u308c\u308bgadget\u3092\u5229\u7528\u3057\u3066ROP\u3092\u884c\u3046\u3053\u3068\u3067\u30b7\u30a7\u30eb\u8d77\u52d5\u3092\u884c\u3063\u305f\u3002 \u3057\u304b\u3057\u3001\u30b3\u30f3\u30d1\u30a4\u30e9\u306b\u3088\u3063\u3066\u306f\u5b9f\u884c\u30d5\u30a1\u30a4\u30eb\u306bleave\u547d\u4ee4\u304c\u5b58\u5728\u3057\u306a\u3044\u5834\u5408\u304c\u3042\u308a\u3001\u3053\u306e\u3088\u3046\u306a\u5834\u5408\u306b\u306fleave\u547d\u4ee4\u3092\u4f7f\u3063\u305fstack pivot\u3092\u884c\u3046\u3053\u3068\u304c\u3067\u304d\u305a\u3001\u6b21\u306eROP\u30b7\u30fc\u30b1\u30f3\u30b9\u306b\u5b9f\u884c\u3092\u79fb\u3059\u3053\u3068\u304c\u3067\u304d\u306a\u3044\u3002 \u305d\u3053\u3067\u3001\u3053\u3053\u3067\u306fstack pivot\u3092\u884c\u3046\u4ee3\u308f\u308a\u306b\u540c\u4e00\u306e\u8106\u5f31\u6027\u3092\u8907\u6570\u56de\u5229\u7528\u3059\u308b\u3053\u3068\u3067\u3001x64\u74b0\u5883\u304b\u3064ASLR+DEP+RELRO\u304c\u6709\u52b9\u306a\u6761\u4ef6\u4e0b\u3067\u306e\u30b7\u30a7\u30eb\u8d77\u52d5\u3092\u3084\u3063\u3066\u307f\u308b\u3002 \u307e\u305f\u3001\u3053\u3053\u3067\u306f\u3053\u306e\u65b9\u2026","url":"https://inaz2.hatenablog.com/entry/2014/09/16/233704","author_name":"inaz2","version":"1.0","image_url":null,"published":"2014-09-16 23:37:04","type":"rich","title":" x64\u3067Dynamic ROP + Return-to-vuln\u306b\u3088\u308bASLR+DEP+RELRO\u56de\u907f\u3092\u3084\u3063\u3066\u307f\u308b"}