Why I Write My Own Security Tooling and Why You Should Too

Explore the benefits of creating custom security tools for research projects in this insightful conference talk from Nullcon Berlin 2023. Discover how developing domain-specific tooling can enhance understanding of investigated technologies, leading to more effective vulnerability detection. Learn from James Forshaw's experiences in Windows research, examining examples of his custom-built tools and the unique bugs they helped uncover. Gain valuable insights into how crafting personalized tools can elevate your skills as a security researcher and potentially lead to more significant discoveries in the field.

Intro
Who is James
Tools
Automation
In iterative cycle
Manual analysis
Exercise in API
Sharing
Demos
Summary
Questions