Supervisor Mode Execution Prevention Explained #shorts
About this talk
Supervisor Mode Execution Prevention (SMEP) helps block stealthy code execution in user space. Prevents unauthorized memory access, similar to DEP, but can be bypassed with ROP. #Bsidesfrankfurt #Bsides #Bsidesfra #Juansacco
Show transcript [en]
We also have supervisor mode execution prevention. It's a security feature that has prevent detection execution of user space as is similar to dep uh so prevents execution and can be bypassed uh using rope z for hypervisor protected core integrity and then smap that's basically access prevention that prevents read write. So we have SMEP and SMAP.
Related talks
0:38Microsoft Security: Safe PC or Password Risk? #shorts
BSides Frankfurt
0:41IP Geolocation Inaccuracy: Understanding Network Routing #shorts
BSides Frankfurt
0:18Vibe Coding Explained: Simple Rules for Secure Programs #shorts
BSides Frankfurt
0:22Microsoft Shared Folder Error 1272: Security Policy Explained #shorts
BSides Frankfurt
0:25Impossible Game Bot: The Ultimate Training Data Challenge #shorts
BSides Frankfurt
1:22Microsoft Share Error: Security Policies & Honeypot Gold! #shorts
BSides Frankfurt