Tuesday, February 28, 2012

Crowd Sourced Pentesting

Google is hosting its Pwn2Own competition again and offering 1 million dollars in total prizes for those that can remotely commandeer a full patched Chrome browser running on Windows 7. Finding a "Full Chrome Exploit," obtaining user account persistence using only bugs in the browser itself will net the $60k prize. Using webkits, flash, or a driver-based exploit can only earn the lesser amounts.

Without major flaws the Chrome developers have a harder time finding where the browser needs to be improved. It is a pretty cool concept and opportunity. Not only are they open to anyone taking a stab at their browser, they'll reward you hansomly as well. Not to mention it would be a great bullet point on a resume ;)


No comments:

Post a Comment