November 2015 - Include Security Research Blog

Strengths and Weaknesses of LLVM’s SafeStack Buffer Overflow Protection

February 18, 2021November 12, 2015 — by Samuel Groß

Introduction In June 2015, a new memory corruption exploit mitigation named SafeStack was merged into the llvm development branch by Peter Collingbourne from Google and will be available with the upcoming 3.8 release. SafeStack was developed as part of the Code Pointer Integrity (CPI) project but is also available as stand-alone mitigation. We like to … Read more

Firmware dumping technique for an ARM Cortex-M0 SoC

February 18, 2021November 5, 2015 — by Kris Brosch

One of the first major goals when reversing a new piece of hardware is getting a copy of the firmware. Once you have access to the firmware, you can reverse engineer it by disassembling the machine code. Sometimes you can get access to the firmware without touching the hardware, by downloading a firmware update file … Read more