Detecting House of Spirit Attacks by Glibc Heap Information Extraction

The current forensic research on heaps mainly extracts information from the heap and the NT heap of Windows. However,the study of how to extract the information on the Glibc heap in the Linux from dump files is not sufficient. To reproduce the internal information on the Glibc heap,this...

Full description

Bibliographic Details
Published in:Journal of Harbin University of Science and Technology
Main Authors: ZHAI Jiqiang, WANG Jiaqian, HAN Xu, SUN Haixu
Format: Article
Language:Chinese
Published: Harbin University of Science and Technology Publications 2024-02-01
Subjects:
glibc heap
information extraction
heap attack detection
rekall framework
Online Access:https://hlgxb.hrbust.edu.cn/#/digest?ArticleID=2299

Internet

https://hlgxb.hrbust.edu.cn/#/digest?ArticleID=2299

Similar Items