No cover

Why I Write My Own Security Tooling (Talk, 2023, BlueHat 2023)

Talk

Published Feb. 9, 2023 by BlueHat 2023.

View on Thinkst Citation

No rating (0 reviews)

It's easy to be impatient when doing security research, you want bugs now! But where to start? Is there source code to review? Do you have binaries to disassemble? James Forshaw suggests you should start by writing some domain specific tooling. There are many advantages to writing your own tooling for a research project. For example, it'll help you better understand the technologies you're investigating which in turn helps you find more interesting vulnerabilities.

In this talk, James discusses the many benefits of writing your own tooling even if it delays that first, amazing find. He’ll show examples of tools he’s written to aid in his Windows research career and take a peek at some bugs he wouldn't have found without them. Finally, James makes the case for why writing your own tools will make you a better researcher.

1 edition