We clearly disagree on this
Providing POCs helps defenders more than attackers. Defenders often use POCs to build detections and develop new solutions to mitigate not just the big but also exploit techniques.
-
-
I think exploitation training is so valuable that it's worth the risk that a bad guy learns how to write exploits from you, and public exploits are so valuable that it's worth the risk that a bad guy spends a few hours less in bindiff.
-
I saw Azeria deactivated/deleted her Twitter account. I don't know what exactly she said. I'm more inclined to your side on this discussion. But I don't think she deserved all the criticism she received from many people. I think she is a great security researcher and teacher.
- 1 more reply
New conversation -
-
-
To be honest and I respect a lot what you do, I don't see where is the unfairness. Publishing a public PoC vs paying to be trained into finding vuln & writing PoC is the same thing for a motivated attacker, isn't it?
- 2 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.