Literally every single vulnerability in Windows, Linux and OSX can be exploited using a payload or shell code

Literally every single vulnerability in Windows, Linux and OSX can be exploited using a payload or shell code.

Why doesn't anybody make an operating system that blocks shell codes and payloads? Isn't that gonna make it a lot more secure than the present day operating systems?

Other urls found in this thread:

unikernel.org/blog/2017/unikernels-are-secure
os.kaspersky.com/
twitter.com/SFWRedditImages

I'd just like to interject for moment. What you're refering to as Linux, is in fact, GNU/Linux, or as I've recently taken to calling it, GNU plus Linux. Linux is not an operating system unto itself, but rather another free component of a fully functioning GNU system made useful by the GNU corelibs, shell utilities and vital system components comprising a full OS as defined by POSIX.

Many computer users run a modified version of the GNU system every day, without realizing it. Through a peculiar turn of events, the version of GNU which is widely used today is often called Linux, and many of its users are not aware that it is basically the GNU system, developed by the GNU Project.

There really is a Linux, and these people are using it, but it is just a part of the system they use. Linux is the kernel: the program in the system that allocates the machine's resources to the other programs that you run. The kernel is an essential part of an operating system, but useless by itself; it can only function in the context of a complete operating system. Linux is normally used in combination with the GNU operating system: the whole system is basically GNU with Linux added, or GNU/Linux. All the so-called Linux distributions are really distributions of GNU/Linux!

Lol epic joke friendo!!!

That would break RPC

you should join our startup

How does it feel to be retarded?

I'm terribly sorry for interjecting another moment, but what I just told you is GNU/Linux is, in fact, just Linux, or as I've just now taken to calling it, Just Linux. Linux apparently does happen to be a whole operating system unto itself and comprises a full OS as defined by POSIX.

Most computer users who run the entire Linux operating system every day already realize it. Through a peculiar turn of events, I was misled into calling the system "GNU/Linux", and until now, I was unaware that it is basically the Linux system, developed by the Linux project.

There really isn't a GNU/Linux, and I really wasn't using it; it is an extraneous misrepresentation of the system that's being used. Linux is the operating system: the entire system made useful by its included corelibs, shell utilities, and other vital system components. The kernel is already an integral part of the Linux operating system, never confined useless by itself; it functions coherently within the context of the complete Linux operating system. Linux is never used in combination with GNU accessories: the whole system is basically Linux without any GNU added, or Just Linux. All the so-called "GNU/Linux" distributions are really distributions of Linux.

>why should my operating system be able to do things?

>no shell
>can't interact with OS
Wow OP you are a certified fuckin genius

If there are no lines of code, there are no bugs.

The only way to prevent malicious software from running is limiting the os to only run signed binaries. A standard to approve signing of software should be made, a consortium should maintain the standard and a company should be the officially chosen to do audits on software products code to sign the software binary for release and release the software on behalf of the owner (to prevent the binary from being changed).

Take into account not being able to run non signed software would prevent any individual from sharing its own binary with anybody without first paying for the expensive signature.

shell code is just instructions injected into memory space of an already running program which has executable memory or which permits to forge a program from its already contained instructions.

payload is the term for program executed after a program before that run.

For example a java program, was received through a bot on facebook talking to you from your friends account, saying something about photos, if you pressed that url you received a java applet which could auto run, this program contained a lot of float sums, multiplications, divisions and powers decoding urls resulting in dropbox addresses and then downloading a .exe program (the payload).

Web pages can count as malicious depending on your interpretation.

>signing system gets cracked or keys get stolen
Wow, you are pwned

singing system should not be shared by the signing company employees. Yes, if we kill all humans we could grant security.

I'd just like to interject for a moment. What you're referring to as Linux, is in fact, GNU/Linux, or as I've recently taken to calling it, GNU plus Linux. Linux is not an operating system unto itself, but rather another free component of a fully functioning GNU system made useful by the GNU corelibs, shell utilities and vital system components comprising a full OS as defined by POSIX.

Many computer users run a modified version of the GNU system every day, without realizing it. Through a peculiar turn of events, the version of GNU which is widely used today is often called "Linux", and many of its users are not aware that it is basically the GNU system, developed by the GNU Project.

There really is a Linux, and these people are using it, but it is just a part of the system they use. Linux is the kernel: the program in the system that allocates the machine's resources to the other programs that you run. The kernel is an essential part of an operating system, but useless by itself; it can only function in the context of a complete operating system. Linux is normally used in combination with the GNU operating system: the whole system is basically GNU with Linux added, or GNU/Linux. All the so-called "Linux" distributions are really distributions of GNU/Linux.

>Yes, if we kill all humans we could grant security.
I'm on board

>Why doesn't anybody make an operating system that blocks shell codes and payloads?
You mean, an operating system that doesn't run anything?
This almost feels like a segue into a Master Foo story.

I just leave my computer unplugged so i know it doesnt get a virus.

So i just browse the internet on my TV.

It took me 12 inutes to type this with the remote..

The chosen one, Terry Davis made one. It's called TempleOS, guarded by God and angels. And the lack of users and networking capability.

It's a hardware level problem. Operations and data are treated the same in today's computer architectures.

>The only way to prevent malicious software from running is limiting the os to only run signed binaries
Virus scanners already do this. They have huge blacklists and whitelists of files that are known tobe good and bad. This really only matters if you're too stupid not to download malicious binaries.

For people who have common sense, we're mainly worried about ROP, heap spraying and other errors that can be run within a whitelisted binary. I don't know of a language that is immune to these types of bugs. Java has memory safety, but the JVM has tons of CVEs.

What legitimate use is there for payloads?

>He doesn't know the difference between a shell and shellcode.

>every house has a window or door that can be broken into
>why doesn't everybody make a house with no windows/doors?
>t. pajeet

from my understanding, using shell to execute viruses is just a conviniant way of doing it.even if you remove it th hcker wouldn't even notice!

pajeet pls go

Signed binaries protect you at load time. After that you are fucked. All it takes is an exploitable buffer overflow in your precious signed binary and you're just as owned as the next guy.

Stuff like ASLR and SafeSEH helps.

why pajeet?

Do you understand what a payload is?

>You mean, an operating system that doesn't run anything?
unikernel.org/blog/2017/unikernels-are-secure

OP why don't you just buy a PS4 or Xbone and use that as your PC? Sure you can't install any software on it that isn't from the P$ $tore or M$ $tore, but that's what makes it 100% unhackable and virus-proof.

templeOS, RedoxOS, Dash.

os.kaspersky.com/

>it's a "I'm going to kill humanity to save humanity" episodes villain

You want harvard architecture? TOO BAD! Only Neumann for you!

please shut up and read tanenbaum