The following are the terms and definitions of different cyber defense mechanisms and technologies:
- Address Space Layout Randomization: Also known as ASLR, this defense mechanism protects memory and thwarts buffer overflow attacks by randomizing where an executable is loaded in memory. A buffer overflow injecting malware can not predict where it will be loaded in memory, thus manipulating the instruction pointer will becomes extremely challenging. Protects against return-to-libc attacks.
- Black hole (sinkhole): After detecting a DDoS attack, routes are established from the affected DNS server or IP address to force rogue data to a black hole or a non-existent endpoint. Sinkholes perform further analysis to filter out good data. ...