Post Fri Aug 14, 2009 10:07 am

!exploitable Crash Analyzer

Found this interesting and thought I'd share. At the link below, there is a 10.5 minute video.


!exploitable (pronounced "bang exploitable") Crash Analyzer is a plugin for the Windows Debugger that parses your crash logs and gives you two important pieces of information. First, it will collate all of your crashes and determine exactly how many there actually are. So for example, out of 60 crash reports, there may only be 2 or 3 actual problems.

The second thing it does is look at the type of crash and try to determine if the error is something that could be exploited by a malicious hacker. This means that more junior employees can work these bug issues without taking the time of more senior examiners. Jason Shirk from the Security Core team joined us to take a look at !exploitable. To download the app, go to: http://www.codeplex.com/msecdbg.



For more info:
http://channel9.msdn.com/posts/PDCNews/ ... -Analyzer/

Don
CISSP, MCSE, CSTA, Security+ SME