search

aboutcode-org / vulnerablecode

A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/
https://public.vulnerablecode.io
Apache License 2.0
543 stars 201 forks source link

Add support for Calculating Risk in VulnerableCode #1593

Closed ziadhany closed 2 weeks ago

ziadhany commented 2 months ago

issue: #1543

image

image

Screenshot from 2024-10-28 18-33-27

Screenshot from 2024-10-29 15-48-52

DennisClark commented 1 month ago

it would be really great to see a review of this PR soon!

TG1999 commented 3 weeks ago

@ziadhany this generally looks good to me, can we have some logs for the pipeline and some UI and API screenshots so we can merge it.

ziadhany commented 3 weeks ago

@TG1999 @keshav-space Thank you for reviewing this PR. Here are the pipeline logs:

/home/ziad-hany/PycharmProjects/vulnerablecode/venv/bin/python /home/ziad-hany/PycharmProjects/vulnerablecode/manage.py improve localhost:8000 --all 
Improving data using compute_package_risk
INFO 2024-10-28 13:10:07.074 Pipeline [ComputePackageRiskPipeline] starting
INFO 2024-10-28 13:10:07.074 Step [add_risk_package] starting
INFO 2024-10-28 13:10:07.755 Calculating risk for 84,396 affected package records
INFO 2024-10-28 13:14:57.360 Progress: 10% (8440/84396) ETA: 2601 seconds (43.4 minutes)
INFO 2024-10-28 13:17:30.519 Progress: 20% (16880/84396) ETA: 1768 seconds (29.5 minutes)
INFO 2024-10-28 13:19:28.477 Progress: 30% (25319/84396) ETA: 1307 seconds (21.8 minutes)
INFO 2024-10-28 13:22:06.047 Progress: 40% (33759/84396) ETA: 1076 seconds (17.9 minutes)
INFO 2024-10-28 13:25:15.062 Progress: 50% (42198/84396) ETA: 907 seconds (15.1 minutes)
INFO 2024-10-28 13:30:57.706 Progress: 60% (50638/84396) ETA: 833 seconds (13.9 minutes)
INFO 2024-10-28 13:36:04.109 Progress: 70% (59078/84396) ETA: 667 seconds (11.1 minutes)
INFO 2024-10-28 13:39:06.350 Progress: 80% (67517/84396) ETA: 434 seconds (7.2 minutes)
INFO 2024-10-28 13:42:57.214 Progress: 90% (75957/84396) ETA: 219 seconds (3.6 minutes)
INFO 2024-10-28 13:48:50.555 Progress: 100% (84396/84396)
INFO 2024-10-28 13:48:50.694 Successfully added risk score for 84,396 package
INFO 2024-10-28 13:48:50.721 Step [add_risk_package] completed in 2324 seconds (38.7 minutes)
INFO 2024-10-28 13:48:50.721 Pipeline completed in 2324 seconds (38.7 minutes)

Process finished with exit code 0
tdruez commented 3 weeks ago

@ziadhany @TG1999 Could we make a push on this one as this is a key addition for the VEX support in DejaCode. Also, make sure it is available everywhere in the relevant API endpoint as we need to capture this data.

ziadhany commented 3 weeks ago

@tdruez @keshav-space, I've completed the requested changes and I hope we can move forward and merge this PR.

Additionally, please review the weight_config.json file to ensure an accurate view of the risk. The default weight is set to one and may need adjustment to reflect typical risk values if we plan to use it in Dejacode.

DennisClark commented 2 weeks ago

note that @keshav-space is going to create a list of unique sources for the severity score, which we will use to expand the entries in the weight-config.json file. Please put suggested weights in the file. We probably also need a default.

keshav-space commented 2 weeks ago

list of unique sources for the severity score,

@ziadhany 👇 Below is the list of unique source for severity score in our public VCIO. From https://nvd.nist.gov we have 339,765 severity scores, from https://api.first.org we have 261,109 severity scores and so on. Now for each of these different source we need assign weight.

