- Tested on Ubuntu 16.04 64bit
$ ./setup.sh
$ ./install_dependencies.sh
$ ./build.sh
$ ./setup.sh
$ docker build -t archeap .
$ docker run -it archeap /bin/bash
Please check our artifact.
- Overlapping chunks with double free in mimalloc
- Overlapping chunks with double free in DieHarder
- Overlapping chunks with negative size allocation in mesh
- Arbitrary chunks with overflow in ptmalloc2
- Several other techniques
- Insu Yun (insu@gatech.edu)
- Dhaval Kapil (me@dhavalkapil.com)
- Taesoo Kim (taesoo@gatech.edu)
@inproceedings{yun:archeap,
title = {{Automatic Techniques to Systematically Discover New Heap Exploitation Primitives}},
author = {Insu Yun and Dhaval Kapil and Taesoo Kim},
booktitle = {Proceedings of the 29th USENIX Security Symposium (Security)},
month = aug,
year = 2020,
}