To clarify based on feedback: 10k vuls in 9k vendors. As an attacker. Tech pub info, but VDBs and vuln scanners don't reference/check them.
@dakami No, but say you don't have reliable exploits for *any* of them. You just know exactly where the vulns are...
-
-
@attritionorg If you're exclusively measuring the impact of "technically public" that's actually a best case scenario. Masking noise! -
@dakami "technically public" means that if you go looking, you can find it, via the web. maybe NOT via Google, but it is there, no auth.
End of conversation
New conversation -
-
-
@attritionorg IOW I'll take 10 public vulns that haven't aroused an immune response over 10 0days that may or may not.Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.