Results 1 to 5 of 5

Thread: Where do sites like Cert.org get their exploit information?

  1. #1
    Junior Member
    Join Date
    Aug 2006
    Posts
    16

    Where do sites like Cert.org get their exploit information?

    I look at www.cert.org just about every day to see what new vulnerabilites are up and about. They seem to update their site about new vulnerabilites fairly quickly (at about the same speed as MS does, maybe a bit sooner) and verify their statements not only via other sources but by claiming that exploit code is publicly available.

    Out of curiosity and because I am studying to become a network security professional, I was curious as to how sites such cert discover these exploits and exploit code that is publicly available. Do they have dedicated people focusing on certain aspects of security in the OS constantly hammering away until they find a problem? I'm sure paroozing around for hacker sites is blah and risky, opening yourself up to exploit.

    Any thoughts? Maybe I just lack common sense on this topic, but its fascinating I think.

    Thanks
    toxic.influx
    QFT!!

    22 49 6e 73 61 6e 69 74 79 20 69 73 20 6f 66 74 65 6e 20 74 68 65 20 6c 6f 67 69 63 20 6f 66 20 61 6e 20 61 63 63 75 72 61 74 65 20 6d 69 6e 64 20 6f 76 65 72 2d 74 61 78 65 64 2e 22 20 20 2d 2d 4f 6c 69 76 65 72 20 57 65 6e 64 65 6c 6c 20 48 6f 6c 6d 65 73 0d 0a 0d 0a

  2. #2
    Senior Member
    Join Date
    Oct 2001
    Posts
    748

    Re: Where do sites like Cert.org get their exploit information?

    Originally posted here by toxic.influx
    I look at www.cert.org just about every day to see what new vulnerabilites are up and about. They seem to update their site about new vulnerabilites fairly quickly (at about the same speed as MS does, maybe a bit sooner) and verify their statements not only via other sources but by claiming that exploit code is publicly available.

    Out of curiosity and because I am studying to become a network security professional, I was curious as to how sites such cert discover these exploits and exploit code that is publicly available. Do they have dedicated people focusing on certain aspects of security in the OS constantly hammering away until they find a problem? I'm sure paroozing around for hacker sites is blah and risky, opening yourself up to exploit.

    Any thoughts? Maybe I just lack common sense on this topic, but its fascinating I think.

    Thanks
    toxic.influx
    While CERT does a lot of testing on their own and they have found some vulnerabilities most of their information comes from other internet sources, such as bugtraq, or vendor security lists. They will usually confirm the information in their own labs and provide more detail if they can. They also get a lot of information from people emailing vulnerability information directly to them.

    They do have people working there full time to look for information that is on the web, or to confirm what is being written on other sites. Their FAQ answers some of the questions. It is a federally funded organization at Carnegie Mellon.

    http://www.cert.org/faq/cert_faq.html

  3. #3
    Junior Member
    Join Date
    Aug 2006
    Posts
    16
    Thank you for the reply, it was exactly what I was inquiring about.


    Thanks
    toxic.influx
    QFT!!

    22 49 6e 73 61 6e 69 74 79 20 69 73 20 6f 66 74 65 6e 20 74 68 65 20 6c 6f 67 69 63 20 6f 66 20 61 6e 20 61 63 63 75 72 61 74 65 20 6d 69 6e 64 20 6f 76 65 72 2d 74 61 78 65 64 2e 22 20 20 2d 2d 4f 6c 69 76 65 72 20 57 65 6e 64 65 6c 6c 20 48 6f 6c 6d 65 73 0d 0a 0d 0a

  4. #4
    They do have people working there full time to look for information that is on the web, or to confirm what is being written on other sites. Their FAQ answers some of the questions. It is a federally funded organization at Carnegie Mellon.
    Yea peeps that do nothing all day but research exploits and security holes

    .....kinda like AO peeps eh?

  5. #5
    Senior Member nihil's Avatar
    Join Date
    Jul 2003
    Location
    United Kingdom: Bridlington
    Posts
    17,188
    .....kinda like AO peeps eh?
    No, not at all. I think that very few of us are involved in that level of detail. We are more the "grunts in the front line" and need to be aware of what is going on, but don't have time to individually reinvent wheels.

    Competent analyses by trustworthy sources are invaluable. CERT is one of those

    Me, I like to as well

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •