We strive to address both the number of vulnerabilities in software that is being developed and the number of vulnerabilities in software that is already deployed. Our vulnerability analysis work is divided into two areas: vulnerability discovery and vulnerability remediation.

• Vulnerability discovery
• Vulnerability remediation
• CERT/CC blog

In addition to identifying current vulnerabilities, we want to prevent the introduction of new ones. We are establishing practices that vendors can use to improve the security and quality of their software.

• Secure coding project page
• Secure coding standards

Internet threats are not confined to geographic borders. To promote a global response capability, we help organizations and countries establish computer security incident response teams (CSIRTs), and we work with existing teams to coordinate communication and response during major security events.

• CSIRT development
• National CSIRTs

Our artifact analysts examine, catalog, and sometimes reverse-engineer malicious code. These activities help us to better understand how the code works and allow us to identify trends and patterns that may reveal exploitable vulnerabilities or other potential threats.