A shadow stack is a security feature implemented in computer systems to protect against control-flow vulnerabilities, particularly those that exploit return addresses, such as buffer overflow attacks. The concept behind a shadow stack is to maintain a separate and secure copy of the return addresses for function calls in a memory area that is not directly accessible or modifiable by the application code. ### How It Works: 1. **Separate Stack**: The shadow stack is a separate stack used solely for storing return addresses.
New to topics? Read the docs here!