literature.bib

% Encoding: UTF-8

@InProceedings{Abadi2005,
  author    = {Abadi, Mart\'{i}n and Budiu, Mihai and Erlingsson, \'{U}lfar and Ligatti, Jay},
  booktitle = {Proceedings of the 12th ACM Conference on Computer and Communications Security},
  date      = {2005},
  title     = {Control-Flow Integrity},
  doi       = {10.1145/1102120.1102165},
  isbn      = {1595932267},
  location  = {Alexandria, VA, USA},
  pages     = {340--353},
  publisher = {Association for Computing Machinery},
  series    = {CCS ’05},
  address   = {New York, NY, USA},
  keywords  = {control-flow graph, inlined reference monitors, vulnerabilities, binary rewriting},
  numpages  = {14},
}

@Article{AlephOne1996,
  author       = {{Aleph One}},
  date         = {1996},
  journaltitle = {Phrack},
  title        = {Smashing The Stack For Fun And Profit},
  issue        = {49},
  url          = {http://phrack.org/issues/49/14.html#article},
  urldate      = {2020-05-25},
  volume       = {7},
}

@Book{Anley2007,
  author    = {Anley, Chris and Heasman, John and Linder, Felix and Richarte, Gerardo},
  date      = {2007},
  title     = {The Shellcoder's Handbook},
  edition   = {2},
  isbn      = {978-0-470-08023-8},
  location  = {Indianapolis},
  pagetotal = {744},
  publisher = {Wiley Publishing, Inc.},
}

@Article{Anonymous2001,
  author       = {{Anonymous author}},
  date         = {2001},
  journaltitle = {Phrack},
  title        = {Once upon a free()},
  issue        = {57},
  url          = {http://phrack.org/issues/57/9.html#article},
  urldate      = {2020-06-30},
  volume       = {11},
}

@Online{Bendersky2011,
  author  = {Eli Bendersky},
  date    = {2011-11-03},
  title   = {Position Independent Code (PIC) in shared libraries},
  url     = {https://eli.thegreenplace.net/2011/11/03/position-independent-code-pic-in-shared-libraries/},
  urldate = {2020-06-08},
}

@InProceedings{Bhatkar2003,
  author    = {Sandeep Bhatkar and Daniel C. DuVarney and R. Sekar},
  booktitle = {Proceedings of the 12th USENIX Security Symposium},
  date      = {2003},
  title     = {Address Obfuscation: an Efficient Approach to Combat a Broad Range of Memory Error Exploits},
  location  = {Washington, D.C., USA},
  pages     = {105--120},
  publisher = {The USENIX Association},
}

@InProceedings{Bierbaumer2018,
  author    = {Bierbaumer, Bruno and Kirsch, Julian and Kittel, Thomas and Francillon, Aur{\'e}lien and Zarras, Apostolis},
  booktitle = {ICT Systems Security and Privacy Protection},
  date      = {2018},
  title     = {Smashing the Stack Protector for Fun and Profit},
  doi       = {10.1007/978-3-319-99828-2_21},
  isbn      = {978-3-319-99828-2},
  location  = {Cham},
  pages     = {293--306},
  publisher = {Springer International Publishing},
  abstract  = {Software exploitation has been proven to be a lucrative business for cybercriminals. Unfortunately, protecting software against attacks is a long-lasting endeavor that is still under active research. However, certain software-hardening schemes are already incorporated into current compilers and are actively used to make software exploitation a complicated procedure for the adversaries. Stack canaries are such a protection mechanism. Stack canaries aim to prevent control flow hijack by detecting corruption of a specific value on the program's stack. Careful design and implementation of this conceptually straightforward mechanism is crucial to defeat stack-based control flow detours. In this paper, we examine 17 different stack canary implementations across multiple versions of the most popular Operating Systems running on various architectures. We systematically compare critical implementation details and introduce one new generic attack vector which allows bypassing stack canaries on current Linux systems running up-to-date multi-threaded software altogether. We release an open-source framework (CookieCrumbler) that identifies the characteristics of stack canaries on any platform it is compiled on and we propose mitigation techniques against stack-based attacks. Although stack canaries may appear obsolete, we show that when they are used correctly, they can prevent intrusions which even the more sophisticated solutions may potentially fail to block.},
}

@InProceedings{Bittau2014,
  author    = {Andrea Bittau and Adam Belay and Ali Mashtizadeh and David Mazières and Dan Boneh},
  booktitle = {2014 {IEEE} Symposium on Security and Privacy},
  date      = {2014-05},
  title     = {Hacking Blind},
  doi       = {10.1109/sp.2014.22},
  publisher = {{IEEE}},
}

