AntiJOP is an anti-malware solution that recodes assembly language to remove JOP attack gadgets. JOP attacks on x86 often hinge on the availability of 0xFF bytes in preexisting code, which can be co-opted to serve as register-indirect call instructions. AntiJOP removes instances of 0xFF bytes that may exist, for example, in immediate values, MOD/RM bytes, etc.
|Tags||anti-virus Antivirus malware Security|
|Operating Systems||Linux Mac OS X|
Release Notes: Still in alpha, 0.4 implements a fair amount of gadget removal.