Questions about this topic? Sign up to ask in the talk tab.

ASLR

From NetSec
Jump to: navigation, search

Address Space Layout Randomization

ASLR is a runtime security measure that randomizes the memory addresses that programs load data and code into. Usually implemented at the Operating System level, this will change the location of loaded code at each boot for libraries that are nx compliant. ASLR Bypass is typically achieved by exploiting a non nx compliant library in the context of an nx compliant operating system. It is possible to disable ASLR on Linux (it's enabled by default on 2.6.* kernels) by typing:

Terminal

localhost:~ $ sudo echo 0 > /proc/sys/kernel/randomize_va_space

Into your command line, note that root access is required to do this.

ASLR is implemented in Linux Kernel 2.6*, Windows XP SP3 and the more recent versions (Vista, 7, and 8).


Related

ASLR is part of a series on countermeasures.
This article contains too little information, it should be expanded or updated.
Things you can do to help:
  • add more content.
  • update current content.