@InProceedings{Bletsch2011,
  author    = {Bletsch, Tyler and Jiang, Xuxian and Freeh, Vince W. and Liang, Zhenkai},
  booktitle = {Proceedings of the 6th ACM Symposium on Information, Computer and Communications Security},
  date      = {2011},
  title     = {Jump-Oriented Programming: A New Class of Code-Reuse Attack},
  doi       = {10.1145/1966913.1966919},
  isbn      = {978-1-4503-0564-8},
  location  = {Hong Kong, China},
  pages     = {30–40},
  publisher = {Association for Computing Machinery},
  series    = {ASIACCS ’11},
  address   = {New York, NY, USA},
  numpages  = {11},
}
@Online{Boelen2018,
  author  = {Michael Boelen},
  date    = {2018-06-25},
  title   = {Linux and ASLR: kernel/randomize\_va\_space},
  url     = {https://linux-audit.com/linux-aslr-and-kernelrandomize_va_space-setting/},
  urldate = {2020-05-28},
}

@InProceedings{Bosman2014,
  author    = {Erik Bosman and Herbert Bos},
  booktitle = {2014 IEEE Symposium on Security and Privacy},
  date      = {2014},
  title     = {Framing Signals - A Return to Portable Shellcode},
  doi       = {10.1109/SP.2014.23},
  isbn      = {978-1-4799-4686-0},
  location  = {San Jose, CA, USA},
  pages     = {243-258},
  publisher = {Proceedings of the IEEE},
}

@Book{Bryant2011,
  author    = {Bryant, Randal E. and O'Hallaron, David R.},
  date      = {2011},
  title     = {Computer systems : a programmer's perspective},
  edition   = {2},
  isbn      = {978-0-13-610804-7},
  location  = {Boston},
  publisher = {Prentice Hall},
}

@Online{Canonical2020,
  author  = {{Canonical Ltd.}},
  title   = {Release Notes},
  url     = {https://wiki.ubuntu.com/FocalFossa/ReleaseNotes#Linux_Kernel},
  urldate = {2020-05-20},
  year    = {2020},
}

@Online{Canonical2020a,
  author  = {{Canonical Ltd.}},
  title   = {Package: gcc (4:9.3.0-1ubuntu2)},
  url     = {https://packages.ubuntu.com/en/focal/gcc},
  urldate = {2020-05-20},
  year    = {2020},
}

@InProceedings{Checkoway2010,
  author    = {Checkoway, Stephen and Davi, Lucas and Dmitrienko, Alexandra and Sadeghi, Ahmad-Reza and Shacham, Hovav and Winandy, Marcel},
  booktitle = {Proceedings of the 17th ACM Conference on Computer and Communications Security},
  title     = {Return-Oriented Programming without Returns},
  doi       = {10.1145/1866307.1866370},
  isbn      = {978-1-4503-0245-6},
  location  = {Chicago, Illinois, USA},
  pages     = {559–572},
  publisher = {Association for Computing Machinery},
  series    = {CCS ’10},
  address   = {New York, NY, USA},
  keywords  = {x86, return-oriented programming, arm},
  numpages  = {14},
  year      = {2010},
}

@Online{Cook2010,
  author  = {Kees Cook and Hans Peter Anvin},
  date    = {2010-11-10},
  title   = {x86, cpu: Clear XD\_DISABLED flag on Intel to regain NX},
  url     = {https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=linux-5.4.y&id=ae84739c27b6b3725993202fe02ff35ab86468e1},
  urldate = {2020-05-29},
}

@Online{CorelanTeam2009,
  author  = {{Corelan Team}},
  date    = {2009-09-21},
  title   = {Exploit writing tutorial part 6 : Bypassing Stack Cookies, SafeSeh, SEHOP, HW DEP and ASLR},
  url     = {https://www.corelan.be/index.php/2009/09/21/exploit-writing-tutorial-part-6-bypassing-stack-cookies-safeseh-hw-dep-and-aslr/},
  urldate = {2020-06-29},
}

@Online{entfernungstabelle,
  title   = {Entfernungstabelle -- Entfernungstabelle f\"{u}r 40 Deutsche St\"{a}dte},
  url     = {http://www.auslandversicherungen.de/entfernungstabelle.html},
  urldate = {2017-05-09},
  year    = {2017},
}

@Book{Erickson2008,
  author    = {Jon Erickson},
  date      = {2008},
  title     = {Hacking: The Art of Exploitation},
  edition   = {2},
  isbn      = {978-1-59327-144-2},
  publisher = {No Starch Press, Inc.},
}

