PathArmor

Project Description

PathArmor (published at CCS’15) is the first practical Context-sensitive Control-Flow Integrity (CFI) platform. Related work demonstrates that prior CFI implementations, which track control transfers individually, still leave sufficient leeway for powerful ROP attacks. Context-sensitive CFI improves security by validating control transfers to sensitive program states within the context of preceding edges, greatly reducing the number of exploitable program paths available to an attacker.

Code

PathArmor is available open-source at https://github.com/vusec/patharmor.

git clone https://github.com/vusec/patharmor

Demo

Papers