This is an incredible resource for anyone looking into zeroday exploits and I'm happy to say that I helped with ithttp://www.rand.org/pubs/research_reports/RR1751.html …
-
-
Replying to @dguido
Attempts to score vulnerabilities for severity are disconnected from the reality of exploiting them.pic.twitter.com/Km7mgW2Kuh
2 replies 29 retweets 42 likes -
Replying to @dguido
Defensive efforts to patch vulnerabilities have little effect on exploits. They usually die from unrelated code churn.pic.twitter.com/cVZRZwrVzQ
3 replies 9 retweets 15 likes -
Replying to @dguido
Many eyes (and open source) DO NOT make all bugs shallow. Linux among the highest life expectancy for exploits.pic.twitter.com/ILOUTqoPVi
4 replies 58 retweets 67 likes -
Replying to @dguido
does "Linux" refer to the kernel itself only or kernel + userspace/distro attack surface?
1 reply 0 retweets 1 like
Replying to @AndreaBarisani
Linux-based, may or may not include kernel
6:59 AM - 9 Mar 2017
0 replies
0 retweets
1 like
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.