CENSUS | Cybersecurity Engineering

SOFTWARE HARDENING

Kernel Exploitation Mitigations

We have conducted research on the defense mechanisms employed by popular operating system kernels. Specifically, we have explored the kernel exploitation mitigations of the following operating systems:

Linux (version 2.6.37)
Windows 7
Mac OS X Snow Leopard (version 10.6.6)
FreeBSD (version 8.1)
iOS (Apple's iPhone OS)
Google's Android

Our results were presented at the Black Hat Europe 2011 Briefings:

Protecting the Core: Kernel Exploitation Mitigations, Black Hat Europe 2011 Briefings [slides] [white paper]

An earlier study (from 2010) of FreeBSD's kernel exploitation mitigations is available here.

Company News

6th CYBERSECURITY FINANCIAL SERVICES SUMMIT 2023
AUTOTECH EUROPE 2023
18⁰ IT Directors Forum

Advisories

Weak SVG asset filtering mechanism in Squidex
Race condition in key creation and key rotation exposes private keys of Tang server
Reflected XSS vulnerabilities in Squidex "/squid.svg" endpoint

Blog

Introducing Janus: a hierarchical multi-blockchain access control system for policy based access to shared resources
Securing the building blocks of embedded software
Remote exploitation of a man-in-the-disk vulnerability in WhatsApp (CVE-2021-24027)

Kernel Exploitation Mitigations

LATEST ADVISORIES

IN THE NEWS