Adriel Desautels at BDF 2015 - The Secretive Zero Day Exploit Market

Explore the secretive world of zero-day exploits in this 35-minute conference talk by Adriel Desautels at BDF 2015. Gain insights into the misunderstood nature of zero-day exploits, their dual-purpose functionality, and their creation process. Learn about the valuable applications of these exploits in intelligence, law enforcement, and corporate defense, including real-world examples like the FBI's use in dismantling a child pornography ring and the Stuxnet attack on Iran's nuclear program. Delve into the realities of the zero-day exploit market, its necessity, and the speaker's stance on regulation. Discover Desautels' background as a former zero-day exploit broker and his current role as CEO of Netragard, a company specializing in realistic threat and protective penetration testing services. Examine topics such as the definition of zero-day exploits, comparisons between laptops and Stuxnet, the Hacking Team controversy, regulations, benefits of open research, legal issues, levels of service, software vulnerabilities, and frameworks in this comprehensive exploration of the zero-day exploit landscape.

Intro
What is a zero day
Laptops vs Stuxnet
Hacking Team
Zero Days
Regulations
Benefits of open research
Legal issues
Levels of service
Software vulnerabilities
Framework