Robert Hurlbut Blog

Thoughts on Software Security, Software Architecture, Software Development, and Agility

Finding web sites that exploit browser vulnerabilities

Tuesday, August 16, 2005 Comments

 ASP.NET  Security 
Share:   Share on LinkedIn    Share on Twitter    Share on Google+    Share on Facebook   

This is a very interesting article from Microsoft Research that describes a method they use(d) to find web sites that exploit browser vulnerabilities, including zero-day exploits. It is called "Automated Web Patrol with Strider HoneyMonkeys". This reminds me of the Windows Honeypots book I read, as the researchers are cleverly using multiple virtual machine images with various patch levels plus known exploit signatures and other methods to find the exploits.
Share:   Share on LinkedIn    Share on Twitter    Share on Google+    Share on Facebook