unique_severity_source.yml ```yml https://nvd.nist.gov: 339765 https://api.first.org: 261109 https://github.com: 89891 https://access.redhat.com: 33704 https://bugzilla.redhat.com: 22877 https://cve.mitre.org: 17649 http://people.canonical.com: 17488 https://lists.apache.org: 8788 https://ubuntu.com: 3839 http://www.openwall.com: 3406 https://lists.fedoraproject.org: 3042 https://www.npmjs.com: 2658 https://web.archive.org: 2574 https://security.archlinux.org: 2560 https://www.mozilla.org: 2348 https://huntr.dev: 1853 https://snyk.io: 1843 https://vuldb.com: 1484 https://www.jenkins.io: 1428 https://security.netapp.com: 1243 http://www.securityfocus.com: 1239 https://jenkins.io: 1153 https://lists.debian.org: 1076 https://rustsec.org: 934 https://usn.ubuntu.com: 921 http://packetstormsecurity.com: 730 https://pkg.go.dev: 724 https://hackerone.com: 694 https://git.kernel.org: 692 https://groups.google.com: 666 https://security.snyk.io: 631 http://lists.opensuse.org: 624 http://rhn.redhat.com: 616 http://seclists.org: 615 https://code.google.com: 608 https://moodle.org: 541 https://portal.msrc.microsoft.com: 522 https://issues.apache.org: 498 https://www.debian.org: 495 https://jira.xwiki.org: 483 https://exchange.xforce.ibmcloud.com: 451 https://typo3.org: 448 https://www.exploit-db.com: 421 https://gist.github.com: 420 https://www.openwall.com: 418 http://lists.fedoraproject.org: 398 https://plugins.trac.wordpress.org: 354 http://www.debian.org: 336 https://bugs.wireshark.org: 321 http://git.moodle.org: 315 http://secunia.com: 312 https://huntr.com: 312 https://security.gentoo.org: 295 https://bugs.launchpad.net: 294 https://code.wireshark.org: 260 http://svn.apache.org: 244 http://git.kernel.org: 236 https://httpd.apache.org: 235 http://www.securitytracker.com: 229 https://www.wordfence.com: 219 https://www.wireshark.org: 218 http://openwall.com: 207 https://bugs.chromium.org: 207 https://gitlab.com: 207 https://www.silverstripe.org: 201 https://crbug.com: 196 https://www.phpmyadmin.net: 187 https://seclists.org: 179 https://securitylab.github.com: 178 https://curl.se: 169 https://sourceforge.net: 169 https://www.drupal.org: 166 https://discuss.hashicorp.com: 164 https://pypi.org: 164 https://www.djangoproject.com: 163 https://bugzilla.mozilla.org: 160 https://raw.githubusercontent.com: 156 https://lists.gnu.org: 152 http://www.wireshark.org: 151 https://bugs.debian.org: 146 https://security-tracker.debian.org: 146 http://marc.info: 143 https://support.apple.com: 139 https://blogs.gentoo.org: 137 http://www.ubuntu.com: 135 https://bitbucket.org: 131 https://bugzilla.suse.com: 131 https://go.dev: 131 https://pivotal.io: 118 https://www.whitesourcesoftware.com: 118 https://cdn.kernel.org: 117 https://gitee.com: 117 https://lore.kernel.org: 117 https://www.ruby-lang.org: 115 https://msrc.microsoft.com: 114 https://marc.info: 108 https://wordpress.org: 107 https://plone.org: 105 https://www.redhat.com: 105 http://www.oracle.com: 104 http://anonsvn.wireshark.org: 102 http://mail-archives.apache.org: 101 http://xenbits.xen.org: 99 https://www.postgresql.org: 98 https://rhn.redhat.com: 95 https://twitter.com: 95 https://git.openssl.org: 92 http://jvn.jp: 91 https://rubygems.org: 89 https://symfony.com: 88 http://www-01.ibm.com: 86 https://src.chromium.org: 85 https://www.tenable.com: 83 http://lists.apple.com: 82 https://packagist.org: 82 https://issues.redhat.com: 81 http://code.google.com: 80 https://helpx.adobe.com: 80 https://phabricator.wikimedia.org: 80 https://review.openstack.org: 80 https://chromereleases.googleblog.com: 79 https://contao.org: 79 https://discuss.elastic.co: 79 https://security.openstack.org: 79 https://jvn.jp: 78 https://lkml.org: 78 https://medium.com: 78 https://www.nozominetworks.com: 76 https://grafana.com: 75 https://oval.cisecurity.org: 75 https://review.opendev.org: 75 https://advisory.checkmarx.net: 73 https://packetstormsecurity.com: 73 http://www.vupen.com: 73 https://launchpad.net: 72 https://www.openssl.org: 71 https://framework.zend.com: 70 https://www.samba.org: 70 https://www.talosintelligence.com: 70 https://www.zerodayinitiative.com: 68 https://bugs.eclipse.org: 67 https://gitlab.gnome.org: 66 https://nifi.apache.org: 66 http://www.phpmyadmin.net: 65 https://x-stream.github.io: 63 http://www.redhat.com: 63 https://tanzu.vmware.com: 62 http://jvndb.jvn.jp: 60 https://mail-archives.apache.org: 60 https://opendev.org: 60 https://www.oracle.com: 60 https://bugzilla.kernel.org: 59 https://sourceware.org: 59 https://svn.apache.org: 59 https://talosintelligence.com: 59 http://www.zerodayinitiative.com: 59 https://codereview.chromium.org: 58 https://research.jfrog.com: 58 https://discuss.rubyonrails.org: 57 https://spring.io: 56 https://www.twcert.org.tw: 56 http://googlechromereleases.blogspot.com: 55 https://sec.cloudapps.cisco.com: 54 https://xenbits.xen.org: 53 https://issues.jboss.org: 52 https://simplesamlphp.org: 52 https://www.mail-archive.com: 52 https://docs.saltstack.com: 51 https://docs.shopware.com: 51 https://kb.isc.org: 51 https://support.f5.com: 51 http://www.kernel.org: 51 http://lists.gnu.org: 50 http://osvdb.org: 50 https://cwiki.apache.org: 49 http://hg.moinmo.in: 48 https://fluidattacks.com: 48 https://gitlab.eclipse.org: 48 https://www.nuget.org: 48 http://lists.openstack.org: 47 https://developer.mozilla.org: 46 https://www.youtube.com: 45 http://www.mozilla.org: 45 https://drive.google.com: 44 https://owasp.org: 44 https://vaadin.com: 44 https://www.mercurial-scm.org: 44 http://www.mandriva.com: 44 http://archives.neohapsis.com: 43 http://bugs.debian.org: 43 http://hg.code.sf.net: 43 https://curl.haxx.se: 43 https://pillow.readthedocs.io: 43 http://struts.apache.org: 43 https://vulncheck.com: 43 https://webkitgtk.org: 43 https://documentation.concretecms.org: 42 https://patchstack.com: 42 https://patchwork.kernel.org: 42 http://hg.graphicsmagick.org: 41 https://source.android.com: 41 https://struts.apache.org: 41 http://github.com: 40 https://liferay.dev: 40 https://nodesecurity.io: 40 https://web.nvd.nist.gov: 40 http://typo3.org: 40 https://jira.mongodb.org: 39 https://www.cve.org: 39 https://core.trac.wordpress.org: 38 https://news.ycombinator.com: 38 http://downloads.asterisk.org: 37 https://tomcat.apache.org: 37 https://www.kb.cert.org: 37 https://cert-portal.siemens.com: 36 https://devhub.checkmarx.com: 36 https://lists.nongnu.org: 36 http://www.kb.cert.org: 36 http://www.squid-cache.org: 36 https://ink-desk-28f.notion.site: 36 https://h20566.www2.hpe.com: 35 https://www.intel.com: 35 https://docs.djangoproject.com: 34 https://go.googlesource.com: 34 https://herolab.usd.de: 34 https://matrix.org: 34 http://sourceforge.net: 34 http://www.talosintel.com: 34 http://www.vapid.dhs.org: 34 https://ckeditor.com: 33 https://cwe.mitre.org: 33 https://pagure.io: 33 https://www.cisa.gov: 33 http://weblog.rubyonrails.org: 33 http://markmail.org: 32 https://issues.liferay.com: 32 https://jspwiki-wiki.apache.org: 32 http://support.apple.com: 32 http://www.exploit-db.com: 32 http://groups.google.com: 31 https://gitbox.apache.org: 31 http://www.osvdb.org: 31 https://bugs.gentoo.org: 30 https://docs.microsoft.com: 30 https://puppet.com: 30 https://www.github.com: 30 https://www.incibe.es: 30 http://cxf.apache.org: 29 https://bugzilla.wikimedia.org: 29 https://git.moodle.org: 29 https://mvnrepository.com: 29 https://www.usom.gov.tr: 29 https://bz.apache.org: 28 https://nodejs.org: 28 https://syzkaller.appspot.com: 28 https://vuln.ryotak.me: 28 http://tomcat.apache.org: 28 https://docs.google.com: 27 https://www.spinics.net: 27 http://www.talosintelligence.com: 27 https://auth0.com: 26 https://basercms.net: 26 https://lists.opensuse.org: 26 https://next-auth.js.org: 26 https://plugins.jenkins.io: 26 https://www.libreoffice.org: 26 https://www.tiny.cloud: 26 http://hg.openjdk.java.net: 25 http://owncloud.org: 25 https://community.otrs.com: 25 https://git.openstack.org: 25 https://osgeo-org.atlassian.net: 25 https://bugzilla.gnome.org: 24 https://forum.xpdfreader.com: 24 https://istio.io: 24 https://www.kernel.org: 24 https://developers.ibexa.co: 23 https://portswigger.net: 23 https://wpvulndb.com: 23 http://ubuntu.com: 23 https://issues.chromium.org: 23 http://advisories.mageia.org: 22 https://doc.powerdns.com: 22 https://patchwork.ozlabs.org: 22 https://www.ec-cube.net: 22 https://www.phpbb.com: 22 https://www.rfc-editor.org: 22 https://www.synology.com: 22 http://www.ocert.org: 22 http://mail-archives.us.apache.org: 21 https://crates.io: 21 https://en.wikipedia.org: 21 https://issues.asterisk.org: 21 https://jira.spring.io: 21 https://secuniaresearch.flexerasoftware.com: 21 https://tools.ietf.org: 21 https://wiki.jenkins-ci.org: 21 https://youtu.be: 21 http://camel.apache.org: 20 https://0dd.zone: 20 https://blog.gitea.io: 20 https://bugs.ghostscript.com: 20 https://bugzilla.novell.com: 20 https://developer.joomla.org: 20 http://security.gentoo.org: 20 https://gitlab.torproject.org: 20 https://lists.wikimedia.org: 20 https://trac.torproject.org: 20 https://wpscan.com: 20 https://www.huntr.dev: 20 https://www.ibm.com: 20 http://trac.roundcube.net: 20 http://www.pidgin.im: 20 http://git.ghostscript.com: 19 http://plone.org: 19 https://gerrit.wikimedia.org: 19 https://gitlab.freedesktop.org: 19 https://hiddenlayer.com: 19 https://support.hpe.com: 19 http://thread.gmane.org: 19 http://www.spinics.net: 19 https://www.cvcn.gov.it: 19 http://activemq.apache.org: 18 http://article.gmane.org: 18 http://moodle.org: 18 https://bakery.cakephp.org: 18 https://bugs.python.org: 18 https://chromium.googlesource.com: 18 https://docs.github.com: 18 https://docs.rs: 18 https://grimthereaperteam.medium.com: 18 https://mailman.nginx.org: 18 https://psirt.global.sonicwall.com: 18 https://selenic.com: 18 https://www.esecforte.com: 18 https://www.mend.io: 18 https://www.netsparker.com: 18 https://www.playframework.com: 18 http://zerodayinitiative.com: 18 http://securityreason.com: 17 https://files.opcfoundation.org: 17 https://lgtm.com: 17 https://stackoverflow.com: 17 https://tools.cisco.com: 17 https://www.redmine.org: 17 https://www.vicarius.io: 17 http://w1.fi: 17 https://blog.phusion.nl: 16 https://codeigniter4.github.io: 16 https://csirt.divd.nl: 16 https://documentation.centreon.com: 16 https://eprint.iacr.org: 16 https://git.gnome.org: 16 https://joel-malwarebenchmark.github.io: 16 https://magento.com: 16 https://mantisbt.org: 16 https://research.loginsoft.com: 16 https://www.neos.io: 16 https://www.syss.de: 16 http://www.djangoproject.com: 16 http://xforce.iss.net: 16 http://core.trac.wordpress.org: 15 http://mailman.nginx.org: 15 https://advisories.nats.io: 15 https://bugs.tryton.org: 15 https://lists.launchpad.net: 15 https://salsa.debian.org: 15 https://saltproject.io: 15 https://w1.fi: 15 https://www.shopware.com: 15 http://symfony.com: 15 https://www.shawroot.cc: 15 http://framework.zend.com: 14 http://issues.apache.org: 14 https://blog.ripstech.com: 14 https://blog.sonarsource.com: 14 https://cheatsheetseries.owasp.org: 14 https://docs.craftercms.org: 14 https://docs.umbraco.com: 14 http://securitytracker.com: 14 https://go-review.googlesource.com: 14 https://kc.mcafee.com: 14 https://labs.integrity.pt: 14 https://pyup.io: 14 https://rubysec.com: 14 http://support.ntp.org: 14 https://wiki.openstack.org: 14 https://www.concretecms.org: 14 https://www.darkmatter.ae: 14 https://www.linkedin.com: 14 https://www.otrs.com: 14 https://www.privoxy.org: 14 https://www.sonarsource.com: 14 https://www.trustwave.com: 14 http://www.samba.org: 14 http://www.vmware.com: 14 http://blog.rubygems.org: 13 http://helpx.adobe.com: 13 http://karmainsecurity.com: 13 https://cloud.google.com: 13 https://docs.python.org: 13 https://git-wip-us.apache.org: 13 https://nvidia.custhelp.com: 13 https://pastebin.com: 13 https://pypi.python.org: 13 https://python-security.readthedocs.io: 13 https://rumbling-slice-eb0.notion.site: 13 https://www.rapid7.com: 13 http://patchwork.ozlabs.org: 12 https://advisory.dw1.io: 12 https://akka.io: 12 https://android.googlesource.com: 12 https://argo-cd.readthedocs.io: 12 https://blog.fuzzing-project.org: 12 https://blog.laravel.com: 12 https://codeberg.org: 12 https://docs.cilium.io: 12 https://docs.docker.com: 12 https://docs.wagtail.org: 12 https://downloads.powerdns.com: 12 https://electronjs.org: 12 https://forums.rancher.com: 12 https://irssi.org: 12 https://kallithea-scm.org: 12 https://legalhackers.com: 12 https://lists.freedesktop.org: 12 https://mellium.im: 12 https://rubyonrails.org: 12 https://secunia.com: 12 https://spark.apache.org: 12 https://storyboard.openstack.org: 12 https://subversion.apache.org: 12 https://tls.mbed.org: 12 http://sunsolve.sun.com: 12 https://wiki.ubuntu.com: 12 https://www.apollographql.com: 12 https://www.herodevs.com: 12 https://www.imagemagick.org: 12 https://www.kde.org: 12 https://www.qualys.com: 12 https://www.ubuntu.com: 12 https://www.usenix.org: 12 https://www.wizlynxgroup.com: 12 https://www.x41-dsec.de: 12 http://www.gentoo.org: 12 http://www.rapid7.com: 12 http://drupal.org: 11 http://git.videolan.org: 11 http://moinmo.in: 11 http://puppetlabs.com: 11 https://arxiv.org: 11 https://blog.getbootstrap.com: 11 https://camel.apache.org: 11 https://review.gluster.org: 11 https://roy.marples.name: 11 https://stackblitz.com: 11 https://www.facebook.com: 11 https://www.securityfocus.com: 11 http://www.imagemagick.org: 11 http://git.savannah.gnu.org: 10 https://blog.torproject.org: 10 https://codepen.io: 10 https://codeql.github.com: 10 https://commons.apache.org: 10 https://confluence.atlassian.com: 10 https://cs.opensource.google: 10 https://doc.akka.io: 10 https://docs.opennms.com: 10 https://docs.openstack.org: 10 https://docs.silverstripe.org: 10 https://doc.traefik.io: 10 https://doyensec.com: 10 https://foss.heptapod.net: 10 https://gcc.gnu.org: 10 https://git.sheetjs.com: 10 https://hackmd.io: 10 https://ics-cert.kaspersky.com: 10 https://kb.cert.org: 10 https://kiwitcms.org: 10 https://kjur.github.io: 10 https://lists.gnupg.org: 10 https://logback.qos.ch: 10 https://logging.apache.org: 10 https://mail.python.org: 10 https://metacpan.org: 10 https://neo4j.com: 10 https://opcfoundation.org: 10 https://ostorlab.co: 10 https://palletsprojects.com: 10 https://portal.liferay.dev: 10 https://research.securitum.com: 10 https://sites.google.com: 10 https://source.codeaurora.org: 10 https://support.sonatype.com: 10 https://twistedmatrix.com: 10 https://www.edoardoottavianelli.it: 10 https://www.electronjs.org: 10 https://www.owasp.org: 10 https://www.sec-consult.com: 10 https://www.sudo.ws: 10 https://www.vulnerability-lab.com: 10 https://www.yiiframework.com: 10 http://web.archive.org: 10 http://www-1.ibm.com: 10 http://www.cherrypy.org: 10 http://www.vapidlabs.com: 10 http://archiva.apache.org: 9 http://blogs.gentoo.org: 9 http://bugs.cacti.net: 9 http://curl.haxx.se: 9 http://docs.moodle.org: 9 http://freeradius.org: 9 http://git.php.net: 9 http://hmarco.org: 9 http://hyp3rlinx.altervista.org: 9 http://lists.bestpractical.com: 9 http://lists.nongnu.org: 9 http://nvidia.custhelp.com: 9 http://php.net: 9 http://qpid.apache.org: 9 https://blog.clamav.net: 9 https://codex.wordpress.org: 9 https://cxsecurity.com: 9 http://security.libvirt.org: 9 https://extensions.typo3.org: 9 https://gnunet.org: 9 http://source.android.com: 9 https://pretix.eu: 9 https://sec-consult.com: 9 https://software.intel.com: 9 https://syncope.apache.org: 