Emproof Nyx Malicious Hacking Protection is a software-based exploit mitigation solution targeting embedded systems written in memory-unsafe languages such as C and C++. It addresses vulnerabilities that arise from memory corruption bugs — including those missed by static analysis tools, dynamic analysis tools, and unit tests — by applying exploit mitigations directly to compiled firmware binaries. The solution operates post-compilation, adding exploit defences to firmware without requiring source code changes. It targets embedded systems built on bare-metal or real-time operating system (RTOS) environments across a range of microcontroller architectures, including those where built-in compiler mitigations (e.g., GCC Stack Protector) are absent or misconfigured. Key characteristics: - Targets memory safety vulnerabilities (e.g., buffer overflows, stack corruption) common in C/C++ codebases. - Adds exploit mitigations to architectures and toolchains that lack native support, including open-source GCC and Clang-based embedded toolchains. - Uses safe initialisation of stack canaries by default, unlike default GCC Stack Protector configurations which use fixed values. - Applies intelligent, selective protection to reduce performance and memory overhead. - Designed for sectors including automotive, medical, aviation, industrial IoT, and semiconductors. - Complements but does not replace static analysis, dynamic analysis, or fuzzing — it provides a runtime defence layer when bugs are not caught during development.