Hackers exploited Windows 0-day for 6 months after Microsoft knew of it

This page summarizes the projects mentioned and recommended in the original post on news.ycombinator.com
Logging Apache API Java Library

InfluxDB
Our great sponsors
  • InfluxDB - Power Real-Time Data Analytics at Scale
  • WorkOS - The modern identity platform for B2B SaaS
  • SaaSHub - Software Alternatives and Reviews
Our great sponsors

  • SigThief

    Stealing Signatures and Making One Invalid Signature at a Time

    • > To work with supported versions of Windows, third-party drivers must first be digitally signed by Microsoft to certify that they are trustworthy and meet security requirements.

    That’s a very bold statement when you can replicate a signature, so now the malware is “trustworthy” https://github.com/secretsquirrel/SigThief

  • Apache Log4j 2

    Apache Log4j 2 is a versatile, feature-rich, efficient logging API and backend for Java.

    • I don't think that's a good example. While Apache devs are volunteers and Microsoft devs are employees, they were criticized for their slow response time and seeming lack of urgency until it was far too late.

    https://github.com/apache/logging-log4j2/pull/608#issuecomme...

  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

    InfluxDB logo
NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts