Skip to content

Leveraging CVEs as North Stars in vulnerability discovery and comprehension.

License

CC-BY-4.0, Unknown licenses found

Licenses found

CC-BY-4.0
LICENSE
Unknown
LICENSE.just-the-docs
Notifications You must be signed in to change notification settings

cve-north-stars/cve-north-stars.github.io

Repository files navigation

CVE North Stars

Leveraging CVEs as North Stars in vulnerability discovery and comprehension.

pexels-faik-akmd-1025469

About

CVE North Stars introduces a method to kickstart vulnerability research by taking advantage of the CVE information freely available (ie public blog posts, Github POCs, CVE Mitre database, etc). A CVE provides a compass of sorts that orients and guides a researcher towards a deeper understanding of the patched vulnerability and its vulnerability class. The idea is to treat CVEs as North Stars in vulnerability discovery and comprehension.

This short tutorial walks through practical CVE analysis, binary patch diffing, and root cause analysis. While these techniques for vulnerability research aren't new, this tutorial offers concise collection of practical examples and ideas for leveraging CVEs to get started in your vulnerability research.

Key Objectives

Versions

Originally hosted in github (v1.0.0), with recent upgrade to a Just-the-docs Jekyll template v2.0.0

Table of Contents


Photo by Faik Akmd from Pexels