@daveaitel Do you know the best reference offhand where you compare heartbleed (useless) vs shellshock (useful)?
-
-
@jstnkndy@suqdiq@daveaitel@flyryan Shellshock is much easier to dev into a repeatable process that works across targets w/ known results -
@jstnkndy@suqdiq@daveaitel@flyryan Heartbleed tends to be different for every target, may lead to creds, but then what do you do? thinky - 1 more reply
New conversation -
-
-
-
@daveaitel@jstnkndy@suqdiq@flyryan which brings me back to reason for asking: hard to find data breaches with Heartbleed listed as factor -
@dguido@daveaitel@jstnkndy@suqdiq@flyryan are you suggesting it didn't happen? Or that it was hard to see done/have evidence? -
@joshcorman@daveaitel@jstnkndy@suqdiq@flyryan 1) It's hard to find empirical breach evidence 2) It had trouble working outside a lab ... -
@joshcorman@daveaitel@jstnkndy@suqdiq@flyryan 3) even when it worked, it's not easy to scale
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.