Session Title: TECa-4 Evaluation of Publicly Available Exploit Code
Time/Date: Monday (June 14, 2004) 4:00pm - 5:15pm
Track: Digging Deeper Into Technology
Format: Session
Level: Technical
Description: Information security practitioners rely on public or privately disclosed information about vulnerabilities to assess risk. While most attackers rely on publicly available tools to deliver attacks. To better assess risk it is necessary to understand the distinguishing features of those tools. A realistic assessment should include information about the quantity and quality of tools available to the attacker. Additionally, issues like reliability, effectiveness, market outreach, stealthness and novelty in techniques must also be addressed.
- This presentation will address the results of a research work on the quality of publicly available exploit code.
- This presentation will cover currently available exploit code for vulnerabilities in Windows, Linux and Solaris OS
- We will describe other -not commonly used- attack vectors and demonstrate how they open new dimensions for
planning attacks and developing new penetration-testing tools and techniques.
- We will propose guidelines to improve the risk assessment and mitigation process using the results of our evaluation.
- Attendees will learn how exploits used by attackers based on a set of metrics specifically defined to evaluate software
quality.
Source: NetSec 2004
https://www.cmpevents.com/CSins04/a.asp?option=G&a