= Shadow stack
{wiki=Shadow_stack}
A shadow stack is a security feature implemented in computer systems to protect against control-flow vulnerabilities, particularly those that exploit return addresses, such as buffer overflow attacks. The concept behind a shadow stack is to maintain a separate and secure copy of the return addresses for function calls in a memory area that is not directly accessible or modifiable by the application code. \#\#\# How It Works: 1. **Separate Stack**: The shadow stack is a separate stack used solely for storing return addresses.
Back to article page
