Title
On the Quality of Exploit Code: An Evaluation of Publicly Available Exploit Code
Authors
Iván Arce
In
RSA Security Conference, 2005
Date published
2005-02-17
Keywords
exploits quality QA penetration testing RSA security conference hackers threats

Abstract

Presentation at the RSA Security 2005 conference describing a framework to model and assess quality of exploit code. The model is used embedded in the automated regression testing harness used by Core's testing team to assess the quality of thousands of commercial-grade exploits included in CORE IMPACT.

Attachments

HT2-301-IvanArce-v1.1.pdf - Presentation slides (PDF)