Doing patch diffing for finding fixed vulnerabilities is so common that most people believe that bindiffing is patch diffing. As so, continuously improving this would also improve the life of security researchers. Some very basic improvements:
Detection of signed to unsigned patches (using the assembly).
Add more simplistic pattern matching techniques.
An idea from some anonymous nice person: write a script that detects most/all CVEs from some Microsoft Tuesday patch.
Doing patch diffing for finding fixed vulnerabilities is so common that most people believe that bindiffing is patch diffing. As so, continuously improving this would also improve the life of security researchers. Some very basic improvements:
An idea from some anonymous nice person: write a script that detects most/all CVEs from some Microsoft Tuesday patch.