Tool Analyzes Your Crashes to Determine Security Exploits

!exploitable Crash Analyzer, a tool that helps you identify security holes in your software, has been released by the Microsoft Security Engineering Center. The release includes source code and binaries for both x86 and x64.

"!exploitable" is pronounced “bang exploitable”.

The program is a Windows Debugger extension that identifies crashes that occur during application development and testing and attempts to group them and highlight their security implications. The tool first creates hashes to determine the uniqueness of a crash and then assigns an exploitability rating to the crash: Exploitable, Probably Exploitable, Probably Not Exploitable, or Unknown.

Microsoft is releasing it to help developers write more secure code. You can download !exploitable from CodePlex.