Video Converter
Audio Converter
Image Converter
PDF Converter
File Compressor
exam 1 review

Exam 1 Review Stephen Checkoway University of Illinois at Chicago CS - PowerPoint PPT Presentation

Jun 22, 2023 •116 likes •300 views

Exam 1 Review Stephen Checkoway University of Illinois at Chicago CS 487 Fall 2017 Format Fifty minutes No notes Work alone (copying or sharing answers will result in failing the course) Three questions - Multiple choice - Short

  1. Exam 1 Review Stephen Checkoway University of Illinois at Chicago CS 487 – Fall 2017

  2. Format • Fifty minutes • No notes • Work alone (copying or sharing answers will result in failing the course) • Three questions - Multiple choice - Short answer - Attack construction

  3. Topics • Threat models • Defenses • Example attacks • Malware • Memory layout • Finding vulnerabilities • Stack • Passwords & authentication • Bu ff er overflows • Access control • Constructing shell code • Web & browser • Integer overflow • Format string attacks • Code-reuse attacks

  4. Threat models • Who are the attackers? • What are their capabilities? • What is their motivation? • What is their level of access?

  5. Example attacks • Goto fail • Shellshock • Samy worm

  6. Memory layout • Stack (including argv and envp) • Heap • Libraries • Code • Data

  7. Stack • Grows down (on most architectures) • Stack pointer • Frame pointer • Return address (pushed to stack or stored in a register) • Function arguments (on stack or in registers) • Local variables

  8. Buffer overflows • Overwrite control data or code pointers - On the stack - On the heap • Overwriting data used for control

  9. Constructing shell code • Want to call execve - eax: 0xb - ebx: pointer to "/bin/sh" - ecx: pointer to NULL-terminated array of pointers to arguments - edx: pointer to NULL-terminated array of pointers to environment variables • Avoiding zero bytes - Sometimes you need to, sometimes you don't

  10. Integer overflow • Truncations • Using the same data as both signed and unsigned • Comparing signed and unsigned

  11. Format string • Using %n and %x • %hhn • Where do you put shell code?

  12. Code-reuse attacks • Return-to-libc • Chaining return-to-libc calls • Return-oriented programming (ROP) • Constructing gadgets

  13. Defenses • Stack cookies (a.k.a. stack canaries) • Data execution prevention (DEP) • Address space layout randomization (ASLR)

  14. Malware • Infection type - virus - worm - trojan - etc • Attack - wiper - dropper - bot - ransomware

  15. Finding vulnerabilities • White box vs. black box • Manual vs. automated • Fuzzing • Reverse engineering

  16. Passwords & authentication • What makes a good password - Length, mostly • Salt • Rainbow tables • Password managers • One-time passwords • Two-factor authentication

  17. Access control • Di ff erence between authentication and authorization • Mandatory access control (MAC) • Discretionary access control (DAC) • Role-based access control (RBAC)

  18. Web & browser • Threats to the web server - Code injection (e.g., SQL injection) • Threats to the browser - Running untrusted code in a sandbox • Threats to one page from another - Same origin policy (SOP) • Cross-origin attacks - CSRF - XSS - Defenses

Recommend

Exam4 Information and Guidance General Topics General Exam Information Exam types

Exam4 Information and Guidance General Topics General Exam Information Exam types

Exam4 Information and Guidance General Topics General Exam Information Exam types Exam modes Exam IDs and anonymous grading Exam Issues during the exam period Using Exam4 Software General Exam Information Office

797 views • 26 slides
Quicksort Sorting Lower Bound Exam Exam Exam Exam 2 2 tomorrow evening 2 2 tomorrow

Quicksort Sorting Lower Bound Exam Exam Exam Exam 2 2 tomorrow evening 2 2 tomorrow

5/7/2012 Quicksort Sorting Lower Bound Exam Exam Exam Exam 2 2 tomorrow evening 2 2 tomorrow evening tomorrow evening tomorrow evening Topics were listed in Day 24 slides Some WA9 problems are good reinforcement of exam

363 views • 9 slides
Examination Lydia Love DVM DACVAA 2018 Exam Committee Chair September 2018 Exam Format

Examination Lydia Love DVM DACVAA 2018 Exam Committee Chair September 2018 Exam Format

ACVAA Certifying Examination Lydia Love DVM DACVAA 2018 Exam Committee Chair September 2018 Exam Format Exam Committee MCQ Exam Essay Exam Clinical Competency Exam Grading Cut Score Committee Score Reporting

685 views • 39 slides
Announcements Announcements Final Exam will be a take Final Exam will be a take- -home exam

Announcements Announcements Final Exam will be a take Final Exam will be a take- -home exam

Announcements Announcements Final Exam will be a take Final Exam will be a take- -home exam home exam Format similar to the short assignment (no Format similar to the short assignment (no multiple choice, etc.) multiple