@InProceedings{Federico2015,
  author    = {Alessandro Di Federico and Amat Cama and Yan Shoshitaishvili and Christopher Kruegel and Giovanni Vigna},
  booktitle = {24th {USENIX} Security Symposium ({USENIX} Security 15)},
  date      = {2015-08},
  title     = {How the {ELF} Ruined Christmas},
  isbn      = {978-1-939133-11-3},
  pages     = {643--658},
  publisher = {{USENIX} Association},
  address   = {Washington, D.C.},
}

@Manual{Fog2019,
  author  = {Agner Fog},
  date    = {2019-12-30},
  title   = {Calling conventions},
  url     = {https://www.agner.org/optimize/calling_conventions.pdf},
  urldate = {2020-06-02},
}

@Online{FSF2019,
  author  = {{Free Software Foundation, Inc.}},
  date    = {2019},
  title   = {Instrumentation Options (Using the GNU Compiler Collection (GCC))},
  url     = {https://gcc.gnu.org/onlinedocs/gcc-9.3.0/gcc/Instrumentation-Options.html},
  urldate = {2020-05-28},
}

@Online{FSF2020,
  author  = {{Free Software Foundation, Inc.}},
  date    = {2020},
  title   = {GCC, the GNU Compiler Collection},
  url     = {https://www.gnu.org/software/gcc/},
  urldate = {2020-05-20},
}

@Software{FSF2020a,
  author  = {{Free Software Foundation, Inc.}},
  date    = {2020},
  title   = {glibc-2.31},
  url     = {https://sourceware.org/git/?p=glibc.git;a=tree;h=6ee690ef6fa36bf79d2e05b5a30a4f7e10ba3937;hb=9ea3686266dca3f004ba874745a4087a89682617},
  urldate = {2020-05-27},
  version = {2.31},
}

@Article{Gadient2019,
  author = {Gadient, Austin and Ortiz, Baltazar and Barrato, Ricardo and Davis, Eli and Perkins, Jeff and Rinard, Martin},
  date   = {2019-06},
  title  = {Automatic Exploitation of Fully Randomized Executables},
  doi    = {1721.1/121246},
}

@Online{Garrison2020,
  author       = {Tom Garrison},
  date         = {2020-06-15},
  title        = {Intel CET Answers Call to Protect Against Common Malware Threats},
  url          = {https://newsroom.intel.com/editorials/intel-cet-answers-call-protect-common-malware-threats/},
  organization = {{Intel Corporation}},
  urldate      = {2020-06-19},
}

@Online{GCC2020,
  author       = {{GCC development community}},
  date         = {2020},
  title        = {gcc.gnu.org Git - gcc.git/search},
  url          = {https://gcc.gnu.org/git/?p=gcc.git&a=search&h=HEAD&st=commit&s=intel cet},
  organization = {{Free Software Foundation, Inc.}},
  urldate      = {2020-06-26},
}

@Online{GoogleLLC2020,
  author  = {{Google LLC}},
  title   = {android/kernel/common - Branches},
  url     = {https://android.googlesource.com/kernel/common/+refs},
  urldate = {2020-05-20},
  year    = {2020},
}

@Online{Guelton2020,
  author  = {Serge Guelton},
  date    = {2020-02-11},
  title   = {Toward \_FORTIFY\_SOURCE parity between Clang and GCC},
  url     = {https://developers.redhat.com/blog/2020/02/11/toward-_fortify_source-parity-between-clang-and-gcc/},
  urldate = {2020-06-29},
}

@Online{Guelton2020a,
  author  = {Serge Guelton},
  date    = {2020-01-16},
  title   = {Reapply Allow system header to provide their own implementation of so…},
  url     = {https://github.com/llvm/llvm-project/commit/d437fba8ef626b6d8b7928540f630163a9b04021},
  urldate = {2020-06-29},
}

@InProceedings{Hawkins2016,
  author    = {William H. Hawkins and Jason D. Hiser and Jack W. Davidson},
  booktitle = {Proceedings of the 11th Annual Cyber and Information Security Research Conference - {CISRC} {\textquotesingle}16},
  date      = {2016},
  title     = {Dynamic Canary Randomization for Improved Software Security},
  doi       = {10.1145/2897795.2897803},
  isbn      = {978-1-4503-3752-6},
  publisher = {Association for Computing Machinery},
}

@Manual{IntelCorporation2019,
  author  = {{Intel Corporation}},
  date    = {2019-05},
  title   = {Control-flow Enforcement Technology Specification},
  url     = {https://software.intel.com/sites/default/files/managed/4d/2a/control-flow-enforcement-technology-preview.pdf},
  urldate = {2020-05-26},
  version = {3.0},
}

