This is a good post from Microsoft’s Threat Research & Response Blog (on the Microsoft Malware Protection Center site), hinting at their technology to speed the analysis of vulnerabilities. Its a toolset called Paladin. From the blog post:
The motivation behind this work is to automate the otherwise laborious process of analyzing exploits, indentifying malicious input bytes quickly, identification of how shell code is executed and, basically, to narrow the search space for further manual analysis. The ability to respond quickly to an emerging threat event is critical in our space. It is with all of this in mind that we have created a toolset we refer to as Paladin which helps support rapid and scalable vulnerability analysis.
Source: Threat Research & Response Blog
This is research only at this point, although it is making its way into the next beta version of the Forefront Threat Management Gateway product.
A timely response to threats is exactly what’s needed (see our last post), and this technology sounds like a step in the right direction.
(via One Microsoft Way)