9 http://subversion.apache.org: 9 https://weblog.rubyonrails.org: 9 https://www.apache.org: 9 https://www.blackhat.com: 9 https://www.bleepingcomputer.com: 9 https://www.cyrusimap.org: 9 https://www.openssh.com: 9 http://www.arubanetworks.com: 9 http://code610.blogspot.com: 8 http://code.djangoproject.com: 8 http://karaf.apache.org: 8 http://lists.openwall.net: 8 http://lists.wikimedia.org: 8 http://netty.io: 8 http://packetstormsecurity.org: 8 http://pypi.python.org: 8 https://activemq.apache.org: 8 https://arstechnica.com: 8 https://aws.amazon.com: 8 https://benjamin-bouchet.com: 8 https://blog.jquery.com: 8 https://bugs.jquery.com: 8 https://bugs.php.net: 8 https://bugs.torproject.org: 8 https://cert.pl: 8 https://community.grafana.com: 8 https://community.shopware.com: 8 https://cves.at: 8 https://datatracker.ietf.org: 8 https://docs.geoserver.org: 8 https://docs.sentry.io: 8 https://edugit.org: 8 https://fedorahosted.org: 8 https://fetch.spec.whatwg.org: 8 https://froala.com: 8 https://gerrit.libreoffice.org: 8 https://git1-us-west.apache.org: 8 https://grimhacker.com: 8 https://hg.reportlab.com: 8 https://kb.pulsesecure.net: 8 https://laravel.com: 8 https://lwn.net: 8 https://mail.openvswitch.org: 8 https://matrix-org.github.io: 8 https://nukeviet.vn: 8 https://portal.microfocus.com: 8 https://research.nccgroup.com: 8 https://rt.cpan.org: 8 https://s.apache.org: 8 https://search.maven.org: 8 https://security.docs.wso2.com: 8 https://share.ez.no: 8 https://shibboleth.net: 8 https://solr.apache.org: 8 https://starlabs.sg: 8 https://support.microsoft.com: 8 https://support.zabbix.com: 8 https://sysdream.com: 8 https://tech.feedyourhead.at: 8 https://tiny.cloud: 8 https://www.dolibarr.org: 8 https://www.hashicorp.com: 8 https://www.opennms.com: 8 https://www.passbolt.com: 8 https://www.reddit.com: 8 https://www.sqlite.org: 8 https://www.strongswan.org: 8 http://www.mail-archive.com: 8 http://www.postgresql.org: 8 http://x-stream.github.io: 8 https://hawktesters.com: 8 https://www.topquadrant.com: 8 http://blog.mindedsecurity.com: 7 http://bugs.python.org: 7 http://dev.eclipse.org: 7 http://downloads.digium.com: 7 http://permalink.gmane.org: 7 https://0xacab.org: 7 https://about.gitlab.com: 7 https://alephsecurity.com: 7 https://blog.cloudflare.com: 7 https://bugs.freedesktop.org: 7 https://bugs.kde.org: 7 https://community.openvpn.net: 7 https://core.spip.net: 7 https://docs.oracle.com: 7 https://dumpco.re: 7 https://edk2-docs.gitbooks.io: 7 https://forum.cosmos.network: 7 https://git.ffmpeg.org: 7 https://golang.org: 7 http://share.ez.no: 7 https://hex.pm: 7 http://shibboleth.net: 7 https://karaf.apache.org: 7 https://lists.x.org: 7 https://me.sap.com: 7 https://owncloud.org: 7 https://pdfium.googlesource.com: 7 https://peps.python.org: 7 https://portal.perforce.com: 7 https://qpid.apache.org: 7 https://roundcube.net: 7 https://sqlite.org: 7 https://trac.ffmpeg.org: 7 https://trac.pjsip.org: 7 http://svn.cacti.net: 7 https://www.couchbase.com: 7 https://www.nlnetlabs.nl: 7 https://www.prevanders.net: 7 https://www.sourceclear.com: 7 https://www.suse.com: 7 http://syncope.apache.org: 7 http://vapid.dhs.org: 7 http://www.ibm.com: 7 http://www.novell.com: 7 http://www.openafs.org: 7 http://www.tryton.org: 7 http://www.zope.org: 7 http://blog.plataformatec.com.br: 6 http://blog.trendmicro.com: 6 http://bugs.ghostscript.com: 6 http://geronimo.apache.org: 6 http://hg.tryton.org: 6 http://issues.roundup-tracker.org: 6 http://legalhackers.com: 6 https://akerva.com: 6 https://api.slack.com: 6 https://backdropcms.org: 6 https://blog.certimetergroup.com: 6 https://blog.jetbrains.com: 6 https://codereview.qt-project.org: 6 https://codewhitesec.blogspot.com: 6 https://community.librenms.org: 6 https://craftcms.com: 6 https://cxf.apache.org: 6 https://discord.com: 6 https://discuss.flarum.org: 6 https://discuss.tryton.org: 6 https://dl.acm.org: 6 https://docs.aws.amazon.com: 6 https://docs.pinot.apache.org: 6 https://docs.projectdiscovery.io: 6 https://documentation.bonitasoft.com: 6 https://duo.com: 6 https://elixirforum.com: 6 https://extensions.xwiki.org: 6 https://ezplatform.com: 6 https://git.launchpad.net: 6 https://gitlord.com: 6 https://git.shibboleth.net: 6 https://gnutls.org: 6 https://googlechromereleases.blogspot.com: 6 https://gxx777.github.io: 6 https://ibb.co: 6 https://i.ibb.co: 6 https://internetcomputer.org: 6 https://issues.opennms.org: 6 https://jira.qos.ch: 6 https://jsoup.org: 6 https://kiali.io: 6 https://lab.louiz.org: 6 https://labs.bishopfox.com: 6 https://linkis.apache.org: 6 https://mattermost.com: 6 https://mycvee.blogspot.com: 6 https://notes.sjtu.edu.cn: 6 https://opcfoundation-onlineapplications.org: 6 https://openid.net: 6 https://patch-diff.githubusercontent.com: 6 https://pho3n1x-web.github.io: 6 https://podalirius.net: 6 https://portals.apache.org: 6 https://projects.eclipse.org: 6 https://pulsesecurity.co.nz: 6 https://quarkus.io: 6 https://reactjs.org: 6 https://review.typo3.org: 6 https://salvatoresecurity.com: 6 https://securelayer7.net: 6 https://secure.ucc.asn.au: 6 https://shrouded-trowel-50c.notion.site: 6 https://ssd-disclosure.com: 6 https://strapi.io: 6 https://surrealdb.com: 6 https://tailscale.com: 6 https://tenable.com: 6 https://tufangungor.github.io: 6 http://support.avaya.com: 6 https://webargs.readthedocs.io: 6 https://whitehub.net: 6 https://www.ait.ac.at: 6 https://www.checkmarx.com: 6 https://www.cloudbees.com: 6 https://www.cloudera.com: 6 https://www.codeigniter.com: 6 https://www.digital.security: 6 https://www.dulwich.io: 6 https://www.freeipa.org: 6 https://www.gerritcodereview.com: 6 https://www.ghostccamm.com: 6 https://www.horizon3.ai: 6 https://www.imperva.com: 6 https://www.mediawiki.org: 6 https://www.openafs.org: 6 https://www.openmicroscopy.org: 6 https://www.schedmd.com: 6 https://wwws.nightwatchcybersecurity.com: 6 https://www.synacktiv.com: 6 https://www.synopsys.com: 6 https://www.tigera.io: 6 https://www.twistlock.com: 6 https://www.w3.org: 6 http://verneet.com: 6 http://www.dnnsoftware.com: 6 http://www.gnutls.org: 6 http://www.halfdog.net: 6 http://www.hitachi.co.jp: 6 http://www.reviewboard.org: 6 http://www.us-cert.gov: 6 https://depot.galaxyproject.org: 6 https://codecanyon.net: 6 https://marketplace.visualstudio.com: 6 https://docs.telerik.com: 6 https://support.hcltechsw.com: 6 https://www.watchguard.com: 6 http://bazaar.launchpad.net: 5 http://codex.wordpress.org: 5 http://comments.gmane.org: 5 http://db.apache.org: 5 http://debbugs.gnu.org: 5 http://emberjs.com: 5 http://git.ganeti.org: 5 http://lists.freedesktop.org: 5 http://lists.thekelleys.org.uk: 5 http://phpmyadmin.git.sourceforge.net: 5 http://projects.puppetlabs.com: 5 https://anonscm.debian.org: 5 https://apereo.github.io: 5 https://blog.rubygems.org: 5 https://blogs.apache.org: 5 https://bugzilla.opensuse.org: 5 https://build.prestashop.com: 5 https://code610.blogspot.com: 5 https://community.rapid7.com: 5 https://cryptography.io: 5 https://cybersecurityworks.com: 5 https://dev.mysql.com: 5 https://docs.moodle.org: 5 https://docs.opencast.org: 5 https://docs.pagure.org: 5 https://docs.powerdns.com: 5 https://ftp.openbsd.org: 5 https://gitlab.labs.nic.cz: 5 https://git.linuxtv.org: 5 https://git.spip.net: 5 https://googleprojectzero.blogspot.com: 5 https://helm.sh: 5 https://hermes.opensuse.org: 5 https://hg.prosody.im: 5 https://isc.sans.edu: 5 https://issues.jenkins-ci.org: 5 https://jfrog.com: 5 https://jira.hdfgroup.org: 5 https://jira.springsource.org: 5 https://lists.01.org: 5 https://lists.apple.com: 5 https://lists.lysator.liu.se: 5 https://lists.torproject.org: 5 https://markmail.org: 5 https://nealpoole.com: 5 https://netty.io: 5 https://nokogiri.org: 5 https://novysodope.github.io: 5 http://somevulnsofadlab.blogspot.jp: 5 http://source.ikiwiki.branchable.com: 5 https://patchwork.linuxtv.org: 5 https://prosody.im: 5 https://pub.freerdp.com: 5 https://research.checkpoint.com: 5 https://rt-solutions.de: 5 https://security.libvirt.org: 5 https://tracker.debian.org: 5 https://user-images.githubusercontent.com: 5 https://www.ambionics.io: 5 https://www.bouncycastle.org: 5 https://www.freebsd.org: 5 https://www.mautic.org: 5 https://www.theregister.com: 5 http://talosintel.com: 5 http://trac.edgewall.org: 5 http://www.fujitsu.com: 5 http://www.gopivotal.com: 5 http://www.huawei.com: 5 http://www.ush.it: 5 http://www.yiiframework.com: 5 https://wiki.shikangsi.com: 5 https://xenbits.xenproject.org: 5 https://bytium.com: 5 https://www.enpass.io: 5 http://archives.seul.org: 4 http://bakery.cakephp.org: 4 http://basercms.net: 4 http://blog.npmjs.org: 4 http://blog.talosintel.com: 4 http://bugs.gentoo.org: 4 http://bugs.jqueryui.com: 4 http://cwe.mitre.org: 4 http://dev.rubyonrails.org: 4 http://download.lighttpd.net: 4 http://en.wikipedia.org: 4 http://freeimage.cvs.sourceforge.net: 4 http://googlechromereleases.blogspot.ca: 4 http://ijbswa.cvs.sourceforge.net: 4 http://issues.umbraco.org: 4 http://jira.codehaus.org: 4 http://jruby.org: 4 http://lcamtuf.coredump.cx: 4 http://lists.gnutls.org: 4 http://lists.qt-project.org: 4 http://lists.xen.org: 4 http://mx.gw.com: 4 http://octobercms.com: 4 http://openmeetings.apache.org: 4 http://pear.php.net: 4 http://pillow.readthedocs.io: 4 http://projects.theforeman.org: 4 http://research.cs.wisc.edu: 4 http://rubysec.com: 4 https://airflow.apache.org: 4 http://santuario.apache.org: 4 https://appcheck-ng.com: 4 https://app.safebase.io: 4 https://app.snyk.io: 4 https://archiva.apache.org: 4 https://argoproj.github.io: 4 https://artifacthub.io: 4 https://authjs.dev: 4 http://savannah.nongnu.org: 4 https://bbpress.org: 4 https://belong2yourself.github.io: 4 https://blocksecteam.medium.com: 4 https://blog.cal1.cn: 4 https://blog.detectify.com: 4 https://blog.doyensec.com: 4 https://blog.gitea.com: 4 https://blog.jcoglan.com: 4 https://blog.jitendrapatro.me: 4 https://blog.jqueryui.com: 4 https://blog.jupyter.org: 4 https://blog.moku.fr: 4 https://blog.payara.fish: 4 https://blogs.securiteam.com: 4 https://blog.trailofbits.com: 4 https://bouncycastle.org: 4 https://breakingthe3ma.app: 4 https://brooklyn.apache.org: 4 https://buddypress.org: 4 https://bugs.oxid-esales.com: 4 https://bz.mercurial-scm.org: 4 https://cgit.kde.org: 4 https://channels.readthedocs.io: 4 https://chromium-review.googlesource.com: 4 https://ckan.org: 4 https://clojure.atlassian.net: 4 https://clusterfuzz-external.appspot.com: 4 https://community.snowflake.com: 4 https://community.sonarsource.com: 4 https://community.synopsys.com: 4 https://cupc4k3.medium.com: 4 https://developer.arm.com: 4 https://dev.liferay.com: 4 https://discuss.lightbend.com: 4 https://docs.getdbt.com: 4 https://docs.gradle.com: 4 https://docs.jboss.org: 4 https://docs.magnolia-cms.com: 4 https://docs.mattermost.com: 4 https://docs.opendaylight.org: 4 https://docs.rundeck.com: 4 https://docs.sixlabors.com: 4 https://docs.strapi.io: 4 https://docs.typo3.org: 4 https://docs.wso2.com: 4 https://duartecsantos.github.io: 4 https://eclipse.dev: 4 https://eslint.org: 4 https://excellium-services.com: 4 https://exment.net: 4 https://fatihhcelik.blogspot.com: 4 https://fortiguard.com: 4 https://forum.ghost.org: 4 https://forum.mautic.org: 4 https://gerrit.onosproject.org: 4 https://geth.ethereum.org: 4 https://ghost.org: 4 https://gist.githubusercontent.com: 4 https://git.eclipse.org: 4 https://git.haproxy.org: 4 https://github.dev: 4 https://github.openssl.org: 4 https://gitlab.kitware.com: 4 https://gitlab.ow2.org: 4 https://gitlab.redox-os.org: 4 https://git.opendaylight.org: 4 https://git-scm.com: 4 https://gitweb.gentoo.org: 4 https://gitweb.torproject.org: 4 https://glassfish.org: 4 https://go-vela.github.io: 4 https://grails.org: 4 https://gstreamer.freedesktop.org: 4 https://guidovranken.wordpress.com: 4 https://hadoop.apache.org: 4 https://hexdocs.pm: 4 https://hg.python.org: 4 https://hg.tryton.org: 4 https://htcondor-wiki.cs.wisc.edu: 4 https://ihacktoprotect.com: 4 https://ikiwiki.info: 4 https://infosecwriteups.com: 4 https://inspector.pypi.io: 4 https://invdos.net: 4 https://iotaa.cn: 4 https://ipsilon-project.org: 4 https://issues.shibboleth.net: 4 https://james.apache.org: 4 https://javaee.github.io: 4 https://jdbc.postgresql.org: 4 https://jekyllrb.com: 4 https://jena.apache.org: 4 https://jira.duraspace.org: 4 https://jira.hyperledger.org: 4 https://johnjhacking.com: 4 https://jolokia.org: 4 https://jupyterhub.readthedocs.io: 4 https://knightlab.northwestern.edu: 4 https://know.bishopfox.com: 4 https://kramdown.gettalong.org: 4 https://kubernetes.io: 4 https://kyverno.io: 4 https://laravel-news.com: 4 https://launchpadlibrarian.net: 4 https://learn.microsoft.com: 4 https://lf-opendaylight.atlassian.net: 4 https://lists.exim.org: 4 https://lists.quagga.net: 4 https://lists.samba.org: 4 https://lists.schedmd.com: 4 https://loopback.io: 4 https://mail.zope.org: 4 https://makandracards.com: 4 https://mariadb.com: 4 https://mosquitto.org: 4 https://mp.weixin.qq.com: 4 https://octobercms.com: 4 https://openfga.dev: 4 https://oxidforge.org: 4 https://pear.php.net: 4 https://pentest.com.tr: 4 https://phab.bots.miraheze.wiki: 4 https://plugins.craftcms.com: 4 https://polarssl.org: 4 http://spreecommerce.com: 4 https://projects.theforeman.org: 4 https://public-inbox.org: 4 https://rancher.com: 4 https://redmine.openinfosecfoundation.org: 4 https://repo.mercurial-scm.org: 4 https://rhinosecuritylabs.com: 4 https://runkit.com: 4 https://sansec.io: 4 https://savannah.gnu.org: 4 https://savannah.nongnu.org: 4 https://seanmonstar.com: 4 https://security.FreeBSD.org: 4 https://seemann.io: 4 https://sl1nki.page: 4 https://sources.debian.org: 4 https://stackdiary.com: 4 https://support.hazelcast.com: 4 https://supportportal.juniper.net: 4 https://support.servicenow.com: 4 https://swarm.ptsecurity.com: 4 https://tauri.app: 4 https://thecybergeek.co.uk: 4 https://tib36.github.io: 4 http://storm.apache.org: 4 https://trovent.github.io: 4 https://trovent.io: 4 https://uima.apache.org: 4 https://unit42.paloaltonetworks.com: 4 https://unparalleled.eu: 4 http://support.blackberry.com: 4 https://uwsgi-docs.readthedocs.io: 4 https://vufind.org: 4 https://vulmon.com: 4 https://vuln.go.dev: 4 https://vuln.ryotak.net: 4 https://websecnerd.blogspot.in: 4 https://wha13.github.io: 4 https://whitehatck01.blogspot.com: 4 https://wiki.mageia.org: 4 https://wiki.phpbb.com: 4 https://wp-crontrol.com: 4 https://www.ag-grid.com: 4 https://www.apiman.io: 4 https://www.bentley.com: 4 https://www.bitvise.com: 4 https://www.bluetooth.com: 4 https://www.bookstackapp.com: 4 https://www.cnblogs.com: 4 https://www.cnvd.org.cn: 4 https://www.code-intelligence.com: 4 https://www.compass-security.com: 4 https://www.django-cms.org: 4 https://www.doctrine-project.org: 4 https://www.eclipse.org: 4 https://www.elastic.co: 4 https://www.envoyproxy.io: 4 https://www.exploitalert.com: 4 https://www.fastly.com: 4 https://www.fzi.de: 4 https://www.getastra.com: 4 https://www.gnutls.org: 4 https://www.graylog.org: 4 https://www.htbridge.com: 4 https://www.kingkk.com: 4 https://www.libssh.org: 4 https://www.nccgroup.trust: 4 https://www.nginx.com: 4 https://www.openpolicyagent.org: 4 https://www.pac4j.org: 4 https://www.pgadmin.org: 4 https://www.phpmyfaq.de: 4 https://www.puppet.com: 4 https://www.roundup-tracker.org: 4 https://www.rubydoc.info: 4 https://www.saltstack.com: 4 https://www.secpod.com: 4 https://www.shielder.it: 4 