On the Quality of Exploit Code: An Evaluation of Publicly Available Exploit Code

On the Quality of Exploit Code: An Evaluation of Publicly Available Exploit Code

Thursday, February 17, 2005
Iván Arce
RSA Security Conference, 2005

Presentation at the RSA Security 2005 conference describing a framework to model and assess quality of exploit code. The model is used embedded in the automated regression testing harness used by Core's testing team to assess the quality of thousands of commercial-grade exploits included in Core Impact.