The Microsoft Security Engineering Center ('MSEC') has released an open source tool called the !exploitable Security Analyzer (pronounced 'bang exploitable') to detect and analyze security and crashes within software projects while they are in development. Designed around the familiar People-Processes-Technology frame of reference, !exploitable has been designed as a Windows Debugger (Windbg) extension and works on a rule-based engine to parse out and categorize crash dumps for further investigation.
Slides are also available for those interested in delving further into the gory details.
Currently rated 2.0 by 1 people
Tags: security
programming | Software
Powered by BlogEngine.NET 1.4.5.0 | Theme by Mads Kristensen Page loaded in 0.0156004 seconds.
The opinions reflected on this blog are entirely my own, and do not reflect the thoughts and/or opinions of my employer in any way.
Subscribe