Poll: how much is source code for older, private fuzzers worth? The kind that doesn't find any new bugs anymore but could be build upon and/or reviewed for inspiration to write new fuzzers.
-
Show this thread
-
Replying to @berendjanwever
If you learned from free resources like phrack and simliar publications I say the author has some obligation to publish it for free. It's a nice balance, make money on the front side (bugs) and give back when the fuzzer has served it's purpose
1 reply 0 retweets 0 likes -
Replying to @spoofyroot
Microsoft was dragged kicking and screaming by
@k8em0 into supporting independent researchers like me through a bug bounty program but managed to keep me out of it through an unacceptable NDA. Suggesting that _I_ am not "giving back to the community" just adds insult to injury.3 replies 0 retweets 7 likes -
Replying to @berendjanwever @k8em0
Didn't mean to suggest that, I do however worry about the trend of less information being shared. I'm fairly new at Microsoft and not in MSRC, hopefully I'm not accountable for past sins. Either way drinks are definitely on me.
1 reply 0 retweets 1 like -
Replying to @spoofyroot @k8em0
Selling information has allowed people like me to turn a hobby into a full-time profession. The benefit to everyone of having people work full-time on securing software far outways the loss we suffered as a community. I do miss the old days of sharing 0day on full-disclosure@ tho
1 reply 0 retweets 1 like
... so if you can convince the Edge team to sponsor it, I'd be very happy for you guys to buy the fuzzers and publish them!
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.