Analyzing Browser Based Vulnerability Exploitation Incidents

I’ve written up a paper that describes some useful tools/techniques for deconstructing web based exploits: Analyzing Browser Based Vulnerability Exploitation Incidents The paper started as a blog entry and it remains a blog entry at its core.  But since really huge blog entries are uncool (so I hear), and for other logistical reasons, the paper itself is…


Hello!

Hi!  I’m David Ross and this is my work blog.  As an engineer on the Microsoft Secure Windows Initiative at Microsoft I specialize in browser and web application security.