@Manual{IntelCorporation2020,
  author   = {{Intel Corporation}},
  date     = {2020-05-27},
  title    = {Intel\textregistered{} 64 and IA-32 Architectures Software Developer's Manual},
  subtitle = {Instruction Set Reference, A-Z},
  url      = {https://software.intel.com/content/dam/develop/public/us/en/documents/325383-sdm-vol-2abcd.pdf},
  urldate  = {2020-06-02},
  volume   = {2},
}

@Online{Jelinek2004,
  author  = {Jakub Jelinek},
  date    = {2004-09-21},
  title   = {[PATCH] Object size checking to prevent (some) buffer overflows},
  url     = {https://gcc.gnu.org/legacy-ml/gcc-patches/2004-09/msg02055.html},
  urldate = {2020-05-26},
}

@Article{Kaempf2001,
  author       = {Michel Kaempf},
  date         = {2001},
  journaltitle = {Phrack},
  title        = {Vudo - An object superstitiously believed to embody magical powers},
  issue        = {57},
  url          = {http://phrack.org/issues/57/8.html#article},
  urldate      = {2020-06-30},
  volume       = {11},
}

@Online{Kernel2020,
  author  = {{Kernel development community}},
  date    = {2020},
  title   = {Memory Management},
  url     = {https://www.kernel.org/doc/html/v5.4/x86/x86_64/mm.html},
  urldate = {2020-05-26},
}

@Online{Kernel2020a,
  author  = {{Kernel development community}},
  date    = {2020},
  title   = {Documentation for /proc/sys/kernel},
  url     = {https://www.kernel.org/doc/html/v5.4/admin-guide/sysctl/kernel.html},
  urldate = {2020-05-28},
}

@Online{Kerrisk2020,
  author  = {Michael Kerrisk},
  date    = {2020-05-16},
  title   = {FEATURE\_TEST\_MACROS(7) Linux Programmer's Man\-ual},
  url     = {https://www.man7.org/linux/man-pages/man7/feature_test_macros.7.html},
  urldate = {2020-05-26},
}

@Online{Kerrisk2020a,
  author  = {Michael Kerrisk},
  date    = {2020-05-27},
  title   = {SIGRETURN(2) Linux Programmer's Manual},
  url     = {https://www.man7.org/linux/man-pages/man2/sigreturn.2.html},
  urldate = {2020-06-05},
}

@Online{Kerrisk2020b,
  author  = {Michael Kerrisk},
  date    = {2020-06-09},
  title   = {STRCPY(3) Linux Programmer's Manual},
  url     = {https://www.man7.org/linux/man-pages/man3/strncpy.3.html},
  urldate = {2020-06-11},
}

@Online{Kerrisk2020c,
  author  = {Michael Kerrisk},
  date    = {2020-06-09},
  title   = {MEMCPY(3) Linux Programmer's Manual},
  url     = {https://man7.org/linux/man-pages/man3/memcpy.3.html},
  urldate = {2020-06-11},
}

@Online{Kerrisk2020d,
  author  = {Michael Kerrisk},
  date    = {2020-06-13},
  title   = {FORK(2) Linux Programmer's Manual},
  url     = {https://man7.org/linux/man-pages/man2/fork.2.html},
  urldate = {2020-06-15},
}

@Book{Klein2011,
  author    = {Tobias Klein},
  date      = {2011},
  title     = {A Bug Hunter's Diary},
  isbn      = {978-1-59327-385-9},
  location  = {San Francisco, CA, USA},
  publisher = {No Starch Press, Inc.},
}

@InProceedings{Kocher2019,
  author    = {Paul Kocher and Jann Horn and Anders Fogh and Daniel Genkin and Daniel Gruss and Werner Haas and Mike Hamburg and Moritz Lipp and Stefan Mangard and Thomas Prescher and Michael Schwarz and Yuval Yarom},
  booktitle = {2019 {IEEE} Symposium on Security and Privacy ({SP})},
  date      = {2019-05},
  title     = {Spectre Attacks: Exploiting Speculative Execution},
  doi       = {10.1109/sp.2019.00002},
  location  = {San Francisco, CA, USA},
  pages     = {1--19},
  publisher = {{IEEE}},
}

@Online{Kolibri,
  title =		 {File:Hummingbird.jpg},
  year =		 2004,
  url =			 {https://commons.wikimedia.org/wiki/File:Hummingbird.jpg},
  urldate =		 {2018-04-09}
}
@article{Konak2006,
  author =		 {Konak, A. and Coit, D. W. and Smith, A. E.},
  doi =			 {10.1016/j.ress.2005.11.018},
  issn =		 {09518320},
  journaltitle = {Reliability Engineering \& System Safety},
  month =		 sep,
  number =		 {9},
  pages =		 {992--1007},
  title =		 {{Multi-objective optimization using genetic
                  algorithms: A tutorial}},
  volume =		 {91},
  year =		 {2006}
}

