The Web never forgets: Persistent tracking mechanisms in the wild
https://securehomes.esat.kuleuven.be/~gacar/persistent/index.html
Paper
Stop Fixing All The Things – Our BSidesLV Talk | The Risk I/O Blog
http://blog.risk.io/2013/08/stop-fixing-all-the-things-bsideslv/ Recent parer shows that it make sense to focus only on vulns that have ready exploits in metasploit and exploitdb
Stop Fixing All The Things – Our BSidesLV Talk | The Risk I/O Blog
http://blog.risk.io/2013/08/stop-fixing-all-the-things-bsideslv/ Recent parer shows that it make sense to focus only on vulns that have ready exploits in metasploit and exploitdb
The Legitimate Vulnerability Market - Inside the Secretive World of 0-day Exploit Sales [.pdf]
http://weis2007.econinfosec.org/papers/29.pdf Old (2007 ) paper by Charlie Miller about trading of 0-day exploits
The Legitimate Vulnerability Market - Inside the Secretive World of 0-day Exploit Sales [.pdf]
http://weis2007.econinfosec.org/papers/29.pdf Old (2007 ) paper by Charlie Miller about trading of 0-day exploits
Language-theoretic Security
http://www.cs.dartmouth.edu/~sergey/langsec/ The Language-theoretic approach (LANGSEC) regards the Internet insecurity epidemic as a consequence of ad hoc programming of input handling at all layers of network stacks, and in other kinds of software stacks. LANGSEC posits that the only path to trustworthy software that takes untrusted inputs is treating all valid or expected inputs as a formal language, and the respective input-handling routines as a recognizer for that language. The recognition must be feasible, and the recognizer must match the language in required computation power. ...
Language-theoretic Security
http://www.cs.dartmouth.edu/~sergey/langsec/ The Language-theoretic approach (LANGSEC) regards the Internet insecurity epidemic as a consequence of ad hoc programming of input handling at all layers of network stacks, and in other kinds of software stacks. LANGSEC posits that the only path to trustworthy software that takes untrusted inputs is treating all valid or expected inputs as a formal language, and the respective input-handling routines as a recognizer for that language. The recognition must be feasible, and the recognizer must match the language in required computation power. ...
Europa: Efficient User Mode Packet Forwarding in Network Virtualization - Liao.pdf
http://static.usenix.org/events/inmwren10/tech/full_papers/Liao.pdf Paper that describes fast user-mode routing ( ~90% speed of kernel mode) in Linux
Europa: Efficient User Mode Packet Forwarding in Network Virtualization - Liao.pdf
http://static.usenix.org/events/inmwren10/tech/full_papers/Liao.pdf Paper that describes fast user-mode routing ( ~90% speed of kernel mode) in Linux
Europa: Efficient User Mode Packet Forwarding in Network Virtualization - Liao.pdf
http://static.usenix.org/events/inmwren10/tech/full_papers/Liao.pdf Paper that describes fast user-mode routing ( ~90% speed of kernel mode) in Linux