In this chapter, we describe code-pointer integrity (CPI), a new design point that guarantees
the integrity of all code pointers in a program (eg, function pointers, saved return addresses) …

In 2007, Shacham published a seminal paper on Return-Oriented Programming (ROP), the
first systematic formulation of code reuse. The paper has been highly influential, profoundly …

As the malware research field became more established over the last two decades, new
research questions arose, such as how to make malware research reproducible, how to …

Code diversification is an effective strategy to prevent modern code-reuse exploits.
Unfortunately, diversification techniques are inherently vulnerable to information disclosure …

Memory corruption vulnerabilities remain a grave threat to systems software written in
C/C++. Current best practices dictate compiling programs with exploit mitigations such as …

Kernel information leak vulnerabilities are a major security threat to production systems.
Attackers can exploit them to leak confidential information such as cryptographic keys or …

Address-space layout randomization is a wellestablished defense against code-reuse
attacks. However, it can be completely bypassed by just-in-time code-reuse attacks that rely …

Software diversification is one of the most effective ways to defeat memory corruption based
attacks. Traditional software diversification such as code randomization techniques …

Computing systems, including real-time embedded systems, are becoming increasingly
connected to allow for more advanced and safer operation. Such embedded systems are …

Exploit mitigations, by themselves, do not stop determined and well-resourced adversaries
from compromising vulnerable software through memory corruption. Multi-variant execution …