@Online{Kotler2005,
  author  = {Itzik Kotler},
  date    = {2005},
  title   = {Advanced Buffer Overflow Methods},
  url     = {http://events.ccc.de/congress/2005/fahrplan/attachments/538-Slides_AdvancedBufferOverflowMethods.ppt},
  urldate = {2020-06-10},
}

@Online{Levi2018,
  author       = {Osnat Levi},
  date         = {2018-06-25},
  title        = {Pin - A Dynamic Binary Instrumentation Tool},
  url          = {https://software.intel.com/content/www/us/en/develop/articles/pin-a-dynamic-binary-instrumentation-tool.html},
  organization = {{Intel Corporation}},
  urldate      = {2020-06-18},
}

@InProceedings{Lipp2018,
  author    = {Moritz Lipp and Michael Schwarz and Daniel Gruss and Thomas Prescher and Werner Haas and Anders Fogh and Jann Horn and Stefan Mangard and Paul Kocher and Daniel Genkin and Yuval Yarom and Mike Hamburg},
  booktitle = {27th {USENIX} Security Symposium ({USENIX} Security 18)},
  date      = {2018},
  title     = {Meltdown: Reading Kernel Memory from User Space},
  location  = {Baltimore, MD, USA},
  publisher = {The USENIX Association},
}

@Software{LKD2020,
  author       = {{Linux Kernel Developers}},
  date         = {2020-06-30},
  title        = {Linux operating system},
  organization = {Linux Kernel Organization, Inc.},
  type         = {Operating system},
  url          = {https://git.kernel.org/stable/h/v5.4.50},
  urldate      = {2020-07-04},
  version      = {5.4.50},
  publisher    = {Linus Torvalds},
}

@Online{LKO2020,
  author  = {{Linux Kernel Organization, Inc.}},
  date    = {2020-06-04},
  title   = {Active kernel releases},
  url     = {https://www.kernel.org/category/releases.html},
  urldate = {2020-06-05},
}

@Online{LKO2020a,
  author  = {{Linux Kernel Organization, Inc.}},
  date    = {2020},
  title   = {The Linux Kernel Archives},
  url     = {https://www.kernel.org},
  urldate = {2020-06-05},
}

@Manual{Lu2015,
  author  = {Hongjiu Lu and David L. Kreitzer and Milind Girkar and Zia Ansari},
  date    = {2015-12-07},
  title   = {System V Application Binary Interface - Intel386 Architecture Processor Supplement},
  url     = {https://github.com/hjl-tools/x86-psABI/wiki/intel386-psABI-1.1.pdf},
  urldate = {2020-06-02},
  version = {1.1},
}

@InProceedings{Lu2016,
  author    = {Kangjie Lu and Stefan N\"{u}rnberger and Michael Backes and Wenke Lee},
  booktitle = {Proceedings of the 2016 Network and Distributed System Security Symposium},
  date      = {2016},
  title     = {How to Make {ASLR} Win the Clone Wars: Runtime Re-Randomization},
  doi       = {10.14722/ndss.2016.23173},
  isbn      = {1-891562-41-X},
  location  = {San Diego, CA, USA},
  publisher = {Internet Society},
}

@Manual{Lu2018,
  author  = {Hongjiu Lu and Michael Matz and Milind Girkar and Jan Hubička and Andreas Jaeger and Mark Mitchell},
  date    = {2018-01-28},
  title   = {System V Application Binary Interface - AMD64 Architecture Processor Supplement (With LP64 and ILP32 Programming Models)},
  url     = {https://github.com/hjl-tools/x86-psABI/wiki/x86-64-psABI-1.0.pdf},
  urldate = {2020-06-02},
  version = {1.0},
}

@Online{Lynn2007,
  author       = {Michael Lynn},
  date         = {2007-04-05},
  title        = {File:Stack OverFlow 2.png},
  url          = {https://commons.wikimedia.org/wiki/File:Stack_Overflow_2.png},
  organization = {Wikimedia Commons},
  urldate      = {2020-05-22},
}

@Online{Lynn2007a,
  author       = {Michael Lynn},
  date         = {2007-04-05},
  title        = {File:Stack OverFlow 3.png},
  url          = {https://commons.wikimedia.org/wiki/File:Stack_Overflow_3.png},
  organization = {Wikimedia Commons},
  urldate      = {2020-05-25},
}

