×

Hooking nonexported functions by the offset of the function

  • US 8,484,753 B2
  • Filed: 12/02/2009
  • Issued: 07/09/2013
  • Est. Priority Date: 12/02/2009
  • Status: Active Grant
First Claim
Patent Images

1. A computer-implemented method, comprising:

  • identifying that a binary executable in a host computer memory includes a nonexported function with a particular vulnerability, the binary executable being allocated memory space in the host computer memory, the memory space addressed at a first memory location;

    accessing offset data associated with the binary executable, the offset data identifying an offset that defines a second memory location relative to the first memory location, the second memory location different from the first memory location, the second memory location storing the nonexported function within the binary executable; and

    modifying instructions at the second memory location to route a code path to a host protection processor.

View all claims
  • 10 Assignments
Timeline View
Assignment View
    ×
    ×