People opposed to releasing offensive security research, I have a serious question. What end state do you want to achieve? What is success? - no one does offensive security research? - no one publishes offsec? - offsec posted publicly is illegal? - offsec cannot be free? - other?
Right, but who doesn't want bad guys to work harder? They don't have a unique perspective here, doesn't everyone want that?
-
-
For the purposes of this debate - yeah, I absolutely think so. They’ll argue it enables attackers, we’ll argue getting stuff fixed is the outcome and the wheel turns.
-
I find it pretty weird they exclude vulns & exploits though. I think part of it is they rarely deal with sploits & their use is short lived in a hack but come in once the C2 is set up.
- 2 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.