Skip to content

Projects

These are some of the projects I created:

Rust Exploit Mitigations Project Group


The Rust Exploit Mitigations Project Group investigates past, present, and future exploit mitigations, including hardware -assisted or -provided exploit mitigations, and how they apply to Rust and the Rust compiler.

This Project Group aims to maintain and improve the existing, implement, and research new exploit mitigations for the Rust compiler, and allow the Rust community to better understand those exploit mitigations and how they apply to Rust and the Rust compiler.

rust-exploit-mitigations.md · View on GitHub · View on Rust Programming Language

LLVM CFI and cross-language LLVM CFI support for the Rust compiler


As the industry continues to explore Rust adoption, cross-language attacks in mixed-language binaries (also known as “mixed binaries”), and critically the absence of support for forward-edge control flow protection in the Rust compiler, are a major security concern when gradually migrating from C and C++ to Rust, and when C or C++ and Rust-compiled code share the same virtual address space.

This project aims to add LLVM CFI and cross-language LLVM CFI (and LLVM KCFI and cross-language LLVM KCFI) to the Rust compiler as part of our work in the Rust Exploit Mitigations Project Group.

rust-cfi-design-doc.md · View on GitHub

UNIX Assembly Components for Proof of Concept Codes


This project contains a set of assembly components for proof of concept codes (i.e., "shellcodes") for different operating systems and architectures. These components were carefully designed and implemented for maximum reliability, following strict coding standards and requirements, such as system call invocation standards, position-independent, register-independent and zero-free code. A special attention was put on code length when designing and implementing them, resulting in the most reliable and shortest codes for such purpose available today.

unixasm-1.4.0.tar.gz · View on GitHub