Discussion in 'other security issues & news' started by CloneRanger, Jan 11, 2012.
I know at least one person that might be interested in this
Microsoft implementing it into EMET in 3..2..1.. Would be nice to have, EMET for the win.
errrr is there any more information anywhere? lol
I'm using Windows 8, which already has anti-ROP built in but I don't know if they work the same way.
Not exactly a confidence builder.
Yeah... I don't see a download link either. I've also never heard of these people.
I'm not even sure they're referring to software and not a hardware component.
It says it patches files so I think software.
I'm curious as to how they do detection (if this is legitimate) in any way different from win8.
They obviously don't mind, using humour on their website. On the 'Synjector: Synapse's Code Integration Engine' webpage, they state about the engine;
"Does the Framework works on Linux ? - Porting in Progress
Is it based on another engine ? - NO, We coded it from scratch
Defeats Aliens ? - YES
Chuck Norris Approved ? - YES
How does it work ? - We Don't Know !". link
I'm not really sure though what exactly can be taken lightheartedly and what seriously...
Me either. By the way, that link is broken.
Anyways, if you want to defeat ROP just use ASLR. It makes it much more difficult (EMET/ 64bit OS.)
EDIT: Or does it? I'm not sure since it uses a different tactic than typical rlibc
EDIT2: As I suspected ASLR would not effect ROP directly but if the entire address space is randomized it will make it more difficult.