https://www.smarty.net: 4 https://www.smilecdr.com: 4 https://www.soluble.ai: 4 https://www.star123.top: 4 https://www.sumor.top: 4 https://www.swascan.com: 4 https://www.teeworlds.com: 4 https://www.verot.net: 4 https://www.videolan.org: 4 https://www.xwiki.org: 4 https://www.yuque.com: 4 https://yarnpkg.com: 4 https://zeppelin.apache.org: 4 http://tools.cisco.com: 4 http://unomi.apache.org: 4 http://web2py.com: 4 http://web.mit.edu: 4 http://www.apache.org: 4 http://www.chiark.greenend.org.uk: 4 http://www.cloudbees.com: 4 http://www.conostix.com: 4 http://www.daimacn.com: 4 http://www.dojotoolkit.org: 4 http://www.igniterealtime.org: 4 http://www.logilab.org: 4 http://www.openssl.org: 4 http://www.otrs.com: 4 http://www.ruby-lang.org: 4 http://www.swi-prolog.org: 4 http://www.yuiblog.com: 4 http://xenbits.xenproject.org: 4 http://xerces.apache.org: 4 http://yuilibrary.com: 4 http://zaranshaikh.blogspot.com: 4 https://checkmk.com: 4 https://support.eset.com: 4 https://git.canopsis.net: 4 https://www.forescout.com: 4 https://www.mitel.com: 4 https://www.cert-in.org.in: 4 https://www.schneider-elektronik.de: 4 https://security-advisory.acronis.com: 4 http://activemq.2283324.n4.nabble.com: 3 http://apache-ignite-developers.2346864.n4.nabble.com: 3 http://baraktawily.blogspot.co.il: 3 http://blog.clamav.net: 3 http://blog.diniscruz.com: 3 http://blog.kotowicz.net: 3 http://blog.neargle.com: 3 http://blog.nodejs.org: 3 http://blog.phusion.nl: 3 http://blog.talosintelligence.com: 3 http://borgbackup.readthedocs.io: 3 http://bugs.proftpd.org: 3 http://cgit.drupalcode.org: 3 http://erlang.org: 3 http://extplorer.net: 3 http://foxglovesecurity.com: 3 http://freshmeat.net: 3 http://git.haproxy.org: 3 http://googlechromereleases.blogspot.de: 3 http://h20000.www2.hp.com: 3 http://hg.prosody.im: 3 http://htmlpurifier.org: 3 http://itrc.hp.com: 3 http://kalilinux.co: 3 http://lists.debian.org: 3 http://lists.horde.org: 3 http://lists.suse.com: 3 http://lists.ucc.gu.uwa.edu.au: 3 http://lkml.iu.edu: 3 http://lkml.org: 3 http://mail.python.org: 3 http://mercurial.selenic.com: 3 http://miki.it: 3 http://openafs.org: 3 http://openocd.zylin.com: 3 http://phpmyadmin.svn.sourceforge.net: 3 http://poi.apache.org: 3 http://redmine.lighttpd.net: 3 http://repo.or.cz: 3 http://roundcube.net: 3 http://roy.marples.name: 3 http://rubyforge.org: 3 https://aka.ms: 3 http://sakurity.com: 3 https://blog.filippo.io: 3 https://blog.ircmaxell.com: 3 https://blog.justinbull.ca: 3 https://blog.npmjs.org: 3 https://blogs.akamai.com: 3 https://blog.sonatype.com: 3 https://blog.spip.net: 3 https://blog.srcclr.com: 3 https://blog.trendmicro.com: 3 https://brakemanscanner.org: 3 https://bridge.grumpy-troll.org: 3 https://buer.haus: 3 https://bugs.dojotoolkit.org: 3 https://bugs.openjdk.java.net: 3 https://bugs.otr.im: 3 https://bugzilla.proxmox.com: 3 https://collectiveidea.com: 3 https://connect2id.com: 3 https://coredns.io: 3 https://cosmosofcyberspace.github.io: 3 https://delvingbitcoin.org: 3 https://devco.re: 3 https://dev.icinga.org: 3 https://docs.cometbft.com: 3 https://docs.couchbase.com: 3 https://docs.getindico.io: 3 https://dovecot.org: 3 https://download.samba.org: 3 https://drupal.org: 3 https://forge.glpi-project.org: 3 https://foxglovesecurity.com: 3 https://ftp.suse.com: 3 https://git.blender.org: 3 https://git.enlightenment.org: 3 https://git.musl-libc.org: 3 https://git.samba.org: 3 https://git.zx2c4.com: 3 https://grsecurity.net: 3 https://hackdefense.com: 3 https://hg.mozilla.org: 3 https://hibernate.atlassian.net: 3 https://ics-cert.us-cert.gov: 3 https://int21.de: 3 https://issues.igniterealtime.org: 3 https://issues.rpath.com: 3 https://kb.juniper.net: 3 https://kde.org: 3 https://kyberslash.cr.yp.to: 3 https://labs.twistedmatrix.com: 3 https://ledgersmb.org: 3 https://lib.openmpt.org: 3 https://lists.dns-oarc.net: 3 https://lists.fedorahosted.org: 3 https://lists.linuxfoundation.org: 3 https://lists.openwall.net: 3 https://lists.xapian.org: 3 https://minerva.crocs.fi.muni.cz: 3 https://moinmo.in: 3 https://mta.openssl.org: 3 https://npmjs.com: 3 http://somevulnsofadlab.blogspot.com: 3 https://oss-fuzz.com: 3 https://oss.oracle.com: 3 https://otrs.com: 3 http://source.git-annex.branchable.com: 3 https://poi.apache.org: 3 https://pub.dev: 3 https://quickview.cloudapps.cisco.com: 3 http://src.chromium.org: 3 https://robotattack.org: 3 https://security.googleblog.com: 3 https://shells.systems: 3 https://sintonen.fi: 3 https://skia.googlesource.com: 3 https://somevulnsofadlab.blogspot.com: 3 https://spreecommerce.com: 3 https://staaldraad.github.io: 3 https://store.shopware.com: 3 https://sumofpwn.nl: 3 https://support.lenovo.com: 3 https://trac.osgeo.org: 3 https://trac.webkit.org: 3 https://trac.xiph.org: 3 https://udiniya.wordpress.com: 3 http://support.novell.com: 3 https://weechat.org: 3 https://withatwist.dev: 3 https://www.codeaurora.org: 3 https://www.dovecot.org: 3 https://www.exim.org: 3 https://www.foxmole.com: 3 https://www.genivia.com: 3 https://www.gosecure.net: 3 https://www.home-assistant.io: 3 https://www.mandriva.com: 3 https://www.quagga.net: 3 https://www.tarlogic.com: 3 https://www.varnish-cache.org: 3 https://www.vupen.com: 3 https://xorl.wordpress.com: 3 https://zenar.io: 3 https://zone.spip.net: 3 https://zyan.scripts.mit.edu: 3 http://theforeman.org: 3 http://tracker.firebirdsql.org: 3 http://trubka.network.cz: 3 http://wiki.mahara.org: 3 http://wordpress.org: 3 http://www.cacti.net: 3 http://www.ec-cube.net: 3 http://www.eterna.com.au: 3 http://www.eweek.com: 3 http://www.ghostscript.com: 3 http://www.h5l.org: 3 http://www.ietf.org: 3 http://www.information-security.fr: 3 http://www.iwantacve.cn: 3 http://www.links.org: 3 http://www.mutt.org: 3 http://www.slackware.com: 3 http://www.thewildbeast.co.uk: 3 http://www.tornadoweb.org: 3 http://znuny.com: 3 https://apps.apple.com: 3 https://dontvacuum.me: 3 https://www.wiz.io: 3 https://tsc-soft.co.jp: 3 http://2016.hack.lu: 2 http://agrrrdog.blogspot.com: 2 http://alexcrack.com: 2 http://anonscm.debian.org: 2 http://apache-spark-developers-list.1001551.n3.nabble.com: 2 http://appwrite.com: 2 http://archive.hack.lu: 2 http://argo.com: 2 http://bandoche.com: 2 http://bilishim.com: 2 http://blackboxexporter.com: 2 http://blog.amossys.fr: 2 http://blog.angularjs.org: 2 http://blog.apps.npr.org: 2 http://blog.bestpractical.com: 2 http://blog.checkpoint.com: 2 http://blog.csdn.net: 2 http://blog.datomic.com: 2 http://blog.emaze.net: 2 http://blog.intothesymmetry.com: 2 http://blog.portswigger.net: 2 http://blog.recurity-labs.com: 2 http://blog.securelayer7.net: 2 http://boltcms.com: 2 http://breaktoprotect.blogspot.com: 2 http://bugs.jython.org: 2 http://bugs.ledger-cli.org: 2 http://bugs.php.net: 2 http://buildbot.net: 2 http://bzr.linuxfoundation.org: 2 http://ca17.com: 2 http://census-labs.com: 2 http://centreon.com: 2 http://ceriksen.com: 2 http://chargen.matasano.com: 2 http://chrony.tuxfamily.org: 2 http://code.call-cc.org: 2 http://collectiveidea.com: 2 http://commons.apache.org: 2 http://community.ca.com: 2 http://community.impresscms.org: 2 http://cpansearch.perl.org: 2 http://craft.com: 2 http://crafter.com: 2 http://cve.mitre.org: 2 http://cvs.moodle.org: 2 http://cvsweb.netbsd.org: 2 http://cxsecurity.com: 2 http://cyberworldmirror.com: 2 http://davidsopaslabs.blogspot.com: 2 http://dev.deluge-torrent.org: 2 http://dfn.dl.sourceforge.net: 2 http://directory.apache.org: 2 http://doc.akka.io: 2 http://doc.powerdns.com: 2 http://doc.scrapy.org: 2 http://doc.silverstripe.org: 2 http://docs.info.apple.com: 2 http://docs.python-requests.org: 2 http://docs.saltstack.com: 2 http://docs.withknown.com: 2 http://dolibarr.com: 2 http://dotclear.org: 2 http://dx.doi.org: 2 http://elixir.ematia.de: 2 http://embed.plnkr.co: 2 http://en.0day.today: 2 http://encode.com: 2 http://etcd.com: 2 http://ethereum.com: 2 http://evilpacket.net: 2 http://exfiltrated.com: 2 http://extendedsubset.com: 2 http://fitnesse.org: 2 http://flyingmana.de: 2 http://freecode.com: 2 http://froala.com: 2 http://ghost.com: 2 http://ghost.org: 2 http://gilacms.com: 2 http://git-blame.blogspot.com: 2 http://git.deluge-torrent.org: 2 http://githubcommherflower.com: 2 http://git.musl-libc.org: 2 http://git.postgresql.org: 2 http://gnutls.org: 2 http://go-ethereum.com: 2 http://gogs.io: 2 http://gollum.com: 2 http://grailsblog.objectcomputing.com: 2 http://groovy-lang.org: 2 http://grsecurity.net: 2 http://ha.cker.info: 2 http://haxx.ml: 2 http://heartex.com: 2 http://help.plot.ly: 2 http://hidden-one.co.in: 2 http://holisticinfosec.org: 2 http://hsqldb.org: 2 http://icecoder.com: 2 http://ikiwiki.info: 2 http://info.tiki.org: 2 http://jakarta.apache.org: 2 http://jeecg-boot.com: 2 http://jinja.pocoo.org: 2 http://joplin.com: 2 http://juddi.apache.org: 2 http://labelstud.io: 2 http://labs.mwrinfosecurity.com: 2 http://lambdaops.com: 2 http://langchain.com: 2 http://lavalite.com: 2 http://lcamtuf.blogspot.ca: 2 http://lesscss.org: 2 http://libvirt.org: 2 http://liferay.com: 2 http://linux.oracle.com: 2 http://lists.gnupg.org: 2 http://lists.live555.com: 2 http://lists.mutt.org: 2 http://lists.roaringpenguin.com: 2 http://lists.typo3.org: 2 http://logback.qos.ch: 2 http://lua.2524044.n2.nabble.com: 2 http://lxml.de: 2 http://magento.com: 2 http://maven.apache.org: 2 http://mina.apache.org: 2 http://mosquitto.org: 2 http://mumble.info: 2 http://n8.tumblr.com: 2 http://nevado.skyscreamer.org: 2 http://ngenuity-is.com: 2 http://nginx.org: 2 http://nodejs.com: 2 http://openapi-generator.com: 2 http://openbsd.org: 2 http://opennlp.apache.org: 2 http://ph0rse.me: 2 http://phpmyadmin.net: 2 http://portals.apache.org: 2 http://processwire.com: 2 http://prometheus.com: 2 http://pyload.com: 2 http://pypi.doubanio.com: 2 http://pypinksign.com: 2 http://python.6.x6.nabble.com: 2 http://qcubed.com: 2 http://rails.lighthouseapp.com: 2 http://raneto.com: 2 http://request-baskets.com: 2 http://resque.com: 2 http://roundup.svn.sourceforge.net: 2 http://rubygems.org: 2 http://ruffsecurity.blogspot.com: 2 https://0ang3el.blogspot.ru: 2 https://2018.zeronights.ru: 2 https://98587329.github.io: 2 https://aaltodoc.aalto.fi: 2 https://accumulo.apache.org: 2 https://acloudtree.com: 2 https://adamcaudill.com: 2 https://advisories.gitlab.com: 2 https://advisories.octopus.com: 2 https://aetsu.github.io: 2 https://agent-js.icp.xyz: 2 http://sailsjs.org: 2 https://aisec.today: 2 https://aleksis.org: 2 https://alesandroortiz.com: 2 https://alexsecurity.rocks: 2 https://alicangonullu.org: 2 https://anisiosantos.me: 2 https://anongit.mindrot.org: 2 https://ant.apache.org: 2 https://antmedia.io: 2 https://apidoc.gitee.com: 2 https://apidock.com: 2 https://apiiro.com: 2 https://app.intigriti.com: 2 https://appwrite.io: 2 https://atlaskit.atlassian.com: 2 https://attackerkb.com: 2 https://at-trustit.tuv.at: 2 https://autobahn.readthedocs.io: 2 https://avideo.tube: 2 https://backbonejs.org: 2 https://bad.code.blog: 2 https://badpackets.net: 2 https://bandit.readthedocs.io: 2 https://baomidou.com: 2 https://beanvalidation.org: 2 https://becomepentester.blogspot.ae: 2 https://bishopfox.com: 2 https://bitbucket.hdfgroup.org: 2 https://bittherapy.net: 2 https://blakeembrey.com: 2 https://blitiri.com.ar: 2 https://blog.0xzon.dev: 2 https://blog.appsecco.com: 2 https://blog.bentkowski.info: 2 https://blog.bssi.fr: 2 https://blog.caller.xyz: 2 https://blog.chebuya.com: 2 https://blog.compass-security.com: 2 https://blog.daniel-ruf.de: 2 https://blog.effectrenan.com: 2 https://blog.ethereum.org: 2 https://blog.exodusintel.com: 2 https://blog.gdssecurity.com: 2 https://blog.gradle.org: 2 https://blog.hackeriet.no: 2 https://blog.hackingforce.com.br: 2 https://blog.ipfs.io: 2 https://blog.isosceles.com: 2 https://blog.jiguang.xyz: 2 https://blog.librenms.org: 2 https://blog.litespeedtech.com: 2 https://blog.mevsec.com: 2 https://blog.nettitude.com: 2 https://blog.orange.tw: 2 https://blog.ostorlab.co: 2 https://blog.phpbb.com: 2 https://blog.pusher.com: 2 https://blog.qualys.com: 2 https://blog.sentry.io: 2 https://blogs.gnome.org: 2 https://blog.slonser.info: 2 https://blog.smithsecurity.biz: 2 https://blogs.opera.com: 2 https://blogs.sap.com: 2 https://blog.truesec.com: 2 https://blog.xss.am: 2 https://boats.gitlab.io: 2 https://boho.or.kr: 2 https://book.hacktricks.xyz: 2 https://bookstackapp.com: 2 https://brave.com: 2 https://breakandpray.com: 2 https://bsg.tech: 2 https://bto.bluecoat.com: 2 https://bugs.bitlbee.org: 2 https://bugs.jqueryui.com: 2 https://bugs.libssh.org: 2 https://bugs.limesurvey.org: 2 https://bugs.otrs.org: 2 https://bugs.ruby-lang.org: 2 https://bugzilla.libav.org: 2 https://bundler.io: 2 https://burninatorsec.blogspot.com: 2 https://buttercup.pw: 2 https://caddy.community: 2 https://caddyserver.com: 2 http://scala-lang.org: 2 https://cardaci.xyz: 2 https://carl1l.github.io: 2 http://scarybeastsecurity.blogspot.de: 2 https://casdoor.org: 2 https://c-c-a.org: 2 https://cdn2.hubspot.net: 2 https://cdn.datatables.net: 2 https://cdn.sheetjs.com: 2 https://census-labs.com: 2 https://cert.enea.pl: 2 https://cgit.freebsd.org: 2 https://cgit.freedesktop.org: 2 https://chaos.social: 2 https://chartkick.com: 2 https://checkstyle.org: 2 https://chmod744.super.site: 2 https://chocapikk.com: 2 https://clerk.com: 2 https://clojars.org: 2 https://cloud-trustit.spp.at: 2 https://codeburst.io: 2 https://code.djangoproject.com: 2 https://code.jeremyevans.net: 2 https://codex.bbpress.org: 2 https://codex.buddypress.org: 2 https://com0t.github.io: 2 https://commonmark.thephpleague.com: 2 https://community.contao.org: 2 https://community.developer.atlassian.com: 2 https://community.gravitee.io: 2 https://community.traefik.io: 2 https://community.veracode.com: 2 https://compass-security.com: 2 https://concretecms.com: 2 https://contrastsecurity.com: 2 https://cortexmetrics.io: 2 https://cowtowncoder.medium.com: 2 https://cratedb.com: 2 https://cryptosense.com: 2 https://csrc.nist.gov: 2 https://cube01.io: 2 https://cupc4k3.lol: 2 https://cure53.de: 2 https://cve.anastasi.link: 2 https://cve.naver.com: 2 https://cve.nstsec.com: 2 https://cyllective.com: 2 https://danielfett.de: 2 https://dannewitz.ninja: 2 https://darkbit.io: 2 https://datasette.io: 2 https://datnlq.gitbook.io: 2 https://deadsh0t.medium.com: 2 https://demo.ripstech.com: 2 https://deps.dev: 2 https://dev.deluge-torrent.org: 2 https://devdocs.magento.com: 2 https://devel0pment.de: 2 https://developer.apple.com: 2 https://developer.hashicorp.com: 2 https://developer.jboss.org: 2 https://developers.cloudflare.com: 2 https://developers.google.com: 2 https://developer.shopware.com: 2 https://developers.yubico.com: 2 https://developer.woocommerce.com: 2 https://develop.sentry.dev: 2 https://dev.gajim.org: 2 https://dev.to: 2 https://diff.coditsu.io: 2 https://diff.hex.pm: 2 https://digi.ninja: 2 https://directory.apache.org: 2 https://directus.io: 2 https://discourse.vtk.org: 2 https://discuss.istio.io: 2 https://dist.apache.org: 2 https://dist.plone.org: 2 https://dnsdist.org: 2 https://doc.clickup.com: 2 https://doc.rust-lang.org: 2 https://docs.centreon.com: 2 https://docs.ceph.com: 2 https://docs.ckan.org: 2 https://docs.dapr.io: 2 https://docs.dask.org: 2 https://docs.dependencytrack.org: 2 https://docs.directus.io: 2 https://docs.flyte.org: 2 https://docs.gitlab.com: 2 https://docs.gofiber.io: 2 https://docs.gravityforms.com: 2 https://docs.libp2p.io: 2 https://docs.locust.io: 