infoSecond Blog

It is no disloyalty to be a realist. We are mortals. One hopes for the best. One perseveres. One reevaluates constantly. One is an @sshole if one doesn't. - E. B. Farnum

Older news, but a good example

I get asked all the time about what security researches do. This is a blog page from f-secure from December of last year that talks about, among other things, the IE WMF exploit that has been widely taken advantage of over the past several months. The page does a good job of describing a variety of combinations of things a researcher must look for and notice about an exploit. These examples are not low level assembly type things but stuff security pros at any level should be prepared to understand.

Take a look ...
F-Secure: News From the Lab

---

Monday, September 25, 2006
Posted by SD 

Click Me Links

• infoSecond Home


• Ye Old Dead Blog


• Ad free Amazon Book Search

Recent Posts

• New IE Exploit


• Preconfigured Snort VM


• FIRST: Best Practices Whitepapers


• Having fun with those stealing your unsecured band...


• Hey! Would it be OK with you if I upload this pict...


• Off the beaten path: Zero Knock's DEN


• VMWare virtual appliances


• Security Podcast List


• Creative Commons Record Label


• Cell phone spyware

Archives

• April 2005
• May 2005
• June 2005
• July 2005
• August 2005
• September 2005
• October 2005
• November 2005
• December 2005
• January 2006
• February 2006
• March 2006
• April 2006
• May 2006
• August 2006
• September 2006
• October 2006
• November 2006
• January 2007
• March 2007
• April 2007