bang exploitable!

Very cool news about a fuzzer + ms debugger extension to not only do fuzz testing of software, but help weed out false positives.  Will be interested in trying this out and reading more about it.  Wonder if it works with asp.net?  Or at least the unit-testable portions of code?

Kaminsky: MS security assessment tool is a 'game changer' • The Register