Many eyes (and open source) DO NOT make all bugs shallow. Linux among the highest life expectancy for exploits.pic.twitter.com/ILOUTqoPVi
You can add location information to your Tweets, such as your city or precise location, from the web and via third-party applications. You always have the option to delete your Tweet location history. Learn more
To those dismissing this RAND report: Ignore it at your own peril. This is the best data ever released on real exploit development, period.
who is dismissing it?
I’ve seen several people take issue with it. @taviso being one of them. (I think it’s excellent, IMO).
I think you must be thinking of @halvarflake, I'm not involved.
Didn’t you mention something about Full Disclosure?
Unrelated.
what is this thread and how did I get here? ;)
RAND report something something.
where in the report do the authors make it clear that their definition of vulnerability does not include those on the OWASP top ten?
Agreed! Modern exploit development chains several techniques into a working chain. Devs must be expert polyglots.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.