695 views • 51 slides
ICS 101 Final Exam Review Fall 2016 Final Exam information In lab: check final exam schedule

ICS 101 Final Exam Review Fall 2016 Final Exam information In lab: check final exam schedule

ICS 101 Final Exam Review Fall 2016 Final Exam information In lab: check final exam schedule 85 Questions Multiple choice and True/False Weeks 8-15 Week 08: Machine Learning Week 09: Excel logic, compound logic, and truth

977 views • 84 slides
Exam 2 Review CS461/ECE422 Fall 2009 Exam guidelines Same as for first exam A single page

Exam 2 Review CS461/ECE422 Fall 2009 Exam guidelines Same as for first exam A single page

Exam 2 Review CS461/ECE422 Fall 2009 Exam guidelines Same as for first exam A single page of supplementary notes is allowed 8.5x11. Both sides. Write as small as you like. Closed book No calculator or other widgets.

484 views • 22 slides
Exam Review 2 Exam Overview Final Exam Friday,

Exam Review 2 Exam Overview Final Exam Friday,

Computer Systems and Networks ECPE 170 Jeff Shafer University of the Pacific Exam Review 2 Exam Overview Final Exam Friday,

964 views • 64 slides
Math 211 Math 211 Review for the Final Exam December 8, 2002 2 The Final Exam The Final Exam

Math 211 Math 211 Review for the Final Exam December 8, 2002 2 The Final Exam The Final Exam

1 Math 211 Math 211 Review for the Final Exam December 8, 2002 2 The Final Exam The Final Exam The final will be comprehensive, covering material from the entire semester. The final will emphasize the material covered since the last

529 views • 10 slides
Operating Systems Operating Systems CMPSC 473 CMPSC 473 Exam 1 Review Exam 1 Review February

Operating Systems Operating Systems CMPSC 473 CMPSC 473 Exam 1 Review Exam 1 Review February

Operating Systems Operating Systems CMPSC 473 CMPSC 473 Exam 1 Review Exam 1 Review February 19, 2008 - Lecture 10 10 February 19, 2008 - Lecture Instructor: Trent Jaeger Instructor: Trent Jaeger Exam Structure (12) Short Answer

330 views • 11 slides
The Bohr Model of Hydrogen Exam Details The exam will be held Wednesday, October 5th from

The Bohr Model of Hydrogen Exam Details The exam will be held Wednesday, October 5th from

The Bohr Model of Hydrogen Exam Details The exam will be held Wednesday, October 5th from 3:354:30pm. I will be away that entire week . Chris will be giving the exam review lecture on Monday. A practice exam has been posted on the

472 views • 13 slides
The final exam Other finals review Final Exam Review CSH Review November 17 th

The final exam Other finals review Final Exam Review CSH Review November 17 th

The final exam Other finals review Final Exam Review CSH Review November 17 th 7pm 10pm Gracies Recall Final: November 18 th 12:30pm 2:30pm 70-3690 Plan for today UML Everything we learned

248 views • 5 slides
Vector Graphics Project Check out FilesAndExceptions from SVN Exam 2 review File I/O and

Vector Graphics Project Check out FilesAndExceptions from SVN Exam 2 review File I/O and

Exam 2 Review File I/O, Exceptions Vector Graphics Project Check out FilesAndExceptions from SVN Exam 2 review File I/O and Exceptions Vector Graphics project kickoff Exam is in class tomorrow Test on Tuesday In-class exam

530 views • 19 slides
Review Final exam Final exam will be 11-12 problems, drop any 2 Cumulative up to and including

Review Final exam Final exam will be 11-12 problems, drop any 2 Cumulative up to and including

Review Final exam Final exam will be 11-12 problems, drop any 2 Cumulative up to and including week 13 (emphasis on weeks 10-13: classes & pointers) 2 hours exam time, so 12 min per problem (midterm 2 had 8-ish) Review: Overview

769 views • 39 slides
Exam review, Game of Life work time Turn in your questions on material in preparation for

Exam review, Game of Life work time Turn in your questions on material in preparation for

Exam review, Game of Life work time Turn in your questions on material in preparation for exam 1 (HW9) Exam 1 review Work time for Game of Life Test on Tuesday In-class exam Meet in your usual room at the usual time

358 views • 6 slides
Exam #2 Review sseshadr Agenda Administrative things Exam tomorrow, shouldve been

Exam #2 Review sseshadr Agenda Administrative things Exam tomorrow, shouldve been

Exam #2 Review sseshadr Agenda Administrative things Exam tomorrow, shouldve been studying Proxy lab out tomorrow Youre probably done with malloc. Congratulations! Exam Review Brief intro to proxy lab Studying What

