Topic: security engineers

Microsoft releases automated root cause analysis tool

Microsoft is giving engineers and developers a way to combat memory corruption issues with the release of VulnScan. VulnScan was created by the Microsoft Security Response Center after receiving a number reports about potential product vulnerabilities. “In practice, a significant proportion of these reports turn out to be memory corruption issues.  In order to root … continue reading

Netflix open-sources XSS detection framework

Netflix wants to put cross-site scripting (XSS) to sleep with the introduction of its latest open-source framework: Sleepy Puppy. Sleepy Puppy is a XSS payload-management framework designed to help security engineers capture, manage and track XSS propagation. “We wanted a more comprehensive XSS testing framework to simplify XSS propagation and identification, and allow us to … continue reading Protection Status