Friends, Romans, countrymen, lend me your ear.
-
Friends, Romans, countrymen, lend me your ear.
If you are writing about a CVE or compiling a list of CVEs and their proof of concept code, please please please mirror the original proof of concept somewhere. I don't care if it's an unformatted .py file on your server. Just put it somewhere rather than hoping that that github user in China won't get their account deleted at any point in the next 15 years.
Wayback machine is down today. Swear words have been said.
-
Friends, Romans, countrymen, lend me your ear.
If you are writing about a CVE or compiling a list of CVEs and their proof of concept code, please please please mirror the original proof of concept somewhere. I don't care if it's an unformatted .py file on your server. Just put it somewhere rather than hoping that that github user in China won't get their account deleted at any point in the next 15 years.
Wayback machine is down today. Swear words have been said.
Related: while working to make tags based on nuclei templates, we found lots and lots of references to the repo ARPSyndicate/cvemon, which seemed to be a quick copypaste job of the description of every CVE ever.
We blocked it on our end as a nonreliable source, but I had a hunch that this repo would come back to haunt me.
Guess what's being cited as a reference on a bunch of AI generated github repos with nonexisting poc code?
-
Friends, Romans, countrymen, lend me your ear.
If you are writing about a CVE or compiling a list of CVEs and their proof of concept code, please please please mirror the original proof of concept somewhere. I don't care if it's an unformatted .py file on your server. Just put it somewhere rather than hoping that that github user in China won't get their account deleted at any point in the next 15 years.
Wayback machine is down today. Swear words have been said.
@Dio9sys i can see the 'serverless' and cloud people shitting blood with rage at this, because it means they have to think about self hosting, or touching the linux command line
-
@Dio9sys i can see the 'serverless' and cloud people shitting blood with rage at this, because it means they have to think about self hosting, or touching the linux command line
@Viss As an industry, we really need to have learned the lesson that URLs are not permanent like....20 years ago.
-
@Viss As an industry, we really need to have learned the lesson that URLs are not permanent like....20 years ago.
@Dio9sys i think the saying goes something like "you cannot teach a man something that his salary depends on him not knowing".
its fundamentally the same as the medical insurance companies: why cure a patient when you can sell them something that handles the symptoms forever, which you can charge a subscription for?
-
P Pteryx the Puzzle Secretary shared this topic on
