Now, main topic, Exploit Development.
BACKGROUND: If you have ever run a vulnerability scan on an application or network, you’ll notice that some scanners will also accompany the vulnerability with a CVE number. If you go over to CVE Details or some other CVE database site you’ll notice that they will give some details as to the nature of the vulnerability (Probably due to vendor change logs or whatever) and whether or not there is a public exploit or 'sploit module available. More often then not, you’ll find that nothing is available, even if it does have a CVSS score of 10.0 (Which is the worst it could be).
QUESTION: Tools exist that will scan an applications binaries, however, any of those worth their salt cost several thousands of dollars PER binary scanned (Or so i’ve been told). My question is, are there any freeware methods of doing the same thing without sitting down and trudging through the source code? Furthermore, what would be the easiest way to acquire an applications binaries?