On the Quality of Exploit Code: An Evaluation of Publicly Available Exploit Code

On the Quality of Exploit Code: An Evaluation of Publicly Available Exploit Code

Presentation at the RSA Security 2005 conference describing a framework to model and assess quality of exploit code. The model is used embedded in the automated regression testing harness used by Core's testing team to assess the quality of thousands of commercial-grade exploits included in Core Impact.

Thursday, February 17, 2005