|
|
|
|
|
|
by zwp
1845 days ago
|
|
|
Nice find. I'm hopefully preaching to the choir here but please beware that high-visibility flaws often attract fake PoCs. Malicious in the sense "might [also] attack the user" (you!). Often these will surf on work done by valid PoCs to look credible. GitHub was stuffed with them for the Hafnium Exchange bug, before Microsoft brought down the ban hammer. (At the time there was lots of mewing about "Microsoft protecting their own" and "Microsoft killing free speech" but I wonder if they weren't also interested in stopping the pwnage from these fake exploits, too). I'm not saying this repo is malicious. This github user looks legitimate and doesn't look like the obviously-created-by-a-bot profiles I've previously seen. Even so I wouldn't necessarily trust ~5000 vendored class files. Play carefully. |
|
|
And have to stay away from pirated games.
A compiled executable from a trustworthy vendor gets a score of 1/65 on virustotal? Well, I guess you are running in a sandbox..
A legit library has enormous number of lines? Well I’m rolling my own (except for crypto, noone should roll their own)
I just cannot take the risk anymore.