Vulnerability management

They may also be identified by consulting public sources, such as NVD, vendor specific security updates or subscribing to a commercial vulnerability alerting service.

Fuzzing is a cornerstone technique where random or semi-random input data is fed to programs to detect unexpected behavior.

Similarly, static analysis tools analyze source code or binaries to identify potential vulnerabilities without executing the program.

Correcting vulnerabilities may variously involve the installation of a patch, a change in network security policy, reconfiguration of software, or educating users about social engineering.

[6] Antifragility is a concept introduced by Nassim Nicholas Taleb to describe the capacity of systems to not only resist or recover from adverse events, but also to improve because of them.