607 views • 18 slides
Lectur Lecture 20: e 20: DC M DC Motor otors Exam Exam 2 Results 2 Results Most M ost

Lectur Lecture 20: e 20: DC M DC Motor otors Exam Exam 2 Results 2 Results Most M ost

Lectur Lecture 20: e 20: DC M DC Motor otors Exam Exam 2 Results 2 Results Most M ost Missed Questions: issed Questions: Most M ost Missed Questions: issed Questions: Most M ost Missed Questions: issed Questions: Exam Exam 2 M 2

482 views • 23 slides
JReFrameworker: One Year Later ben-holland.com (daedared) jreframeworker.com I Derbycon

JReFrameworker: One Year Later ben-holland.com (daedared) jreframeworker.com I Derbycon

JReFrameworker: One Year Later ben-holland.com (daedared) jreframeworker.com I Derbycon Derbycon 3.0: My first con ever! Loved it. Derbycon 4.0: A Bug or Malware? Catastrophic consequences either way. How would you detect the

630 views • 43 slides
More WordGames Introduction to Java Graphics Check out IntroToJavaGraphics from SVN Review of

More WordGames Introduction to Java Graphics Check out IntroToJavaGraphics from SVN Review of

More WordGames Introduction to Java Graphics Check out IntroToJavaGraphics from SVN Review of WordGames Time to work on the rest of WordGames Basics of Java graphics Follow along in your own Eclipse Youll need the examples

472 views • 11 slides
Android Malware Adventures Mert Can Cokuner Krat Ouzhan Aknc Android Malware

Android Malware Adventures Mert Can Cokuner Krat Ouzhan Aknc Android Malware

DeepSec IDSC Android Malware Adventures Mert Can Cokuner Krat Ouzhan Aknc Android Malware Adventures Agenda INTRODUCTION ANDROID MALWARE COMMAND & CONTROL QUESTIONS & ANSWERS 2 1 2 3 4 Android Malware

1.01k views • 64 slides
A static analyzer for PE executables RMLL 2016 Security Track Ivan Kwiatkowski, AMIR

A static analyzer for PE executables RMLL 2016 Security Track Ivan Kwiatkowski, AMIR

A static analyzer for PE executables RMLL 2016 Security Track Ivan Kwiatkowski, AMIR Consulting Project origins Started in Feb. 2014 Annoyance at AV softwares opaque decisions Needed to automate repetitive tasks Overview: A

574 views • 21 slides
Examples of modern malware Malware Analysis Seminar Meeting 7 Cody Cutler, Anton Burtsev

Examples of modern malware Malware Analysis Seminar Meeting 7 Cody Cutler, Anton Burtsev

Examples of modern malware Malware Analysis Seminar Meeting 7 Cody Cutler, Anton Burtsev Stuxnet (2009) Organization Core a large .dll file 2 encrypted configuration files Dropper component Core in a stub section

710 views • 43 slides
POLYMORPHISM The same tool can be used in different contexts Example : color selector

POLYMORPHISM The same tool can be used in different contexts Example : color selector

INSTRUMENTAL INTERACTION POLYMORPHISM The same tool can be used in different contexts Example : color selector Change color of: Text Border Background Highlight INSTRUMENTAL INTERACTION POLYMORPHISM

332 views • 11 slides
Fun with symbolic execution Carl Svensson, 27 MSc in Computer Science, KTH Head of

Fun with symbolic execution Carl Svensson, 27 MSc in Computer Science, KTH Head of

Carl Svensson Exploit development and deobfuscation September 13, 2018 SEC-T 2018 Fun with symbolic execution Carl Svensson, 27 MSc in Computer Science, KTH Head of Security, Kry CTF-player, HackingForSoju 1 About me

699 views • 23 slides
MANAGE THE IMPRESSION YOU AND YOUR DISABILITY MAKE DURING THE JOB INTERVIEW Impression

MANAGE THE IMPRESSION YOU AND YOUR DISABILITY MAKE DURING THE JOB INTERVIEW Impression

GET THE JOB MANAGE THE IMPRESSION YOU AND YOUR DISABILITY MAKE DURING THE JOB INTERVIEW Impression management strategies and self disclosure can be used to dispel myths about disability, and strengthen your presentation during the interview.

817 views • 45 slides

More recommend

Explore More Topics

Stay informed with curated content and fresh updates.

animals pets art culture automotive transportation business finance computer internet construction architecture education-career electronics communication

Logo Sambuz

Unleash a World of Digital Possibilities—Browse, Share, and Explore Content Without Boundaries

Useful Links

About Us Privacy Services FAQ's Contact

Newsletter

Stay Informed & Inspired—Subscribe for the Latest Updates, Tips, and Exclusive Content Directly to Your Inbox.

Mail Us

mail@sambuz.com

2026 SAMBUZ, All right reserved.