Application build-time techniquesHardened vs Lockedlocked will have most non-essential and non-standard features removedLanguage specificC/C++Linux featuresPIEcompilation flagsASLRstack protectionFortified functions