Slashdot Mirror

← Back to Stories (view on slashdot.org)

Microsoft Unveils Open Source Exploit Finder

Posted by Soulskill on from the solutions-looking-for-problems dept.

Houston 2600 sends this excerpt from the Register about an open-source security assessment tool Microsoft presented at CanSecWest: "Microsoft on Friday released an open-source program designed to streamline the labor-intensive process of identifying security vulnerabilities in software while it's still under development. As its name suggests, !exploitable Crash Analyzer (pronounced 'bang exploitable crash analyzer') combs through bugs that cause a program to seize up, and assesses the likelihood of them being exploited by attackers. Dan Kaminsky, a well-known security expert who also provides consulting services to Microsoft, hailed the release a 'game changer' because it provides a reliable way for developers to sort through thousands of bugs to identify the several dozen that pose the greatest risk."

9 of 310 comments (clear)

  1. Here's a better idea by thetoadwarrior · · Score: -1, Troll

    Fix all the bugs and then you're sure you've fixed all the big bugs.

  2. Re:pronounced 'bang exploitable crash analyzer' by Reality+Master+201 · · Score: -1, Troll

    That's what she said. And by she, I mean your mom.

  3. Re:This is M$ double speak for "Finding Free Sofwa by Anonymous Coward · · Score: -1, Troll

    Hi twitter.

  4. Eat your own dogfood? by v1 · · Score: 0, Troll

    Microsoft Unveils Open Source Exploit Finder

    Kind of makes one wonder why they don't oh I don't know... say... Run it on their Windows source???

    --
    I work for the Department of Redundancy Department.
  5. Re:Open Source?! Wait for it... by Anonymous Coward · · Score: -1, Troll

    Return to Digg, you asshole.

  6. Re:This is M$ double speak for "Finding Free Sofwa by jav1231 · · Score: 0, Troll

    Yeah, because we all know how benevolent Micro$oft is, right?

  7. Re:Mod down please by Blakey+Rat · · Score: 0, Troll

    He's not confused, he's just such an empty brainwashed open source shill he doesn't even bother to stop and think even a fraction of a second before writing out long articles full of vitriol. He's the opposite of intelligent conversation.

    --
    Comment of the year
  8. Re:This is M$ double speak for "Finding Free Sofwa by trickyD1ck · · Score: 0, Troll

    ... To a passionate free software advocate, M$ is a concise, efficient and - IMO - accurate moniker.

    then isn't "freetard" more concise, efficient and accurate than "free software advocate"?

  9. Microsoft's closed-source exploit finder by MobyTurbo · · Score: 0, Troll

    Microsoft has long had a closed-source exploit finder that this article doesn't mention: "Microsoft Windows".