Stephen Shaffer
@t0sche.infosec.exchange.ap.brid.gy
Security Engineer | Dad | Ottoneu Player | All things black holes and space | Curious about the nature of reality itself and what we’re all doing here #infosec […]
[bridged from https://infosec.exchange/@t0sche on the fediverse by https://fed.brid.gy/ ]
[bridged from https://infosec.exchange/@t0sche on the fediverse by https://fed.brid.gy/ ]
#epss gives us a lens into global exploit pressure.
But to further understand our vulnerability risk posture, we need to adjust that pressure through the lens of our own controls — and their measured effectiveness.
In my latest blog, I show you how to take EPSS asset-level exploit likelihoods […]
But to further understand our vulnerability risk posture, we need to adjust that pressure through the lens of our own controls — and their measured effectiveness.
In my latest blog, I show you how to take EPSS asset-level exploit likelihoods […]
Original post on infosec.exchange
infosec.exchange
November 1, 2025 at 7:12 PM
#epss gives us a lens into global exploit pressure.
But to further understand our vulnerability risk posture, we need to adjust that pressure through the lens of our own controls — and their measured effectiveness.
In my latest blog, I show you how to take EPSS asset-level exploit likelihoods […]
But to further understand our vulnerability risk posture, we need to adjust that pressure through the lens of our own controls — and their measured effectiveness.
In my latest blog, I show you how to take EPSS asset-level exploit likelihoods […]
Reposted by Stephen Shaffer
March 26, 2025 at 2:42 PM
‼️ On Monday, March 17th 2025, EPSS v4 will be released and replace the current version (v3).
❓ What does this mean?
The model is being updated and expanded to include more data sources and is more accurate than v3. The Coverage/Efficiency Curve […]
[Original post on infosec.exchange]
❓ What does this mean?
The model is being updated and expanded to include more data sources and is more accurate than v3. The Coverage/Efficiency Curve […]
[Original post on infosec.exchange]
March 14, 2025 at 6:27 PM
‼️ On Monday, March 17th 2025, EPSS v4 will be released and replace the current version (v3).
❓ What does this mean?
The model is being updated and expanded to include more data sources and is more accurate than v3. The Coverage/Efficiency Curve […]
[Original post on infosec.exchange]
❓ What does this mean?
The model is being updated and expanded to include more data sources and is more accurate than v3. The Coverage/Efficiency Curve […]
[Original post on infosec.exchange]
Reposted by Stephen Shaffer
Pale Blue Dot 🌍
https://www.youtube.com/watch?v=wupToqz1e2g
https://www.youtube.com/watch?v=wupToqz1e2g
March 9, 2025 at 10:35 PM
Pale Blue Dot 🌍
https://www.youtube.com/watch?v=wupToqz1e2g
https://www.youtube.com/watch?v=wupToqz1e2g
Happy to announce I’ll be speaking #vulncon25 next month. I’ll be chatting about Asset EPSSg, which is a concept that orients you to the exploitation exposure risk at the asset level, rather than the CVE level. More info here […]
[Original post on infosec.exchange]
[Original post on infosec.exchange]
March 7, 2025 at 6:16 PM
Happy to announce I’ll be speaking #vulncon25 next month. I’ll be chatting about Asset EPSSg, which is a concept that orients you to the exploitation exposure risk at the asset level, rather than the CVE level. More info here […]
[Original post on infosec.exchange]
[Original post on infosec.exchange]