Ghetto VR: steps involved in vulnerability research

No ratings

Presented at InfoSec SouthWest 2013 by

Mirek Bartik

Everybody has heard of a zero day exploit, but an extremely small amount of people in the security industry have actually found them. This presentation hopes to show future vulnerability researchers the steps necessary to find zero day exploits with simple examples in python that can be the basis of their future tool suites. Equally it should show software developers that they need to have an equally rigorous testing plan so that their software isn.t the low hanging fruit hackers can target. This presentation when possible will point the audience to useful resources. All examples are provided in python. During each step of the vulnerability research cycle helpful tips are provided.