Exploit development creates working code to exploit vulnerabilities — analyzing crashes, controlling execution flow, writing shellcode, and bypassing mitigations (ASLR, DEP).
PenTest+ knowledge level: understand concepts and use existing frameworks (Metasploit). CySA+ level: recognize exploitation attempts. Deep exploit development = specialized offensive security skill beyond most certifications.