Explore the decade-long journey of Google's Project Zero in this 40-minute Black Hat conference talk. Delve into the mission and inner workings of the security research team dedicated to making zero-day exploits more challenging. Trace the evolution of zero-day attacks and vulnerability research since 2014, examining the team's significant bug discoveries and their impact on exploitable vulnerabilities. Analyze the role of mitigations in thwarting exploitation attempts and how increased transparency has driven the development of effective defensive measures. Investigate the complexities surrounding patching, vulnerability disclosure, and maintaining transparency in cybersecurity. Gain insights into Project Zero's future direction, including valuable lessons learned, persistent challenges, and collaborative strategies for preventing zero-day exploits. Join Natalie Silvanovich, Team Lead and Security Engineer at Google, for an in-depth look at the past, present, and future of this influential cybersecurity initiative.
Overview
Syllabus
Project Zero: Ten Years of 'Make 0-Day Hard'
Taught by
Black Hat