Description:
Explore the intricacies of LD_PRELOAD process injection and whitelisting solutions in this Shmoocon 2020 conference talk. Delve into how adversaries exploit LD_PRELOAD, understand its built-in audit system, and learn how to leverage it for whitelisting. Examine design and implementation considerations for whitelisting, and discover why built-in checks in the dynamic linker are more effective than bolt-on solutions. Follow along as the speaker demonstrates the creation and subsequent bypassing of a whitelisting solution, emphasizing the importance of integrating security measures closely with code.
Whitelisting LD PRELOAD for Fun and No Profit
Add to list
#Conference Talks
#ShmooCon
#Information Security (InfoSec)
#Cybersecurity
#Digital Forensics
#Computer Science
#Operating Systems
#Linux System Administration