2 https://docs.mulesoft.com: 2 https://docs.nautobot.com: 2 https://docs.nginx.com: 2 https://docs.parseplatform.org: 2 https://docs.pylonsproject.org: 2 https://docs.r3.com: 2 https://docs.saltproject.io: 2 https://docs.scrapy.org: 2 https://docs.securesauce.dev: 2 https://docs.sigstore.dev: 2 https://docs.snowflake.com: 2 https://docs.spring.io: 2 https://docs.sqlalchemy.org: 2 https://docs.sympy.org: 2 https://docs.tigergraph.com: 2 https://docs.totaljs.com: 2 https://docs.velociraptor.app: 2 https://docs.veracode.com: 2 https://docs.vyperlang.org: 2 https://docs.wagtail.io: 2 https://documentation.concrete5.org: 2 https://documentation.wazuh.com: 2 https://doi.org: 2 https://dojotoolkit.org: 2 https://dotnetnuke.codeplex.com: 2 https://downloads.asterisk.org: 2 https://dubell.io: 2 https://dustri.org: 2 https://dwrensha.github.io: 2 http://security.360.cn: 2 http://security.openttd.org: 2 http://securitywarrior9.blogspot.com: 2 https://edg.io: 2 https://edhunter484.medium.com: 2 https://eldstal.se: 2 https://electron.atom.io: 2 https://elgg.org: 2 https://emberjs.com: 2 https://emily.id.au: 2 https://en.bandisoft.com: 2 https://en.bitcoin.it: 2 https://engindemirbilek.github.io: 2 https://en.osdn.jp: 2 https://epadillas.github.io: 2 https://erlef.github.io: 2 https://eslam.io: 2 https://exceptionfactory.com: 2 https://experienceleague.adobe.com: 2 https://exploit-db.com: 2 https://expressjs.com: 2 https://fastapi-admin-pro.long2ice.io: 2 https://fbdhhhh47.github.io: 2 https://febin0x4e4a.blogspot.com: 2 https://febin0x4e4a.wordpress.com: 2 https://febinj.medium.com: 2 https://ferrous-systems.com: 2 https://fgsec.net: 2 https://filezilla-project.org: 2 https://fisheye6.atlassian.com: 2 https://flask-limiter.readthedocs.io: 2 https://floqast.com: 2 https://flowiseai.com: 2 https://flyd.uk: 2 https://flyingmana.de: 2 https://fmyyy1.github.io: 2 https://forge.centreon.com: 2 https://forge.typo3.org: 2 https://forum.codeigniter.com: 2 https://forum.datomic.com: 2 https://forum.ksec.co.uk: 2 https://forum.netgate.com: 2 https://forum.openzeppelin.com: 2 https://forums.couchbase.com: 2 https://forum.silverstripe.org: 2 https://forums.swift.org: 2 https://fossies.org: 2 https://freemarker.apache.org: 2 https://frycos.github.io: 2 https://fuo.fi: 2 https://fusionauth.io: 2 https://gainsec.com: 2 https://gauravnarwani.com: 2 https://genix.me: 2 https://geoserver.org: 2 https://gerrit.asterisk.org: 2 https://gerrit.ovirt.org: 2 https://getcomposer.org: 2 https://getgrav.org: 2 https://getkirby.com: 2 https://getlaminas.org: 2 https://getlektor.com: 2 https://git-annex.branchable.com: 2 https://git.fedorahosted.org: 2 https://github.com.mattermost: 2 https://git.libssh.org: 2 https://git.oschina.net: 2 https://git.php.net: 2 https://git.postgresql.org: 2 https://git.reviewboard.kde.org: 2 https://git.sdaoden.eu: 2 https://git.xiph.org: 2 https://gld.mcphail.uk: 2 https://glitch.com: 2 https://gluu.org: 2 https://go2docs.graylog.org: 2 https://godoc.org: 2 https://gohugo.io: 2 https://go-review.git.corp.google.com: 2 https://graz.pure.elsevier.com: 2 https://greysec.net: 2 https://groovy-lang.org: 2 https://groups.drupal.org: 2 https://grumpz.net: 2 https://guides.spreecommerce.org: 2 https://gultsch.de: 2 https://hackerdna.com: 2 https://hacker.soarescorp.com: 2 https://hackers.report: 2 https://hackinglab.cz: 2 https://hackmysystems.tumblr.com: 2 https://hackpuntes.com: 2 https://hansmi.ch: 2 https://hapifhir.io: 2 https://help.ecostruxureit.com: 2 https://help.egroupware.org: 2 https://help.mulesoft.com: 2 https://help.panic.com: 2 https://help.passbolt.com: 2 https://help.rapid7.com: 2 https://help.sonatype.com: 2 http://shindig.apache.org: 2 http://shiro.apache.org: 2 https://homakov.blogspot.ru: 2 https://html5lib.readthedocs.io: 2 https://httpwg.org: 2 https://hub.docker.com: 2 https://hugegraph.apache.org: 2 https://i.blackhat.com: 2 https://ibm.github.io: 2 https://igniterealtime.atlassian.net: 2 http://silverpeas.com: 2 https://imgur.com: 2 https://infosec.exchange: 2 https://infra.spec.whatwg.org: 2 https://inhann.top: 2 https://inlong.apache.org: 2 https://insinuator.net: 2 https://intrix.com.au: 2 https://ipython.org: 2 https://ipython.readthedocs.io: 2 https://irrd.readthedocs.io: 2 https://isec.pl: 2 https://issues.ibexa.co: 2 https://issues.jasig.org: 2 https://issues.jenkins.io: 2 https://issues.sonatype.org: 2 https://it-sec.de: 2 https://itsmeanonartist.tech: 2 https://jadaptive.com: 2 https://janino-compiler.github.io: 2 https://java.net: 2 https://jay-from-future.github.io: 2 https://jenkins-ci.org: 2 https://jetpack.com: 2 https://jinja.palletsprojects.com: 2 https://jinmu1108.github.io: 2 https://jira.onosproject.org: 2 https://jira.opendaylight.org: 2 https://jira.sonarsource.com: 2 https://jira.whamcloud.com: 2 https://jquery.com: 2 https://jqueryui.com: 2 https://jqueryvalidation.org: 2 https://jsfiddle.net: 2 https://jub0bs.com: 2 https://junit.org: 2 https://jvndb.jvn.jp: 2 https://kafka.apache.org: 2 https://kb.hitcon.org: 2 https://kb.netapp.com: 2 http://skipper.com: 2 https://koji.fedoraproject.org: 2 https://korelogic.com: 2 https://koz.io: 2 https://labanskoller.se: 2 https://labs.detectify.com: 2 https://lab.wallarm.com: 2 http://slackware.com: 2 https://landave.io: 2 https://laravel-admin.org: 2 https://latestpcsolution.wordpress.com: 2 https://launchpad.support.sap.com: 2 https://laworigin.github.io: 2 https://layui.dev: 2 https://learn.snyk.io: 2 https://lednerb.de: 2 https://lessonsec.com: 2 https://libgit2.org: 2 https://libnmap.readthedocs.io: 2 https://lib.rs: 2 https://lightning.network: 2 https://limpidsecurity.pl: 2 https://linkerd.io: 2 https://linotp.org: 2 https://lists.cncf.io: 2 https://lists.denx.de: 2 https://lists.ffmpeg.org: 2 https://lists.horde.org: 2 https://lists.mindrot.org: 2 https://lists.osgeo.org: 2 https://lists.qt-project.org: 2 https://lists.w3.org: 2 https://lists.zx2c4.com: 2 https://locutus.io: 2 https://lutrasecurity.com: 2 https://lycshub.github.io: 2 https://m3n0sd0n4ld.github.io: 2 https://mail-archives.us.apache.org: 2 https://mail.gnome.org: 2 https://mailman-mail5.webfaction.com: 2 http://smalruby.jp: 2 https://marketplace.atlassian.com: 2 https://martinthomson.github.io: 2 https://mat4mee.notion.site: 2 https://matt.ucc.asn.au: 2 https://maven.apache.org: 2 https://mayaseven.com: 2 https://media.dedaub.com: 2 https://mensfeld.pl: 2 https://meshery.io: 2 https://meta.wikimedia.org: 2 https://meterpreter.org: 2 https://minhnq22.medium.com: 2 https://mitmproxy.org: 2 https://mitogen.networkgenomics.com: 2 https://mksec.tk: 2 https://mlflow.org: 2 https://modwsgi.readthedocs.io: 2 https://monicz.dev: 2 https://morehouse.github.io: 2 https://mostwanted002.cf: 2 https://mouha.be: 2 https://movermeyer.com: 2 https://msrc-blog.microsoft.com: 2 https://mthbernardes.github.io: 2 https://mulch.dev: 2 https://my.f5.com: 2 https://my.goanywhere.com: 2 https://nablarch.atlassian.net: 2 https://nakedsecurity.sophos.com: 2 https://nandynarwhals.org: 2 https://narrow-oatmeal-0c0.notion.site: 2 https://nasa.github.io: 2 https://nest.pijul.com: 2 https://nghttp2.org: 2 https://nginx.org: 2 https://nlnetlabs.nl: 2 https://nmap.org: 2 https://nodemailer.com: 2 https://node-postgres.com: 2 https://nostarttls.secvuln.info: 2 https://notes.netbytesec.com: 2 https://note.youdao.com: 2 https://note.zhaoj.in: 2 https://nova.app: 2 https://nowotarski.info: 2 https://nozero.io: 2 https://nsfocusglobal.com: 2 https://numanozdemir.com: 2 http://snyk.io: 2 https://objectcomputing.com: 2 https://octoprint.org: 2 https://okankurtulus.com.tr: 2 https://omespino.com: 2 https://onekey.com: 2 https://openai.com: 2 https://openbase.com: 2 https://opencast.jira.com: 2 https://opencirt.com: 2 https://openjdk.org: 2 https://openmeetings.apache.org: 2 https://opennms.atlassian.net: 2 https://opensearch.org: 2 https://opensource.fast-report.com: 2 https://openssf.org: 2 https://opentelemetry.io: 2 https://opsecx.com: 2 https://orc.apache.org: 2 https://oroinc.com: 2 https://oryx-embedded.com: 2 https://oss-security.openwall.narkive.com: 2 https://osv.dev: 2 http://sourceware.org: 2 https://owncloud.com: 2 https://packaging.python.org: 2 https://pagehelper.github.io: 2 https://panda002.hashnode.dev: 2 https://papers.mathyvanhoef.com: 2 http://sparkjava.com: 2 https://payatu.com: 2 https://peckshield.com: 2 https://pentesterlab.com: 2 https://people.kingsds.network: 2 https://petl.readthedocs.io: 2 https://piraeus.io: 2 https://plotly.com: 2 https://plugins.gradle.org: 2 https://plus.google.com: 2 https://pony7.fr: 2 https://popalltheshells.medium.com: 2 https://powerful-bulb-c36.notion.site: 2 https://prestosql.io: 2 https://pretalx.com: 2 https://prismjs.com: 2 https://privatebin.info: 2 https://programmer.help: 2 https://projects.duckcorp.org: 2 https://prophaze.com: 2 https://publicobject.com: 2 https://pubs.acs.org: 2 https://pugjs.org: 2 https://pulsar.apache.org: 2 https://puppetlabs.com: 2 https://pydio.com: 2 https://pythonhosted.org: 2 https://python-hyper.org: 2 https://quilljs.com: 2 https://quiltmc.org: 2 https://r0.haxors.org: 2 https://ranchermanager.docs.rancher.com: 2 https://rankmath.com: 2 https://rastating.github.io: 2 https://ratpack.io: 2 https://redmine.lighttpd.net: 2 https://reportportal.io: 2 https://repo.saltproject.io: 2 https://researchgate.net: 2 https://research.hisolutions.com: 2 https://research.insecurelabs.org: 2 https://restsharp.dev: 2 https://review.whamcloud.com: 2 https://rhodecode.com: 2 https://rhynorater.github.io: 2 https://robertheaton.com: 2 https://rodelllemit.medium.com: 2 https://rootdaemon.com: 2 https://roumenpetrov.info: 2 https://rpyc.readthedocs.io: 2 https://ruby-doc.org: 2 https://rudnkh.me: 2 https://sahildhar.github.io: 2 https://sakurity.com: 2 https://samuzora.com: 2 https://saturncloud.io: 2 https://sca.analysiscenter.veracode.com: 2 https://scalyr-static.s3.amazonaws.com: 2 https://scikit-learn.org: 2 https://scnps.co: 2 https://scratch.mit.edu: 2 https://sec.stealthcopter.com: 2 https://secure1.securityspace.com: 2 https://security-garage.com: 2 https://security.gradle.com: 2 https://securitylabs.datadoghq.com: 2 https://security.paloaltonetworks.com: 2 https://securitypitfalls.wordpress.com: 2 https://securitytrails.com: 2 https://segment.com: 2 https://sektioneins.de: 2 https://sethmlarson.dev: 2 https://setuptools.pypa.io: 2 https://shattered.io: 2 https://sheetjs.com: 2 https://shielder.it: 2 https://shiro.apache.org: 2 https://siebene.github.io: 2 https://silverpeas.org: 2 https://skalatan.de: 2 https://skerritt.blog: 2 https://skii.dev: 2 https://skywalking.apache.org: 2 https://sling.apache.org: 2 https://smshrimant.com: 2 https://snicco.io: 2 https://softwaresupport.hpe.com: 2 https://solidus.io: 2 https://sonarsource.atlassian.net: 2 https://sources.debian.net: 2 https://spacemesh.io: 2 https://specifications.freedesktop.org: 2 https://spec.matrix.org: 2 https://src.fedoraproject.org: 2 https://srcincite.io: 2 https://stackstorm.com: 2 https://staging-website.elastic.co: 2 https://stash.kopano.io: 2 https://subrion.org: 2 https://support.aerospike.com: 2 https://support.ca.com: 2 https://support.citrix.com: 2 https://support.confluent.io: 2 https://support.contrastsecurity.com: 2 https://support.delphix.com: 2 https://support.herodevs.com: 2 https://support.snyk.io: 2 https://sw.aveva.com: 2 https://sylabs.io: 2 https://sylius.com: 2 https://sympa-community.github.io: 2 https://sysdig.com: 2 https://syss.de: 2 https://systeminformation.io: 2 https://systemweakness.com: 2 https://tada.github.io: 2 https://tadayoshi-sato.medium.com: 2 https://tantosec.com: 2 https://tches.iacr.org: 2 https://techblog.wikimedia.org: 2 https://technet.microsoft.com: 2 https://tempered.works: 2 https://tf1t.gitbook.io: 2 https://thehackernews.com: 2 https://the-it-wonders.blogspot.com: 2 https://thelia.net: 2 https://threat.tevora.com: 2 https://threema.ch: 2 https://tickets.puppetlabs.com: 2 https://tiki.org: 2 http://stimulsoft.com: 2 https://tprynn.github.io: 2 https://tracker.die-offenbachs.homelinux.org: 2 https://tracker.moodle.org: 2 https://tracker.phpbb.com: 2 https://tracker.zkoss.org: 2 https://trac.xapian.org: 2 https://trafficcontrol.apache.org: 2 https://travis-ci.com: 2 https://trends.builtwith.com: 2 http://strimzi.com: 2 https://trino.io: 2 https://tristartom.github.io: 2 https://truedigitalsecurity.com: 2 https://trufflesecurity.com: 2 https://trungvm.gitbook.io: 2 https://trust.neo4j.com: 2 https://tryhexadecimal.com: 2 https://tttang.com: 2 https://unbound.net: 2 https://unpoly.com: 2 https://updates.playhive.com: 2 https://updates.snyk.io: 2 http://support.zeus.com: 2 http://suricata-ids.org: 2 https://us-cert.cisa.gov: 2 https://vapor.codes: 2 https://varnish-cache.org: 2 https://vega.github.io: 2 https://veracode.com: 2 https://verichains.io: 2 https://versprite.com: 2 https://vertx.io: 2 https://vimeo.com: 2 https://vitejs.dev: 2 http://svn.savannah.gnu.org: 2 https://vulners.com: 2 https://w3lib.readthedocs.io: 2 https://warehouse.python.org: 2 https://weakdh.org: 2 https://webassembly.github.io: 2 https://webiny.com: 2 https://webmasters.googleblog.com: 2 https://wger.de: 2 https://wicket.apache.org: 2 https://wiki.duraspace.org: 2 https://wiki.eclipse.org: 2 https://wiki.folio.org: 2 https://wiki.gentoo.org: 2 https://wiki.mercurial-scm.org: 2 https://wiki.opendaylight.org: 2 https://wiki.shibboleth.net: 2 https://winscp.net: 2 https://wintercms.com: 2 https://winterdragon.ca: 2 https://wiremock.org: 2 https://withknown.com: 2 https://wtfsec.org: 2 https://www.activecyber.us: 2 https://www.admidio.org: 2 https://www.adminer.org: 2 https://www.aleksey.com: 2 https://www.alevsk.com: 2 https://www.alluxio.io: 2 https://www.ansible.com: 2 https://www.anyscale.com: 2 https://www.apereo.org: 2 https://www.apolloconfig.com: 2 https://www.baeldung.com: 2 https://www.barracuda.com: 2 https://www.benthamsgaze.org: 2 https://www.bishopfox.com: 2 https://www.bountysource.com: 2 https://www.brics.dk: 2 https://www.broadcom.com: 2 https://www.brzozowski.io: 2 https://www.bsi.bund.de: 2 https://www.ccsq8.com: 2 https://www.certik.com: 2 https://www.chiark.greenend.org.uk: 2 https://www.chtsecurity.com: 2 https://www.cigital.com: 2 https://www.ciphertechs.com: 2 https://www.cloudflare.com: 2 https://www.cloudfoundry.org: 2 https://www.coalfire.com: 2 https://www.concrete5.org: 2 https://www.contrastsecurity.com: 2 https://www.coresecurity.com: 2 https://www.crowdstrike.com: 2 https://www.crushftp.com: 2 https://www.cvedetails.com: 2 https://www.cybereagle.io: 2 https://www.cyfirma.com: 2 https://www.darkreading.com: 2 https://www.ddosi.org: 2 https://www.descope.com: 2 https://www.dnnsoftware.com: 2 https://www.dnspython.org: 2 https://www.docker.com: 2 https://www.doyler.net: 2 https://www.dsecbypass.com: 2 https://www.dubget.com: 2 https://www.economizzer.org: 2 https://www.edwardthomson.com: 2 https://www.elementary-data.com: 2 https://www.enhavo.com: 2 https://www.enterprisedb.com: 2 https://www.equalexperts.com: 2 https://www.erlang.org: 2 https://www.eyecontrol.nl: 2 https://www.fastify.io: 2 https://www.ffmpeg.org: 2 https://www.fireeye.com: 2 https://www.fork-cms.com: 2 https://www.fossil-scm.org: 2 https://www.gitpod.io: 2 https://www.gradio.app: 2 https://www.gsma.com: 2 https://www.hacksecproject.com: 2 https://www.hackthebox.com: 2 https://www.hakaioffensivesecurity.com: 2 https://www.halfdog.net: 2 