Josh Bressers
@josh.bressers.name
Mostly on Mastodon - VP of Security at Anchore - Open Source Security https://opensourcesecurity.io - Hacker History http://hackerhistory.com - He/Him
Something you might want to filter for in your data is the business models for Wordfence, Patchstack, and WPScan
These are wordpress plugin vuln bug bounties that currently account for a MASSIVE amount of the CVE data (and are all web based)
These are wordpress plugin vuln bug bounties that currently account for a MASSIVE amount of the CVE data (and are all web based)
February 24, 2025 at 5:21 PM
Something you might want to filter for in your data is the business models for Wordfence, Patchstack, and WPScan
These are wordpress plugin vuln bug bounties that currently account for a MASSIVE amount of the CVE data (and are all web based)
These are wordpress plugin vuln bug bounties that currently account for a MASSIVE amount of the CVE data (and are all web based)
The mascot of 2025 should be the mean little dog thing from Star Trek
February 1, 2025 at 4:02 PM
The mascot of 2025 should be the mean little dog thing from Star Trek
Being on the "Top 10 CVE assigners of 2025" list probably isn't something fortinet is very excited about :)
January 16, 2025 at 1:54 PM
Being on the "Top 10 CVE assigners of 2025" list probably isn't something fortinet is very excited about :)
Post your favorite Star Trek character. Wrong answers only
December 22, 2024 at 3:12 AM
Post your favorite Star Trek character. Wrong answers only
There was a thread on Mastodon about how many open source projects there are earlier today, so I thought I would also post a graph here to help show how massive it is
This is the data Ecosyste.ms tracks. There are over 10 million open source packages across the various ecosystems
This is the data Ecosyste.ms tracks. There are over 10 million open source packages across the various ecosystems
December 6, 2024 at 1:14 AM
There was a thread on Mastodon about how many open source projects there are earlier today, so I thought I would also post a graph here to help show how massive it is
This is the data Ecosyste.ms tracks. There are over 10 million open source packages across the various ecosystems
This is the data Ecosyste.ms tracks. There are over 10 million open source packages across the various ecosystems
There was a thread over on Mastodon about why XSS was the top CWE this year
infosec.exchange/@mttaggart/1...
There's a reason for this, it's because there are 3 CNA that are also Wordpress Plugin Bug bounty platforms
Wordfence, Patchstack, and WPScan
So a few CNAs account for most of the growth
infosec.exchange/@mttaggart/1...
There's a reason for this, it's because there are 3 CNA that are also Wordpress Plugin Bug bounty platforms
Wordfence, Patchstack, and WPScan
So a few CNAs account for most of the growth
November 27, 2024 at 2:34 PM
There was a thread over on Mastodon about why XSS was the top CWE this year
infosec.exchange/@mttaggart/1...
There's a reason for this, it's because there are 3 CNA that are also Wordpress Plugin Bug bounty platforms
Wordfence, Patchstack, and WPScan
So a few CNAs account for most of the growth
infosec.exchange/@mttaggart/1...
There's a reason for this, it's because there are 3 CNA that are also Wordpress Plugin Bug bounty platforms
Wordfence, Patchstack, and WPScan
So a few CNAs account for most of the growth
Tonight’s project was connecting a #Meshtastic node to a raspberry pi zero using GPIO
The 4 pins I needed almost lined up exactly, which was nice
Now it’ll run the BBS I’m working on
github.com/joshbressers...
The 4 pins I needed almost lined up exactly, which was nice
Now it’ll run the BBS I’m working on
github.com/joshbressers...
November 23, 2024 at 4:10 AM
Tonight’s project was connecting a #Meshtastic node to a raspberry pi zero using GPIO
The 4 pins I needed almost lined up exactly, which was nice
Now it’ll run the BBS I’m working on
github.com/joshbressers...
The 4 pins I needed almost lined up exactly, which was nice
Now it’ll run the BBS I’m working on
github.com/joshbressers...
Time to break this Christmas web comic back out
November 21, 2024 at 2:39 AM
Time to break this Christmas web comic back out
But there's a secret hidden in that data. The extra growth this year is all the Linux Kernel. Here's the same graph if we remove all the kernel CVE IDs
Now it looks like a mostly normal amount of growth (if anything it's down a bit when you compare 2022 to 2023)
Now it looks like a mostly normal amount of growth (if anything it's down a bit when you compare 2022 to 2023)
November 19, 2024 at 2:19 PM
But there's a secret hidden in that data. The extra growth this year is all the Linux Kernel. Here's the same graph if we remove all the kernel CVE IDs
Now it looks like a mostly normal amount of growth (if anything it's down a bit when you compare 2022 to 2023)
Now it looks like a mostly normal amount of growth (if anything it's down a bit when you compare 2022 to 2023)
One of my armchair hobbies is doing data analysis. Here's what the current CVE graph looks like compared to other years
November 19, 2024 at 2:19 PM
One of my armchair hobbies is doing data analysis. Here's what the current CVE graph looks like compared to other years