Issue No. 05 - September-October (2004 vol. 2)
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/MSP.2004.87
Iv? Arce , Core Security Technologies
Attackers carry out many network security compromises using exploitation programs, or exploits, which take advantage of bugs in software running on vulnerable systems. These programs are often the only remaining evidence of a security compromise; by analyzing them, we can assess the incident's impact and the attackers' skills and intent. We can build an entire taxonomy of attacks by understanding these programs' technical capabilities and their connection to those who develop and use them.
attack, taxonomy of attacks, exploitation program, exploits
I. Arce, "The Shellcode Generation," in IEEE Security & Privacy, vol. 2, no. , pp. 72-76, 2004.