@Online{Lynn2007b,
  author       = {Michael Lynn},
  date         = {2007-04-05},
  title        = {File:Stack OverFlow 4.png},
  url          = {https://commons.wikimedia.org/wiki/File:Stack_Overflow_4.png},
  organization = {Wikimedia Commons},
  urldate      = {2020-05-22},
}

@Online{Lynn2007c,
  author       = {Michael Lynn},
  date         = {2007-04-06},
  title        = {File:NopSled.png},
  url          = {https://commons.wikimedia.org/wiki/File:NopSled.png},
  organization = {Wikimedia Commons},
  urldate      = {2020-05-22},
}

@InProceedings{MarcoGisbert2013,
  author    = {Hector Marco-Gisbert and Ismael Ripoll},
  booktitle = {2013 {IEEE} 12th International Symposium on Network Computing and Applications},
  date      = {2013-08},
  title     = {Preventing Brute Force Attacks Against Stack Canary Protection on Networking Servers},
  doi       = {10.1109/nca.2013.12},
  isbn      = {978-0-7695-5043-5},
  pages     = {243--250},
  publisher = {{IEEE}},
}

@InProceedings{MarcoGisbert2014,
  author    = {Hector Marco-Gisbert and Ismael Ripoll},
  booktitle = {In-Depth Security Conference 2014 Europe - DeepSec},
  date      = {2014-11-20},
  title     = {On the Effectiveness of Full-ASLR on 64-bit Linux},
}

@Online{MarcoGisbert2014a,
  author  = {Marco-Gisbert, Hector},
  date    = {2014-12-05},
  title   = {[PATCH] ASLRv3: randomize\_va\_space=3 preventing offset2lib attack},
  url     = {https://lore.kernel.org/lkml/5480F756.90106@upv.es/},
  urldate = {2020-06-17},
}

@InProceedings{MarcoGisbert2014b,
  author    = {Hector Marco-Gisbert and Ismael Ripoll},
  booktitle = {2014 {IEEE} 13th International Symposium on Network Computing and Applications},
  date      = {2014-08},
  title     = {On the Effectiveness of {NX}, {SSP}, {RenewSSP}, and {ASLR} against Stack Buffer Overflows},
  doi       = {10.1109/nca.2014.28},
  isbn      = {978-1-4799-5393-6},
  pages     = {145--152},
  publisher = {{IEEE}},
}

@TechReport{MarcoGisbert2016,
  author      = {Hector Marco-Gisbert and Ismael Ripoll},
  date        = {2016-04-05},
  institution = {Universitat Politècnica de València},
  title       = {Exploiting Linux and PaX ASLR's weaknesses on 32- and 64-bit systems},
}

@InProceedings{Mason2009,
  author    = {Mason, Joshua and Small, Sam and Monrose, Fabian and MacManus, Greg},
  booktitle = {Proceedings of the 16th ACM Conference on Computer and Communications Security},
  date      = {2009},
  title     = {English Shellcode},
  doi       = {10.1145/1653662.1653725},
  isbn      = {978-1-6055-8894-0},
  location  = {Chicago, Illinois, USA},
  pages     = {524–533},
  publisher = {Association for Computing Machinery},
  series    = {CCS ’09},
  address   = {New York, NY, USA},
  keywords  = {shellcode, network emulation, natural language},
  numpages  = {10},
}

@Online{MITRECorporation2020,
  author  = {{The MITRE Corporation}},
  date    = {2020},
  title   = {CVE List},
  url     = {https://cve.mitre.org},
  urldate = {2020-07-01},
}

@Online{Molnar2004,
  author  = {Ingo Molnar},
  date    = {2004-06-02},
  title   = {[announce] [patch] NX (No eXecute) support for x86, 2.6.7-rc2-bk2},
  url     = {http://lkml.iu.edu/hypermail/linux/kernel/0406.0/0497.html},
  urldate = {2020-05-27},
}

@TechReport{Mueller2008,
  author      = {Tilo M\"{u}ller},
  date        = {2008-02-17},
  institution = {RWTH Aachen},
  title       = {ASLR Smack \& Laugh Reference},
  subtitle    = {Seminar on Advanced Exploitation Techniques},
}

@Online{Newton2013,
  author  = {Will Newton},
  date    = {2013-10-16},
  title   = {Pointer Encryption},
  url     = {https://sourceware.org/glibc/wiki/PointerEncryption},
  urldate = {2020-05-27},
}

