iExploit

Howdy, Stranger!

It looks like you're new here. If you want to get involved, click one of these buttons!

Sign In Apply for Membership

Top Posters

Who's Online (1)

Powered by Vanilla. Made with Bootstrap.
Looking to introduce yourself? Look no further, and click here! We also have IRC! [irc.evilzone.org #iexploit]
Exploit Ownership
  • Xin
    Posts: 3,251
    If someone posts a POC of a crash in a piece of software but not the exploit to exploit it, and you make the exploit does it count as your find or his?
    Xin
  • Sh3llc0d3
    Posts: 1,910
    I'd think it'd be his. You would be developing an exploit using his intellectual property, the POC.

    Even though there is probably nothing set in stone you'd be responsible for the code but the concept is his. On the other side of the coin it depends how detailed his POC was and how closely your exploit/code follows it, if you see what I mean.

    Just my 2 cents
  • chroniccommand
    Posts: 1,389
    Your exploit. His find.
  • Xin
    Posts: 3,251
    said:


    Your exploit. His find.



    Could you still post to things like exploit_db as it says do not post duplicate exploits
    Xin
  • chroniccommand
    Posts: 1,389
    said:


    said:


    Your exploit. His find.



    Could you still post to things like exploit_db as it says do not post duplicate exploits

    Yes. Because he didn't technically write an exploit, he shared a vuln.
  • D4rk357
    Posts: 34
    Morever you can find a bug in different parameter and it will still be your find
Add a Comment