https://www.haproxy.com: 2 https://www.htmlunit.org: 2 https://www.igniterealtime.org: 2 https://www.ihteam.net: 2 https://www.imperialviolet.org: 2 https://www.impresscms.org: 2 https://www.intruder.io: 2 https://www.isc.org: 2 https://www.jetbrains.com: 2 https://www.jhipster.tech: 2 https://www.lancom-systems.de: 2 https://www.landaire.net: 2 https://www.laravel-enlightn.com: 2 https://www.limesurvey.org: 2 https://www.linotp.org: 2 https://www.logicallysecure.com: 2 https://www.mageni.net: 2 https://www.makotemplates.org: 2 https://www.mandiant.com: 2 https://www.menlosecurity.com: 2 https://www.mgm-sp.com: 2 https://www.monolune.com: 2 https://www.mpg123.de: 2 https://www.nds.ruhr-uni-bochum.de: 2 https://www.netlify.com: 2 https://www.netsarang.com: 2 https://www.ni.com: 2 https://www.nomadproject.io: 2 https://www.nu11secur1ty.com: 2 https://www.obrela.com: 2 https://www.octobot.online: 2 https://www.okta.com: 2 https://www.on-x.com: 2 https://www.op-c.net: 2 https://www.opencart.com: 2 https://www.opencrx.org: 2 https://www.optiv.com: 2 https://www.osvdb.org: 2 https://www.oxeye.io: 2 https://www.palletsprojects.com: 2 https://www.papermerge.com: 2 https://www.paramiko.org: 2 https://www.pethuraj.com: 2 https://www.phoronix.com: 2 https://www.pizzapower.me: 2 https://www.portainer.io: 2 https://www.postfix.org: 2 https://www-prd-trops.events.ibm.com: 2 https://www.prestashop.com: 2 https://www.privacy-wise.com: 2 https://www.projectcalico.org: 2 https://www.purplemet.com: 2 https://www.qemu.org: 2 https://www.raifberkaydincel.com: 2 https://www.rejetto.com: 2 https://www.reportlab.com: 2 https://www.reviewboard.org: 2 https://www.rsaconference.com: 2 https://www.rust-lang.org: 2 https://www.sap.com: 2 https://www.scala-lang.org: 2 https://www.scottbrady91.com: 2 https://www.secureauth.com: 2 https://www.securitymetrics.com: 2 https://www.sektioneins.de: 2 https://www.semantic-mediawiki.org: 2 https://www.shielder.com: 2 https://www.shorebreaksecurity.com: 2 https://www.sidertia.com: 2 https://www.slf4j.org: 2 https://www.sockjs.org: 2 https://www.splunk.com: 2 https://www.symantec.com: 2 https://www.sympa.org: 2 https://www.tcpdump.org: 2 https://www.telerik.com: 2 https://www.terrapin-attack.com: 2 https://www.trustmatta.com: 2 https://www.vandyke.com: 2 https://www.vdoo.com: 2 https://www.viralpatel.net: 2 https://www.virtualbox.org: 2 https://www.whitehats.nl: 2 https://www.winimage.com: 2 https://www.yubico.com: 2 https://www.zdnet.com: 2 https://www.zenml.io: 2 https://www.zofrex.com: 2 https://www.zsh.org: 2 https://xalan.apache.org: 2 https://xavibel.com: 2 https://xmit.xyz: 2 https://xmlgraphics.apache.org: 2 https://xmpp.org: 2 https://yondon.blog: 2 https://yuilibrary.com: 2 https://zerodayinitiative.com: 2 https://zerosecuritypenetrationtesting.com: 2 https://zh-cn.tenable.com: 2 https://zookeeper.apache.org: 2 https://zuso.ai: 2 https://zxsecurity.co.nz: 2 http://testh5shanglv.minshengec.com:1024: 2 http://thinkphp.com: 2 http://tiddlywiki5.com: 2 http://trac.dojotoolkit.org: 2 http://tracker.ceph.com: 2 http://tracker.moodle.org: 2 http://tree-kit.com: 2 http://twitter.com: 2 http://unomi.apache.org.: 2 http://ureport.com: 2 http://users.encs.concordia.ca: 2 http://vsintelli.com: 2 http://webkitgtk.org: 2 http://wiki.apache.org: 2 http://wiki.rpath.com: 2 http://www.andmp.com: 2 http://www.ansible.com: 2 http://www.benjaminfleischer.com: 2 http://www.bigdiao.cc: 2 http://www.blcat.cn: 2 http://www.brocade.com: 2 http://www.conviso.com.br: 2 http://www.coreftp.com: 2 http://www.cs.utexas.edu: 2 http://www.dest-unreach.org: 2 http://www.doctrine-project.org: 2 http://www.egroupware.org: 2 http://www.elasticsearch.com: 2 http://www.fetchmail.info: 2 http://www.fomori.org: 2 http://www.fork-cms.com: 2 http://www.getsymphony.com: 2 http://www.gevent.org: 2 http://www.graphicsmagick.org: 2 http://www.hackersb.cn: 2 http://www.insinuator.net: 2 http://www.inspircd.org: 2 http://www.intel.com: 2 http://www.isg.rhul.ac.uk: 2 http://www.ja-sig.org: 2 http://www.jcraft.com: 2 http://www.jianshu.com: 2 http://www.kde.org: 2 http://www.linuxgrill.com: 2 http://www.makotemplates.org: 2 http://www.mbsd.jp: 2 http://www.mega-nerd.com: 2 http://www.movabletype.org: 2 http://www.mpxj.org: 2 http://www.nemux.org: 2 http://www.netbytesec.com: 2 http://www.openssh.com: 2 http://www.opera.com: 2 http://www.pip-installer.org: 2 http://www.procheckup.com: 2 http://www.rabbitmq.com: 2 http://www.reddit.com: 2 http://www.roothc.com.br: 2 http://www.rootlabs.com.br: 2 http://www.rsyslog.com: 2 http://www.securityweek.com: 2 http://www.silverstripe.org: 2 http://www.slideshare.net: 2 http://www.sqlalchemy.org: 2 http://www.square16.org: 2 http://www.stack.nl: 2 http://www.strongswan.org: 2 http://www.tinc-vpn.org: 2 http://www.tripwire.com: 2 http://www.uzbl.org: 2 http://www.vulnerability-lab.com: 2 http://www.zeroscience.mk: 2 http://xmlsoft.org: 2 http://xxl-job.com: 2 http://yehg.net: 2 http://yourls.org: 2 http://zalando.com: 2 https://www.sony.com: 2 https://strawberry.rocks: 2 https://werewolves.world: 2 https://www.newegg.com: 2 https://consumer.huawei.com: 2 https://kb.parallels.com: 2 https://blog.csdn.net: 2 https://support.google.com: 2 https://community.targit.com: 2 https://www.unisoc.com: 2 https://support.broadcom.com: 2 https://security-portal.versa-networks.com: 2 https://www.sliderrevolution.com: 2 https://autodesk.com: 2 https://trust.mi.com: 2 https://git.proxmox.com: 2 https://docs.azul.com: 2 https://kibty.town: 2 https://flowus.cn: 2 https://wp-osm-plugin.hyumika.com: 2 https://www.nokia.com: 2 https://www.bdosecurity.de: 2 https://khronokernel.com: 2 https://wiki.securepoint.de: 2 https://www.bridewell.com: 2 https://arc.net: 2 https://www.bravurasecurity.com: 2 https://chiggerlor.substack.com: 2 https://csflabs.github.io: 2 https://www.manageengine.com: 2 https://www.zoho.com: 2 https://devolutions.net: 2 https://technitium.com: 2 https://www.dell.com: 2 https://eviden.com: 2 https://ptzoptics.com: 2 https://security.freebsd.org: 2 http://giflib.com: 2 https://support.hp.com: 2 http://icecms.com: 2 https://cyberdanube.com: 2 https://customers.codesys.com: 2 https://kaiten.ru: 2 https://www.keyence.com: 2 https://trustedcare.entrust.com: 2 https://www.codefactor.io: 2 https://codeastro.com: 2 https://exchange.checkmk.com: 2 https://www.cs-cart.com: 2 https://www.usvn.info: 2 https://www.takex-eng.co.jp: 2 https://ti.qianxin.com: 2 https://stuxxn.github.io: 2 https://www.trevorkems.com: 2 https://cve.mahi.be: 2 https://0xmupa.github.io: 2 https://forum.proxmox.com: 2 https://puredata.info: 2 https://docs.rocket.chat: 2 https://cirosec.de: 2 https://docs.adacore.com: 2 https://forums.ivanti.com: 2 https://thewatch.centreon.com: 2 https://www.papercut.com: 2 https://www.sophos.com: 2 https://issue-tracker.miraheze.org: 2 http://tiptel.com: 2 https://www.e-tax.nta.go.jp: 2 https://www.teamviewer.com: 2 https://answers.webroot.com: 2 https://cert.vde.com: 2 https://support.bull.com: 2 https://www.cnnvd.org.cn: 2 https://www.westerndigital.com: 2 https://www.closed-loop.biz: 2 https://www.entrust.com: 2 https://www.solvait.com: 2 https://www.woodwing.com: 2 https://blog.hawktesters.com: 2 https://www.zyxel.com: 2 http://0xahmed.ninja: 1 http://2012.appsec-forum.ch: 1 http://acme.com: 1 http://aliyundrive-webdav.com: 1 http://als.regnet.cz: 1 http://aluigi.altervista.org: 1 http://ant.apache.org: 1 http://antirez.com: 1 http://apt.inguza.net: 1 http://arthurdejong.org: 1 http://asfws12.files.wordpress.com: 1 http://askubuntu.com: 1 http://aspell.net: 1 http://badlock.org: 1 http://baraktawily.blogspot.com: 1 http://benmmurphy.github.io: 1 http://bh.ht.vc: 1 http://bird.network.cz: 1 http://bitbucket.org: 1 http://bk.ntp.org: 1 http://blog.addepar.com: 1 http://blog.c22.cc: 1 http://blog.chromium.org: 1 http://blog.dscpl.com.au: 1 http://blog.fortify.com: 1 http://blog.fuseyism.com: 1 http://blog.gmane.org: 1 http://blog.g-sec.lu: 1 http://blog.guya.net: 1 http://blog.infosectcbr.com.au: 1 http://blog.jquery.com: 1 http://blog.kazuhooku.com: 1 http://blog.koehntopp.de: 1 http://blog.nibblesec.org: 1 http://blog.noobroot.com: 1 http://blog.o0o.nu: 1 http://blog.opensecurityresearch.com: 1 http://blog.pear.php.net: 1 http://blog.pi3.com.pl: 1 http://blog.prosody.im: 1 http://blog.python.org: 1 http://blogs.adobe.com: 1 http://blog.scrt.ch: 1 http://blog.securitymouse.com: 1 http://blog.sendsafely.com: 1 http://blog.senr.io: 1 http://blogs.iss.net: 1 http://blogs.oracle.com: 1 http://blog.spiderlabs.com: 1 http://blogs.sun.com: 1 http://blog.swiecki.net: 1 http://blog.swiftmailer.org: 1 http://blog.topsec.com.cn: 1 http://boinc.berkeley.edu: 1 http://bugs.dojotoolkit.org: 1 http://bugs.dokuwiki.org: 1 http://bugs.gw.com: 1 http://bugs.icu-project.org: 1 http://bugs.java.com: 1 http://bugs.jquery.com: 1 http://bugs.ntp.org: 1 http://bugs.openttd.org: 1 http://bugzilla.maptools.org: 1 http://bundler.io: 1 http://buzz.typo3.org: 1 http://cakeforge.org: 1 http://cat.eyalro.net: 1 http://checkpw.sourceforge.net: 1 http://cisofy.com: 1 http://ckeditor.com: 1 http://clicky.me: 1 http://co3k.org: 1 http://code.fabfile.org: 1 http://code.qt.io: 1 http://community.igniterealtime.org: 1 http://confluence.atlassian.com: 1 http://crbug.com: 1 http://crypto.junod.info: 1 http://csrf.htmlpurifier.org: 1 http://cve.circl.lu: 1 http://cvs.sourceforge.net: 1 http://cybersecurity.upv.es: 1 http://danlec.com: 1 http://dev.exiv2.org: 1 http://dev.mutt.org: 1 http://dev.mysql.com: 1 http://dev.plone.org: 1 http://dev.subrion.org: 1 http://distro.conectiva.com.br: 1 http://dl.acm.org: 1 http://docs.sequelizejs.com: 1 http://docs.spring.io: 1 http://dojotoolkit.org: 1 http://download.opensuse.org: 1 http://download.osgeo.org: 1 http://download.savannah.gnu.org: 1 http://downloads.powerdns.com: 1 http://download.strongswan.org: 1 http://drosenbe.blogspot.com: 1 http://drupalcode.org: 1 http://dsecrg.com: 1 http://em386.blogspot.com: 1 http://eprint.iacr.org: 1 http://everdox.net: 1 http://fastcompression.blogspot.fr: 1 http://ffmpeg.org: 1 http://fisheye6.atlassian.com: 1 http://flash.flowplayer.org: 1 http://forum.xda-developers.com: 1 http://freeciv.wikia.com: 1 http://ftp.gnu.org: 1 http://ftp.naist.jp: 1 http://ftp.netbsd.org: 1 http://ftp.NetBSD.org: 1 http://gaganpreet.in: 1 http://ganglia.info: 1 http://geojson.org: 1 http://getid3.sourceforge.net: 1 http://git-blame.blogspot.com.es: 1 http://git.cyrusimap.org: 1 http://git.fedorahosted.org: 1 http://git.gluster.org: 1 http://git.hylafax.org: 1 http://git.infradead.org: 1 http://git.kernel.dk: 1 http://git.libav.org: 1 http://git.lxde.org: 1 http://git.mathias-kettner.de: 1 http://git.nordu.net: 1 http://gitorious.org: 1 http://git.savannah.nongnu.org: 1 http://git.tuxfamily.org: 1 http://googlechromereleases.blogspot.co.uk: 1 http://googleprojectzero.blogspot.com: 1 http://gridscheduler.sourceforge.net: 1 http://guac-dev.org: 1 http://gultsch.de: 1 http://h30499.www3.hp.com: 1 http://habrahabr.ru: 1 http://hac425.unaux.com: 1 http://ha.xxor.se: 1 http://hg.libsdl.org: 1 http://hg.savannah.gnu.org: 1 http://hkpco.kr: 1 http://homakov.blogspot.com: 1 http://httpd.apache.org: 1 http://icedtea.classpath.org: 1 http://ics-cert.us-cert.gov: 1 http://inertiawar.com: 1 http://invisible-island.net: 1 http://ircrash.com: 1 http://isecpartners.github.io: 1 http://jaanuskp.blogspot.com: 1 http://james.apache.org: 1 http://java.net: 1 http://jgarber.lighthouseapp.com: 1 http://jira.opensymphony.com: 1 http://jira.ow2.org: 1 http://juliusdavies.ca: 1 http://k3research.outerhaven.de: 1 http://kbase.redhat.com: 1 http://kb.juniper.net: 1 http://kerneltrap.org: 1 http://klikki.fi: 1 http://knoxin.blogspot.co.uk: 1 http://krbdev.mit.edu: 1 http://lab.cs.ttu.ee: 1 http://lcamtuf.blogspot.com.au: 1 http://ledgersmbdev.blogspot.ca: 1 http://libcloud.apache.org: 1 http://libexif.sourceforge.net: 1 http://linuxtesting.org: 1 http://linuxtv.org: 1 http://listengine.tuxfamily.org: 1 http://lists.alioth.debian.org: 1 http://lists.busybox.net: 1 http://lists.clamav.net: 1 http://lists.fusionforge.org: 1 http://lists.infradead.org: 1 http://lists.llvm.org: 1 http://lists.ntp.org: 1 http://lists.openvz.org: 1 http://lists.owasp.org: 1 http://lists.quagga.net: 1 http://lists.unbit.it: 1 http://lists.vmware.com: 1 http://lists.xiph.org: 1 http://lists.xymon.com: 1 http://lucene.apache.org: 1 http://lustre.org: 1 http://lwn.net: 1 http://mahara.org: 1 http://mail.globnix.net: 1 http://mail.jabber.org: 1 http://mail.kde.org: 1 http://mailman.alsa-project.org: 1 http://mailman.mit.edu: 1 http://mail.openjdk.java.net: 1 http://mails.dpdk.org: 1 http://mail.zope.org: 1 http://malloc.im: 1 http://martin.swende.se: 1 http://mathias-kettner.de: 1 http://mayaa.seasar.org: 1 http://metadata.ftp-master.debian.org: 1 http://mirror.easyname.at: 1 http://mirror.linux.org.au: 1 http://mod-security.svn.sourceforge.net: 1 http://modwsgi.readthedocs.org: 1 http://moinmoin.wikiwikiweb.de: 1 http://mov.sx: 1 http://mstrokin.com: 1 http://mysqlblog.fivefarmers.com: 1 http://netatalk.sourceforge.net: 1 http://net-ninja-mr.me: 1 http://news.dieweltistgarnichtso.net: 1 http://news.tryton.org: 1 http://nmav.gnutls.org: 1 http://nongnu.askapache.com: 1 http://note.youdao.com: 1 http://old.blog.phusion.nl: 1 http://openjpeg.googlecode.com: 1 http://openssl.org: 1 http://openvswitch.org: 1 http://osandamalith.wordpress.com: 1 http://osdir.com: 1 http://oss.sgi.com: 1 http://otiose.dhs.org: 1 http://owasp-esapi-java.googlecode.com: 1 http://owasp-java-html-sanitizer.googlecode.com: 1 http://ozlabs.org: 1 http://packetstormsecurity.nl: 1 http://pastie.caboo.se: 1 http://penturalabs.wordpress.com: 1 http://people.debian.org: 1 http://perception-point.io: 1 http://perl5.git.perl.org: 1 http://phpunit.vulnbusters.com: 1 http://pillow.readthedocs.org: 1 http://pmt.sourceforge.net: 1 http://post-office.corp.redhat.com: 1 http://proftpd.org: 1 http://projects.edgewall.com: 1 http://pseudo-flaw.net: 1 http://pylonshq.com: 1 http://pyropus.ca: 1 http://pywebdav.googlecode.com: 1 http://quassel-irc.org: 1 http://quickgit.kde.org: 1 http://qwertwwwe.github.io: 1 http://r00tin.blogspot.com: 1 http://rabbit.dereferenced.org: 1 http://rack.github.com: 1 http://railspikes.com: 1 http://restlet.org: 1 http://review.gluster.org: 1 http://riddle.link: 1 http://rosariosis.com: 1 http://roundup.cvs.sourceforge.net: 1 http://rubysec.github.io: 1 https://01.org: 1 https://0day.work: 1 http://s1m0n.dft-labs.eu: 1 https://admin.hostpoint.ch: 1 https://alioth-lists.debian.net: 1 https://android-review.googlesource.com: 1 https://anotepad.com: 1 https://antichat.com: 1 https://appgateresearch.blogspot.com: 1 https://archive.apache.org: 1 https://artifex.com: 1 https://attachments.samba.org: 1 https://attic.apache.org: 1 https://bertjwregeer.keybase.pub: 1 https://bitslog.com: 1 https://blade.tencent.com: 1 https://blog.cloudpassage.com: 1 https://blog.convisoappsec.com: 1 https://blog.cryptographyengineering.com: 1 https://blog.documentfoundation.org: 1 https://blog.hartwork.org: 1 https://blog.hboeck.de: 1 https://blog.mozilla.org: 1 https://blog.qt.io: 1 https://blog.quarkslab.com: 1 https://blog.securitymouse.com: 1 https://blog.smarttecs.com: 1 https://blog.sqreen.com: 1 https://blog.talosintelligence.com: 1 https://blog.wpscan.org: 1 https://bnbdr.github.io: 1 https://borgbackup.readthedocs.io: 1 https://botan.randombit.net: 1 https://bpmn.io: 