ROP - From Zero to Nation State In 25 Minutes presented at BSidesTLV 2020

by Omer Yair,

Summary : “The only interesting answers are those which destroy the questions.” ― Susan SontagRoll up your sleeves and prepare for hands on demonstration of transforming a simple process injection into a new improved version of Stack Bombing that will evade most detection tools.We will focus on building a ROP and take a “CI/CD” approach to process injection, continuously improving the same code to evade detection and mitigation techniques.