-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hey Steve,
> Are there any tools out there that try to measure attack surface? Has > anybody had any experience in trying to apply it? SecurityInnovation's HoloDeck has an attack surface module, but unfortunately it is just a fancy wrapper for a Win32 strace() :) I am currently working on a research paper for my GCIH Gold that is about measuring code-coverage of an attack surface. For example being able to intelligently measure whether that magic packet you sent into a process _really_ covered 100 basic blocks, or were 20 of them a threading routine completely outside of the main surface (packet parsing) area. It is a tough thing to just measure, however some researchers at Carnegie Mellon have done some interesting work: http://www.cs.cmu.edu/~pratyus/qop.pdf And their mainpage is here: http://www.cs.cmu.edu/~pratyus/as.html Anyways I would be interested to hear some of the gurus respond back on this topic, as its a very relevant metric for QA and infosec professionals. JS -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFHCoebKEj7ZJktQNsRArTgAKCWf96Tp8NXF7GuTiQN1BzyVlTEMwCfXpj9 ++VxKBeI8WcXP5tLWUYQdU4= =WoVW -----END PGP SIGNATURE----- _______________________________________________ Secure Coding mailing list (SC-L) SC-L@securecoding.org List information, subscriptions, etc - http://krvw.com/mailman/listinfo/sc-l List charter available at - http://www.securecoding.org/list/charter.php SC-L is hosted and moderated by KRvW Associates, LLC (http://www.KRvW.com) as a free, non-commercial service to the software security community. _______________________________________________