1 https://bro-tracker.atlassian.net: 1 https://bugreports.qt.io: 1 https://bugs.exim.org: 1 https://bugs.gnunet.org: 1 https://bugs.horde.org: 1 https://bugs.linuxfoundation.org: 1 https://bugs.openvz.org: 1 https://bugs.webkit.org: 1 https://bugzilla.clamav.net: 1 https://bugzilla.mindrot.org: 1 https://bugzilla.samba.org: 1 https://bugzilla.tianocore.org: 1 https://busybox.net: 1 https://cacti.net: 1 https://c-ares.haxx.se: 1 https://ceph.io: 1 https://cfreal.github.io: 1 https://chromiumcodereview.appspot.com: 1 https://cisofy.com: 1 https://civicrm.org: 1 https://co3k.org: 1 https://codechecker-demo.eastus.cloudapp.azure.com: 1 https://code.launchpad.net: 1 https://codereview.appspot.com: 1 https://codesearch.debian.net: 1 https://community.jboss.org: 1 https://community.qualys.com: 1 https://community.sophos.com: 1 https://contrib.spip.net: 1 https://coreymhudson.github.io: 1 https://crashes.fuzzing-project.org: 1 https://crrev.com: 1 https://crypto.stanford.edu: 1 https://debbugs.gnu.org: 1 https://defuse.ca: 1 https://deshal3v.github.io: 1 https://developer.atlassian.com: 1 https://dev.gnupg.org: 1 https://dev.recurly.com: 1 https://discourse.aurelia.io: 1 https://discourse.gnome.org: 1 https://discuss.gradle.org: 1 https://discuss.neos.io: 1 https://docs.inspircd.org: 1 https://dom4j.github.io: 1 https://donncha.is: 1 https://download.igniterealtime.org: 1 https://dyntopia.com: 1 http://secondlookforensics.com: 1 http://secureappdev.blogspot.com: 1 http://secureyourit.co.uk: 1 http://security.cucumberlinux.com: 1 http://security-tracker.debian.org: 1 https://edk2-docs.gitbook.io: 1 https://edk2.groups.io: 1 https://edoverflow.com: 1 https://efail.de: 1 http://selenic.com: 1 https://elixir.bootlin.com: 1 https://en.bitcoinwiki.org: 1 https://enigmail.net: 1 https://erlang.org: 1 https://esnet-security.github.io: 1 https://exim.org: 1 https://exploitbox.io: 1 https://eyalitkin.wordpress.com: 1 https://fakhrizulkifli.github.io: 1 https://fastcompression.blogspot.ca: 1 https://fastd.readthedocs.io: 1 https://feh.finalrewind.org: 1 https://fisheye.codehaus.org: 1 https://forums.grsecurity.net: 1 https://forum.snapcraft.io: 1 https://forums.servicestack.net: 1 https://francozappa.github.io: 1 https://freeradius.org: 1 http://sf.snu.ac.kr: 1 https://ftp.gnu.org: 1 https://fuelphp.com: 1 https://gaffer.ptitcanardnoir.org: 1 https://geronimo.apache.org: 1 https://gerrit.googlesource.com: 1 https://git.busybox.net: 1 https://git.centos.org: 1 https://git.entrouvert.org: 1 https://git.gnunet.org: 1 https://git.gnupg.org: 1 https://github.blog: 1 https://githubengineering.com: 1 https://gitlab.xiph.org: 1 https://git.netfilter.org: 1 https://git.savannah.gnu.org: 1 https://git.tartarus.org: 1 https://git.tt-rss.org: 1 https://git.videolan.org: 1 https://git.whamcloud.com: 1 https://git.zabbix.com: 1 https://gnats.netbsd.org: 1 https://gnupg.org: 1 https://gogs.io: 1 https://googleonlinesecurity.blogspot.com: 1 https://googleprojectzero.blogspot.co.uk: 1 https://googleprojectzero.blogspot.cz: 1 https://gruss.cc: 1 https://guidovranken.files.wordpress.com: 1 https://gusralph.info: 1 https://h20564.www2.hpe.com: 1 https://h20566.www2.hp.com: 1 https://heasarc.gsfc.nasa.gov: 1 https://hg.ucc.asn.au: 1 http://shibboleth.internet2.edu: 1 https://hosein-vita.medium.com: 1 https://httpoxy.org: 1 https://icepng.github.io: 1 https://icinga.com: 1 https://insert-script.blogspot.com: 1 https://insights.sei.cmu.edu: 1 https://insights.ubuntu.com: 1 https://invent.kde.org: 1 https://ioquake3.org: 1 https://issues.civicrm.org: 1 https://issues.gerritcodereview.com: 1 https://issues.roundup-tracker.org: 1 https://issuetracker.google.com: 1 http://site.icu-project.org: 1 http://site.pi3.com.pl: 1 https://jeffhacks.com: 1 https://kate.io: 1 https://kb.bluecoat.com: 1 https://kingcope.wordpress.com: 1 https://knobattack.com: 1 https://komodoplatform.com: 1 https://labs.mwrinfosecurity.com: 1 https://leastauthority.com: 1 https://libexpat.github.io: 1 https://libosinfo.org: 1 https://libreswan.org: 1 https://libvirt.org: 1 https://lists.ath9k.org: 1 https://lists.clusterlabs.org: 1 https://lists.cypherpunks.ca: 1 https://lists.fusionforge.org: 1 https://lists.iai.uni-bonn.de: 1 https://lists.immunityinc.com: 1 https://lists.isc.org: 1 https://lists.linuxcontainers.org: 1 https://lists.nic.cz: 1 https://lists.openldap.org: 1 https://lists.open-mesh.org: 1 https://lists.osuosl.org: 1 https://lists.sequoia-pgp.org: 1 https://lists.tartarus.org: 1 https://lists.thekelleys.org.uk: 1 https://lists.ubuntu.com: 1 https://lists.xymon.com: 1 https://lock.cmpxchg8b.com: 1 https://lucene.apache.org: 1 https://mailarchives.bentasker.co.uk: 1 https://mail.gnu.org: 1 https://mail.jabber.org: 1 https://mailman-eng.corp.redhat.com: 1 https://make.wordpress.org: 1 https://mariadb.atlassian.net: 1 https://marlam.de: 1 http://smarty-php.googlecode.com: 1 https://maustin.net: 1 https://mcabber.com: 1 https://mega.nz: 1 https://meltdownattack.com: 1 https://micahflee.com: 1 https://mirror.fail: 1 https://nathandavison.com: 1 https://neomutt.org: 1 https://neopg.io: 1 https://nethack.org: 1 https://newrelic.com: 1 https://nohats.ca: 1 http://snoopy.cvs.sourceforge.net: 1 https://nvisium.com: 1 https://old.reddit.com: 1 https://open-docs.neuvector.com: 1 https://openmpt.org: 1 https://openssf.slack.com: 1 https://openssl-library.org: 1 https://opnsec.com: 1 https://orpheus-lyre.info: 1 https://osdn.net: 1 https://oss.clusterlabs.org: 1 https://os-s.net: 1 https://ostif.org: 1 http://source.jboss.org: 1 https://packages.qa.debian.org: 1 https://paste.pound-python.org: 1 https://patchwork.ffmpeg.org: 1 https://patchwork.freedesktop.org: 1 https://people.csail.mit.edu: 1 https://people.fedoraproject.org: 1 https://perl5.git.perl.org: 1 https://phabricator.kde.org: 1 https://philwantsfish.github.io: 1 https://pidgin.im: 1 http://spl0it.org: 1 https://platypusattack.com: 1 https://postfix.org: 1 https://postlister.uninett.no: 1 https://projects.gnome.org: 1 https://projects.ow2.org: 1 https://pseudo-flaw.net: 1 https://pyyaml.docsforge.com: 1 https://qa.debian.org: 1 https://qtpass.org: 1 https://rachelbythebay.com: 1 https://raw.github.com: 1 https://raw.globalsecuritydatabase.org: 1 https://rdot.org: 1 https://relistan.com: 1 https://robots.thoughtbot.com: 1 https://rtpbleed.com: 1 https://rt.perl.org: 1 https://ruhr-uni-bochum.sciebo.de: 1 https://scannell.me: 1 https://scarybeastsecurity.blogspot.ch: 1 https://scarybeastsecurity.blogspot.com: 1 https://scarybeastsecurity.blogspot.dk: 1 https://scumjr.github.io: 1 https://secure.phabricator.com: 1 https://secure.php.net: 1 https://security-center.intel.com: 1 https://security.cucumberlinux.com: 1 https://serenity.is: 1 https://sick.codes: 1 https://sitewat.ch: 1 https://smacktls.com: 1 https://source.jboss.org: 1 https://source.openmpt.org: 1 https://spectreattack.com: 1 https://speirofr.appspot.com: 1 https://ssrg.nicta.com.au: 1 https://support.cloud.engineyard.com: 1 https://support.process-one.net: 1 https://suricata-ids.org: 1 https://svn.filezilla-project.org: 1 https://svn.resiprocate.org: 1 https://sweet32.info: 1 https://swiftstack.com: 1 https://sword.bladex.cn: 1 https://sympa.inria.fr: 1 https://t2.fi: 1 http://stackoverflow.com: 1 https://tapestry.apache.org: 1 https://teeworlds.com: 1 https://thejh.net: 1 https://therecord.media: 1 https://threatpost.com: 1 https://tomforb.es: 1 https://trac.gajim.org: 1 https://tracker.ardour.org: 1 https://trac.mplayerhq.hu: 1 https://trac.nginx.org: 1 https://tt-rss.org: 1 https://unicode-org.atlassian.net: 1 https://unix.stackexchange.com: 1 http://support.ca.com: 1 http://support.citrix.com: 1 http://support.lenovo.com: 1 https://utcc.utoronto.ca: 1 https://vishnudevtj.github.io: 1 https://vndh.net: 1 http://svn.ec-cube.net: 1 http://svn.haxx.se: 1 http://svn.ruby-lang.org: 1 http://svn.tartarus.org: 1 https://vulnhive.com: 1 https://web-in-security.blogspot.ca: 1 https://wid.cert-bund.de: 1 https://wiki.openvz.org: 1 https://wiki.samba.org: 1 https://worthdoingbadly.com: 1 https://wpa3.mathyvanhoef.com: 1 https://www-01.ibm.com: 1 https://www.131002.net: 1 https://www3.sqlite.org: 1 https://www3.trustwave.com: 1 https://www.acunetix.com: 1 https://www.alphabot.com: 1 https://www.amd.com: 1 https://www.arista.com: 1 https://www.armis.com: 1 https://www.artifex.com: 1 https://www.bamsoftware.com: 1 https://www.bitdefender.com: 1 https://www.cabextract.org.uk: 1 https://www.cazzulino.com: 1 https://www.cisecurity.org: 1 https://www.cl.cam.ac.uk: 1 https://www.cncf.io: 1 https://www.contextis.com: 1 https://www.cubeyond.net: 1 https://www.davical.org: 1 https://www.eclypsium.com: 1 https://www.enigmail.net: 1 https://www.evonide.com: 1 https://www.exiv2.org: 1 https://www.flexera.com: 1 https://www.freeplane.org: 1 https://www.futureweb.at: 1 https://www.gentoo.org: 1 https://www.ghostscript.com: 1 https://www.gitlab.com: 1 https://www.gitorious.org: 1 https://www.gnu.org: 1 https://www.icinga.org: 1 https://www.ietf.org: 1 https://www.inputzero.io: 1 https://www.intezer.com: 1 https://www.java.com: 1 https://www.jruby.org: 1 https://www.jsof-tech.com: 1 https://www.jwz.org: 1 https://www.kernelmode.blog: 1 https://www.korelogic.com: 1 https://www.krackattacks.com: 1 https://www.kvakil.me: 1 https://www.ldap-account-manager.org: 1 https://www.legacysecuritygroup.com: 1 https://www.libssh2.org: 1 https://www.lsexperts.de: 1 https://www.mehmetince.net: 1 https://www.midnight-commander.org: 1 https://www.nikhef.nl: 1 https://www.npmjs.org: 1 https://www.openbsd.org: 1 https://www.openldap.org: 1 https://www.orpheus-lyre.info: 1 https://www.percona.com: 1 https://www.pidgin.im: 1 https://www.portcullis-security.com: 1 https://www.pureftpd.org: 1 https://www.python.org: 1 https://www.qbittorrent.org: 1 https://www.redteam-pentesting.de: 1 https://www.reversinglabs.com: 1 https://www.rootshellsecurity.net: 1 https://www.rorsecurity.info: 1 https://www.saddns.net: 1 https://www.secfu.net: 1 https://www.secura.com: 1 https://www.seebug.org: 1 https://www.sentinelone.com: 1 https://www.sigsac.org: 1 https://www.stunnel.org: 1 https://www.teskalabs.com: 1 https://www.theregister.co.uk: 1 https://www.thezdi.com: 1 https://www.timmclean.net: 1 https://www.trendmicro.com: 1 https://www.us-cert.gov: 1 https://www.vice.com: 1 https://www.vidocsecurity.com: 1 https://www.viestintavirasto.fi: 1 https://www.virustotal.com: 1 https://www.vusec.net: 1 https://www.webkitgtk.org: 1 https://xairy.github.io: 1 https://xerces.apache.org: 1 https://yehg.net: 1 http://sysoev.ru: 1 http://t3.dotgnu.info: 1 http://tartarus.org: 1 http://taviso.decsystem.org: 1 http://telia.dl.sourceforge.net: 1 http://telussecuritylabs.com: 1 http://thekelleys.org.uk: 1 http://tickets.opscode.com: 1 http://trac.kodi.tv: 1 http://trac.transmissionbt.com: 1 http://unbound.net: 1 http://varnish-cache.org: 1 http://vcs.pcre.org: 1 http://venom.crowdstrike.com: 1 http://vladz.devzero.fr: 1 http://web-in-security.blogspot.ca: 1 http://webservsec.blogspot.com: 1 http://wiki2.dovecot.org: 1 http://wiki.audacityteam.org: 1 http://wiki.lustre.org: 1 http://wiki.postgresql.org: 1 http://worldofpadman.com: 1 http://www13.itrc.hp.com: 1 http://www.acme.com: 1 http://www.agarri.fr: 1 http://www.agrs.tu-berlin.de: 1 http://www.amd.com: 1 http://www.apsis.ch: 1 http://www.argyllcms.com: 1 http://www.arm.linux.org.uk: 1 http://www.asmail.be: 1 http://www.attrition.org: 1 http://www.bacula.org: 1 http://www.betanews.com: 1 http://www.binarysniper.net: 1 http://www.blackhat.com: 1 http://www.bouncycastle.org: 1 http://www.bugzilla.org: 1 http://www.cc.gatech.edu: 1 http://www.cert.fi: 1 http://www.ciac.org: 1 http://www.cisco.com: 1 http://www.codeaurora.org: 1 http://www.codenomicon.com: 1 http://www.collabtive.o-dyn.de: 1 http://www.communities.hp.com: 1 http://www.coresecurity.com: 1 http://www.cs.bu.edu: 1 http://www.cs.tau.ac.IL: 1 http://www.cs.tau.ac.il: 1 http://www.cs.technion.ac.il: 1 http://www.dotnetnuke.com: 1 http://www.dovecot.org: 1 http://www.droid-life.com: 1 http://www.droidrzr.com: 1 http://www.droidsec.org: 1 http://www.educatedguesswork.org: 1 http://www.elasticsearch.org: 1 http://www.elsherei.com: 1 http://www.erlang.org: 1 http://www.eucalyptus.com: 1 http://www.evernote.com: 1 http://www.exim.org: 1 http://www.exploringbinary.com: 1 http://www.ffmpeg.org: 1 http://www.firebirdsql.org: 1 http://www.floyd.ch: 1 http://www.fortiguard.com: 1 http://www.freeipa.org: 1 http://www.freelists.org: 1 http://www.freerdp.com: 1 http://www.gdssecurity.com: 1 http://www.getchef.com: 1 http://www.gnu.org: 1 http://www.gulftech.org: 1 http://www.gwtproject.org: 1 http://www.haproxy.org: 1 http://www.hdwsec.fr: 1 http://www.hitachi-support.com: 1 http://www.htbridge.ch: 1 http://www.ijg.org: 1 http://www.infoq.com: 1 http://www.infradead.org: 1 http://www.ingate.com: 1 http://www.intelsecurity.com: 1 http://www.itrc.hp.com: 1 http://www.jbkempf.com: 1 http://www.jplayer.org: 1 http://www.jruby.org: 1 http://www.kernelhub.org: 1 http://www.konakart.com: 1 http://www.libraw.org: 1 http://www.live555.com: 1 http://www.lua.org: 1 http://www.mandrakesecure.net: 1 http://www.maradns.org: 1 http://www.mathyvanhoef.com: 1 http://www.mediawiki.org: 1 http://www.metasploit.com: 1 http://www.mh-sec.de: 1 http://www.mindrot.org: 1 http://www.mitls.org: 1 http://www.mongodb.org: 1 http://www.mono-project.com: 1 http://www.nds.rub.de: 1 http://www.nds.ruhr-uni-bochum.de: 1 http://www.networkworld.com: 1 http://www.nntp.perl.org: 1 http://www.nruns.com: 1 http://www.nsfocus.net: 1 http://www.oliverkarow.de: 1 http://www.openbsd.org: 1 http://www.opencms.org: 1 http://www.openoffice.org: 1 http://www.os-s.net: 1 http://www.packetstormsecurity.org: 1 http://www.palemoon.org: 1 http://www.paul-moore.com: 1 http://www.phenoelit.org: 1 http://www.php.net: 1 http://www.pimcore.org: 1 http://www.pivotal.io: 1 http://www.pnigos.com: 1 http://www.privoxy.org: 1 http://www.process-one.net: 1 http://www.proftpd.org: 1 http://www.quantumleap.it: 1 http://www.rafayhackingarticles.net: 1 http://www.rajatswarup.com: 1 http://www.ratbox.org: 1 http://www.redmine.org: 1 http://www.rorsecurity.info: 1 http://www.rul3z.de: 1 http://www.sbosnet.nl: 1 http://www.securation.com: 1 http://www.securegoose.org: 1 http://www.securiteam.com: 1 http://www.selenic.com: 1 http://www.sendmail.com: 1 http://www.simplesystems.org: 1 http://www.slimframework.com: 1 http://www.sogo.nu: 1 http://www.splitbrain.org: 1 http://www.springsource.com: 1 http://www.squirrelmail.org: 1 http://www.sudo.ws: 1 http://www.supercluster.org: 1 http://www.synacktiv.ninja: 1 http://www.tcpdump.org: 1 http://www.tedunangst.com: 1 http://www.tele-consulting.com: 1 http://www.tombom.co.uk: 1 http://www.tt-forums.net: 1 http://www.unbound.net: 1 http://www.undeadly.org: 1 http://www.unixodbc.org: 1 http://www.videolan.org: 1 http://www.x.org: 1 http://www.zweitag.de: 1 http://xmlgraphics.apache.org: 1 http://xmpp.org: 1 http://xstream.codehaus.org: 1 http://xteam.baidu.com: 1 http://xync.org: 1 http://zeroscience.mk: 1 http://zsh.sourceforge.net: 1 https://project-zero.issues.chromium.org: 1 http://anker.com: 1 https://visionspace.com: 1 http://eufy.com: 1 https://advisory-inbox.githubapp.com: 1 https://myoffice.ru: 1 https://support.myoffice.ru: 1 https://www.planex.co.jp: 1 https://docs.iredmail.org: 1 https://www.iredmail.org: 1 ```
pombredanne commented 2 weeks ago

