GitHub - sgxrop/sgxrop: The code to the SGX-ROP paper
source link: https://github.com/sgxrop/sgxrop
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.
README.md
SGX-ROP: Practical Enclave Malware with Intel SGX
This repository contains the implementations of the paper "Practical Enclave Malware with Intel SGX".
The repository consists of three parts: tap_claw
, demo
, and egghunter
.
TAP + CLAW
Contains the Intel TSX-based primitives to check whether a page is mapped and writable without using syscalls.
Demo
Uses TAP + CLAW inside a (malicious) SGX enclave to break ASLR of the host application, create a ROP payload and mount a simple PoC attack (i.e., create a file in the current directory).
Egg Hunter
Shows how to use TAP as egg hunter for classical exploits.
License
All code is licensed under the MIT license.
Recommend
About Joyk
Aggregate valuable and interesting links.
Joyk means Joy of geeK