@Article{obscou2003,
  author       = {obscou},
  date         = {2003},
  journaltitle = {Phrack},
  title        = {Building IA32 'Unicode-Proof' Shellcodes},
  issue        = {61},
  url          = {http://phrack.org/issues/61/11.html#article},
  urldate      = {2020-06-11},
  volume       = {11},
}

@Manual{OracleCorporation2020,
  author  = {{Oracle Corporation}},
  date    = {2020-01-21},
  title   = {Oracle\textregistered{} Linux 8 - Enhancing System Security},
  version = {9094},
}

@Online{PaXTeam,
  author  = {{PaX Team}},
  title   = {Homepage of the {PaX} Team},
  url     = {https://pax.grsecurity.net},
  urldate = {2020-06-17},
}

@Online{RedHat2020,
  author  = {{Red Hat, Inc.}},
  title   = {Red Hat Enterprise Linux Release Dates},
  url     = {https://access.redhat.com/articles/3078},
  urldate = {2020-05-20},
  year    = {2020},
}

@Online{RedHat2020a,
  author  = {{Red Hat, Inc.}},
  title   = {What gcc versions are available in Red Hat Enterprise Linux?},
  url     = {https://access.redhat.com/solutions/19458},
  urldate = {2020-05-20},
  year    = {2020},
}

@Article{rix2000,
  author       = {rix},
  date         = {2000-01-05},
  journaltitle = {Phrack},
  title        = {Smashing C\texttt{++} VPTRs},
  issue        = {56},
  url          = {http://phrack.org/issues/56/8.html#article},
  urldate      = {2020-06-29},
  volume       = {10},
}

@Article{Sadeghi2018,
  author       = {AliAkbar Sadeghi and Salman Niksefat and Maryam Rostamipour},
  date         = {2018-05},
  journaltitle = {Journal of Computer Virology and Hacking Techniques},
  title        = {Pure-Call Oriented Programming ({PCOP}): chaining the gadgets using call instructions},
  doi          = {10.1007/s11416-017-0299-1},
  number       = {2},
  pages        = {139--156},
  volume       = {14},
  publisher    = {Springer Science and Business Media {LLC}},
}

@inproceedings{Sailer2013,
  title =		 {Optimizing the task allocation step for multi-core
                  processors within AUTOSAR},
  author =		 {Sailer, A. and Schmidhuber, S. and Deubzer, M. and
                  Alfranseder, M. and Mucha, M. and Mottok, J.},
  booktitle =	 {2013 International Conference on Applied Electronics (AE)},
  pages =		 {1--6},
  year =		 {2013},
  organization = {IEEE}
}

@Online{Satran2018,
  author       = {Satran, Michael and Batchelor, Drew},
  date         = {2018-05-31},
  title        = {Data Execution Prevention},
  url          = {https://docs.microsoft.com/en-us/windows/win32/memory/data-execution-prevention},
  organization = {Microsoft Corporation},
  urldate      = {2020-05-27},
}

@InProceedings{Schwarz2019,
  author    = {Michael Schwarz and Moritz Lipp and Daniel Moghimi and Jo Van Bulck and Julian Stecklina and Thomas Prescher and Daniel Gruss},
  booktitle = {Proceedings of the 2019 {ACM} {SIGSAC} Conference on Computer and Communications Security},
  date      = {2019-11},
  title     = {{ZombieLoad}},
  doi       = {10.1145/3319535.3354252},
  isbn      = {978-1-4503-6747-9},
  location  = {London, UK},
  publisher = {Association for Computing Machinery},
}

@TechReport{scut2001,
  author  = {scut and {team teso}},
  date    = {2001-09-01},
  title   = {Exploiting Format String Vulnerabilities},
  url     = {https://cs155.stanford.edu/papers/formatstring-1.2.pdf},
  urldate = {2020-06-30},
  version = {1.2},
}

@InProceedings{Shacham2004,
  author    = {Shacham, Hovav and Page, Matthew and Pfaff, Ben and Goh, Eu-Jin and Modadugu, Nagendra and Boneh, Dan},
  booktitle = {Proceedings of the 11th ACM Conference on Computer and Communications Security},
  date      = {2004},
  title     = {On the Effectiveness of Address-Space Randomization},
  doi       = {10.1145/1030083.1030124},
  isbn      = {1581139616},
  location  = {Washington DC, USA},
  pages     = {298–307},
  publisher = {Association for Computing Machinery},
  series    = {CCS ’04},
  address   = {New York, NY, USA},
  keywords  = {automated attacks, diversity, address-space randomization},
  numpages  = {10},
}

