Jay Jacobs

Analysis | November 6, 2023

Why does EPSS score some CVEs on the KEV so low?

Read More

/wp-content/uploads/2023/11/kev_exploited_sep_2023.png 1167 2100 Jay Jacobs /wp-content/uploads/[email protected] Jay Jacobs2023-11-06 14:45:182023-11-08 19:02:27Why does EPSS score some CVEs on the KEV so low?

Analysis | July 18, 2023

The Death of Infosec Twitter

Read More

/wp-content/uploads/2023/07/twitter_thumbnail_plot.png 1200 1500 Jay Jacobs /wp-content/uploads/[email protected] Jay Jacobs2023-07-18 08:15:302023-07-17 16:06:01The Death of Infosec Twitter

Analysis | June 15, 2023

Exploring Exploit Intelligence Service (EIS): Tracking Exploit Code

Read More

/wp-content/uploads/2023/06/EIS-June-1st-Plot.png 800 1600 Jay Jacobs /wp-content/uploads/[email protected] Jay Jacobs2023-06-15 12:15:122023-06-21 16:24:02Exploring Exploit Intelligence Service (EIS): Tracking Exploit Code

Analysis | June 5, 2023

Why your MTTR is Probably Bogus

Read More

/wp-content/uploads/2023/05/first_six_months_survival.png 901 2100 Jay Jacobs /wp-content/uploads/[email protected] Jay Jacobs2023-06-05 12:15:552023-06-09 09:53:45Why your MTTR is Probably Bogus

Analysis | February 14, 2022

EPSS version 2 is out!

Read More

/wp-content/uploads/just_epss2_venn_by_coverage.png 1080 901 Jay Jacobs /wp-content/uploads/[email protected] Jay Jacobs2022-02-14 09:20:302022-07-08 14:29:37EPSS version 2 is out!

Analysis | December 3, 2021

Probability of Zero-Day Co-Discovery at Scale

Read More

/wp-content/uploads/probability_with_50_0day.png 901 2100 Jay Jacobs /wp-content/uploads/[email protected] Jay Jacobs2021-12-03 12:06:582022-06-14 12:43:40Probability of Zero-Day Co-Discovery at Scale

Analysis | July 6, 2021

Revisiting GitHub as a Source for Exploits

Read More

/wp-content/uploads/three_sources_over_time_thumbnail.png 901 1050 Jay Jacobs /wp-content/uploads/[email protected] Jay Jacobs2021-07-06 17:56:482022-06-14 12:48:58Revisiting GitHub as a Source for Exploits

News | January 6, 2021

GitHub: A Source for Exploits

Read More

/wp-content/uploads/rawcount_by_date_github.png 750 750 Jay Jacobs /wp-content/uploads/[email protected] Jay Jacobs2021-01-06 13:52:432022-06-14 16:10:00GitHub: A Source for Exploits

Analysis | November 20, 2019

Application Security and "Typical" Fix Times

Read More

/wp-content/uploads/fig23-1-e1574273871823.png 330 389 Jay Jacobs /wp-content/uploads/[email protected] Jay Jacobs2019-11-20 12:58:512020-04-14 21:59:12Application Security and "Typical" Fix Times

Analysis | October 25, 2018

Survival in Application Security

Read More

/wp-content/uploads/Veracode-SOSS_Fig7.png 385 634 Jay Jacobs /wp-content/uploads/[email protected] Jay Jacobs2018-10-25 08:40:362018-10-25 08:40:36Survival in Application Security