grSecurity and PaX
A deep dive into memory protection mechanisms implemented by the grsecurity team in the Linux Kernel. The lecture covers the following mechanisms:
* Protection from arbitrary read/write of user buffers from/to the kernel (PAX_USERCOPY)
* Sanitation of kernel buffers within the SLAB allocator (PAX_MEMORY_SANITIZE)
* ASLR Implementation of the grSecurity team (PAX_ASLR, PAX_RANDSTACK).
You can also read the article that was published in DigitalWhisper here (Hebrew).