Month: February 2008

  • Box of Shit: The Revenge

    At some point around 2008 I put together a box with a bunch of random shit laying around. Nothing of value, all stuff you question why you even kept it in the first place basically. Off it went to an unsuspecting victim/friend. From there, the box-of-shit was born. Since then, I have sent out hundreds […]

  • “0-day Can Happen to Anyone”

    [This was originally published on the OSVDB blog.] This time, it happened to the OSVDB blog. Unfortunately, WordPress doesn’t have a very good track record on security. During the migration from the old OSVDB to 2.0, we noticed a problem with the blog and several ‘spam’ posts appearing. We attributed it to one of the […]

  • New Classification: Discovered In the Wild

    [This was originally published on the OSVDB blog.] [October 24, 2020 Update: Since creating this flag, VulnDB now has 629 entries flagged as such.] In a recent discussion on the security metrics mailing list, Pete Lindstrom put forth a rough formula to throw out a number of vulnerabilities that have been discovered versus undiscovered. One […]