Free open-source tools to standardize, normalize, and promote the adoption of vulnerability reporting and disclosure. #internetimmunesystem #hacktheplanet

projects.disclose.io
Joined April 2018
The disclose.io #diodb update: Total: 2304 - Search at disclose.io/programs w/ Good-faith: 158 (6.9%) w/ Authorization: 239 (10.4%) w/ Bounties: 379 (16.4%) w/ Swag: 42 (1.8%) #vdp #bugbountytips #safeharbor #bugbounty #opensource
0
4
0
1
The disclose.io #diodb update: Total: 2304 - Search at disclose.io/programs w/ Good-faith: 158 (6.9%) w/ Authorization: 239 (10.4%) w/ Bounties: 379 (16.4%) w/ Swag: 42 (1.8%) #vdp #bugbountytips #safeharbor #bugbounty #opensource
0
11
0
0
Need help putting a VDP policy together? m.disclose.io/3ip7HPR is open-source, free, and contributed to by experts with decades of experience in the field… Majority of consumer IoT vendors still lack vulnerability disclosure programs – report m.disclose.io/3rc9pZC
0
1
0
0
disclose.io retweeted
So today is the day! The UK's Product Security and Telecommunications Infrastructure Bill reaches Parliament this afternoon as. Key elements for IoT: * Banning default passwords * Vulnerability disclosure * Transparency on software updates gov.uk/guidance/the-product-… #iotsecurity
7
37
4
59
Show this thread
disclose.io retweeted
In other news, we recently published our security contacts in a @securitytxt file according to the IETF draft "A File Format to Aid in Security Vulnerability Disclosure". Also useful for security incident response 🚨 swisscom.ch/.well-known/secu…
2
9
1
22
Show this thread
The disclose.io #diodb update: Total: 2303 - Search at disclose.io/programs w/ Good-faith: 158 (6.9%) w/ Authorization: 238 (10.3%) w/ Bounties: 378 (16.4%) w/ Swag: 41 (1.8%) #vdp #bugbountytips #safeharbor #bugbounty #opensource
0
2
0
1
“Let's operate on the assumption that to err is human, let's figure out where the risks that are introduced as a byproduct of that exist, fix those, and then try to learn from that in ways that reduces how frequently that happens in the future.” m.disclose.io/3CX74nn
0
0
0
0
disclose.io retweeted
11 malicious Python packages caught stealing Discord tokens, passwords, and installing remote access shells therecord.media/malicious-py…
9
334
18
697
"The other thing would be [...] continuing the ‘rolling thunder’ started in this space over the last 10 years, including the Van Buren case—which included educating SCOTUS themselves through amici briefings, as well as combating anti-hacker disinformation" m.disclose.io/32bb2fF
0
0
0
1
disclose.io retweeted
What is one video/article/book/content you recommend for anyone interested in security?
15
8
1
67
Show this thread
disclose.io retweeted
It's funny because it's true #spicyMemeFriday
8
56
4
502
disclose.io retweeted
The #Defcon30 Theme is... Hacker Homecoming! It's been a crazy couple of years, but we're looking forward to reuniting in Vegas with more of our hacker family next summer. We hope you're excited about it, too. Full theme announcement is here: forum.defcon.org/node/240151
38
273
69
796
The disclose.io #diodb update: Total: 2302 - Search at disclose.io/programs w/ Good-faith: 158 (6.9%) w/ Authorization: 237 (10.3%) w/ Bounties: 377 (16.4%) w/ Swag: 41 (1.8%) #vdp #bugbountytips #safeharbor #bugbounty #opensource
0
7
0
1
disclose.io retweeted
We talked about @robdykedotcom's experience with UK law + responsible disclosure and ethics and the computer misuse act reform, highlighting recommend checking out Rob's posts with his experience robdyke.com/howto-disclose/ and the @disclose_io community
3
4
0
19
Show this thread
Connect with third parties like @disclose_io @hacknotcrime to help
1
1
0
5