2024-10-10, 17:00–17:30 (Europe/Luxembourg), Room C1.03.05
Vulnerability Lookup streamlines the correlation of vulnerabilities from multiple sources, independent of vulnerability IDs, and enhances the management of Coordinated Vulnerability Disclosure (CVD). It also serves as a collaborative platform, allowing users to comment on security advisories and create vulnerability bundles. Developed by CIRCL within the scope of the NIS2 directive, this open-source project aims to improve the efficiency and transparency of vulnerability management. This talk will explore the origins of the project, the challenges faced in coordinated vulnerability disclosure, and how Vulnerability Lookup addresses these challenges.
Vulnerability Lookup streamlines the correlation of vulnerabilities from multiple sources, independent of vulnerability IDs, and enhances the management of Coordinated Vulnerability Disclosure (CVD). It also serves as a collaborative platform, allowing users to comment on security advisories and create vulnerability bundles. Developed by CIRCL within the scope of the NIS2 directive, this open-source project aims to improve the efficiency and transparency of vulnerability management. This talk will explore the origins of the project, the challenges faced in coordinated vulnerability disclosure, and how Vulnerability Lookup addresses these challenges.
Jean-Louis Huynen is a security researcher at CIRCL. He works on threat detection/intel and the development of tools to support incident response, Previously he collaborated with LIST-- Luxembourg Institute of Science and Technology (LU)--to the development of a Mixed Reality platform for the training for Security Critical Agents (mainly on firearms events and CBRN incidents). Previous research works (and his PhD) at SnT--Interdisciplinary Centre for Security, Reliability and Trust (LU)--focused on the usability of security systems and root cause analysis techniques for investigating security incidents.
As the Head of the Computer Incident Response Center Luxembourg (CIRCL), Alexandre Dulaunoy has contributed to and co-led many open source projects widely used in the CSIRT and cybersecurity community. He is passionate about breaking and creating systems to transform ruins into a living infrastructure.