@InProceedings{Shanbhogue2019,
  author    = {Vedvyas Shanbhogue and Deepak Gupta and Ravi Sahita},
  booktitle = {Proceedings of the 8th International Workshop on Hardware and Architectural Support for Security and Privacy (HASP '19)},
  date      = {2019-06},
  title     = {Security Analysis of Processor Instruction Set Architecture for Enforcing Control-Flow Integrity},
  doi       = {10.1145/3337167.3337175},
  isbn      = {978-1-4503-7226-8},
  location  = {Phoenix, AZ, USA},
  publisher = {Association for Computing Machinery},
}

@Online{Sharma2014,
  author       = {Siddharth Sharma},
  date         = {2014-03-26},
  title        = {Enhance application security with FORTIFY\_SOURCE},
  url          = {https://access.redhat.com/blogs/766093/posts/1976213},
  organization = {Red Hat, Inc.},
  urldate      = {2020-05-26},
}

@Online{Sidhpurwala2018,
  author       = {Huzaifa Sidhpurwala},
  date         = {2018-09-26},
  title        = {Security Technologies: FORTIFY\_SOURCE},
  url          = {https://access.redhat.com/blogs/766093/posts/3606481},
  organization = {Red Hat, Inc.},
  urldate      = {2020-05-26},
}

@Online{Sidhpurwala2019,
  author       = {Huzaifa Sidhpurwala},
  date         = {2019-01-28},
  title        = {Hardening ELF binaries using Relocation Read-Only (RELRO)},
  url          = {https://www.redhat.com/en/blog/hardening-elf-binaries-using-relocation-read-only-relro},
  organization = {Red Hat, Inc.},
  urldate      = {2020-06-08},
}

@Online{SolarDesigner1997,
  author  = {{Solar Designer}},
  date    = {1997-08-10},
  title   = {Getting around non-executable stack (and fix)},
  url     = {https://seclists.org/bugtraq/1997/Aug/63},
  urldate = {2020-05-29},
}

@Online{SolarDesigner2000,
  author  = {{Solar Designer}},
  date    = {2000-07-25},
  title   = {JPEG COM Marker Processing Vulnerability},
  url     = {https://www.openwall.com/articles/JPEG-COM-Marker-Vulnerability},
  urldate = {2020-06-30},
}

@Online{SPI2020,
  author  = {{Software in the Public Interest, Inc.}},
  title   = {Updated Debian 10: 10.4 released},
  url     = {https://www.debian.org/News/2020/20200509.en.html},
  urldate = {2020-05-20},
  year    = {2020},
}

@Online{SPI2020a,
  author  = {{Software in the Public Interest, Inc.}},
  title   = {Package: linux-image-amd64 (4.19+105\linebreak[0]+deb10u4)},
  url     = {https://packages.debian.org/en/buster/linux-image-amd64},
  urldate = {2020-05-20},
  year    = {2020},
}

@Online{SPI2020b,
  author  = {{Software in the Public Interest, Inc.}},
  title   = {Package: gcc (4:8.3.0-1)},
  url     = {https://packages.debian.org/en/buster/gcc},
  urldate = {2020-05-20},
  year    = {2020},
}

@Online{Statcounter2020,
  author  = {Statcounter},
  title   = {Mobile Operating System Market Share Worldwide},
  url     = {https://gs.statcounter.com/os-market-share/mobile/worldwide/},
  urldate = {2020-05-20},
  year    = {2020},
}

@InProceedings{Sun2020,
  author    = {Jiadong Sun and Xia Zhou and Wenbo Shen and Yajin Zhou and Kui Ren},
  booktitle = {CODASPY '20: Proceedings of the Tenth ACM Conference on Data and Application Security and Privacy},
  date      = {2020-03},
  title     = {{PESC}: A Per-System-Call Stack Canary Design for Linux Kernel},
  doi       = {10.1145/3374664.3375734},
  isbn      = {978-1-4503-7107-0},
  publisher = {Association for Computing Machinery},
}

@InProceedings{Wang2018,
  author    = {Zhilong Wang and Xuhua Ding and Chengbin Pang and Jian Guo and Jun Zhu and Bing Mao},
  booktitle = {2018 48th Annual {IEEE}/{IFIP} International Conference on Dependable Systems and Networks ({DSN})},
  date      = {2018-06},
  title     = {To Detect Stack Buffer Overflow with Polymorphic Canaries},
  doi       = {10.1109/dsn.2018.00035},
  isbn      = {978-1-5386-5596-2},
  pages     = {243--254},
  publisher = {{IEEE}},
}

@Comment{jabref-meta: databaseType:biblatex;}

@Comment{jabref-meta: protectedFlag:true;}

@Comment{jabref-meta: saveOrderConfig:specified;bibtexkey;false;author;false;title;false;}