Browser Security and Exploitation

10.

Browser Hardening and Mitigations

10.1.

Compile-Time Protections

10.1.1.

10.1.1.1.

Canary Value Generation

10.1.1.2.

Stack Overflow Detection

10.1.1.3.

Bypass Techniques

10.1.2.

10.1.2.1.

Buffer Overflow Detection

10.1.2.2.

Function Call Validation

10.1.3.

Control Flow Guard

10.1.3.1.

Indirect Call Protection

10.1.3.2.

Return Address Validation

10.2.

Runtime Mitigations

10.2.1.

Address Space Layout Randomization

10.2.1.1.

Virtual Address Randomization

10.2.1.2.

Heap Layout Randomization

10.2.1.3.

Stack Randomization

10.2.2.

Data Execution Prevention

10.2.2.1.

Non-Executable Memory Pages

10.2.2.2.

Hardware NX Bit Support

10.2.2.3.

Software DEP Implementation

10.2.3.

Control Flow Integrity

10.2.3.1.

Forward-Edge Protection

10.2.3.2.

Backward-Edge Protection

10.2.3.3.

Virtual Call Protection

10.3.

Hardware-Assisted Security

10.3.1.

10.3.1.1.

Shadow Stack Implementation

10.3.1.2.

Indirect Branch Tracking

10.3.2.

ARM Pointer Authentication

10.3.2.1.

Return Address Signing

10.3.2.2.

Function Pointer Protection

10.3.3.

Memory Tagging Extensions

10.3.3.1.

Tag-Based Memory Protection

10.3.3.2.

Use-After-Free Detection

Previous

9. DOM and Rendering Engine Exploitation

Go to top

Next

11. Vulnerability Research Methods