Below is the list of unique source for severity score in our public VCIO. From https://nvd.nist.gov we have 339,765 severity scores, from https://api.first.org we have 261,109 severity scores and so on. Now for each of these different source we need assign weight.

From the list in https://github.com/aboutcode-org/vulnerablecode/pull/1593#issuecomment-2457749729 I think it is difficult to assign a weight based on a heuristic, but let's try!

  1. we should get updated stats ignoring the http or https prefix and also the leading www.

  2. the weight could be derived for now from:

    • the number of entries: more likely means this is more authoritative. We should have a few "bands": 10 vs. 50 score entries for a source is not significant and 200K vs. 1 score entries for a source does not mean that the more prolific source is 200K times better that the one providing only one score.

    • the default should be 5/100 for now.

    • above 1000: 9/10

    • between 1000 and 500: 8/10

    • between 500 and 100: 7/10

    • between 100 and 30: 6/10

    • anything else, and unknown, default to: 5/10

    (Note: but at the same time, less entries may means more specific, may be more accurate, so this is really a first shot, mostly guessing and random)

ziadhany commented 2 weeks ago

@pombredanne You're right; it does seem challenging to assign a weight based on a heuristic. We can start with this approach as a workaround, but even if we invest more time assigning it manually, it may still introduce bias. This is just the first shot, though.

weight_config.json ``` { "nvd.nist.gov": 9, "api.first.org": 9, "github.com": 9, "access.redhat.com": 9, "bugzilla.redhat.com": 9, "cve.mitre.org": 9, "people.canonical.com": 9, "lists.apache.org": 9, "ubuntu.com": 9, "openwall.com": 9, "lists.fedoraproject.org": 9, "npmjs.com": 9, "web.archive.org": 9, "security.archlinux.org": 9, "mozilla.org": 9, "huntr.dev": 9, "snyk.io": 9, "vuldb.com": 9, "jenkins.io": 9, "security.netapp.com": 9, "securityfocus.com": 9, "lists.debian.org": 9, "rustsec.org": 8, "usn.ubuntu.com": 8, "packetstormsecurity.com": 8, "pkg.go.dev": 8, "hackerone.com": 8, "git.kernel.org": 8, "groups.google.com": 8, "security.snyk.io": 8, "lists.opensuse.org": 8, "rhn.redhat.com": 8, "seclists.org": 8, "code.google.com": 8, "moodle.org": 8, "portal.msrc.microsoft.com": 8, "issues.apache.org": 7, "debian.org": 7, "jira.xwiki.org": 7, "exchange.xforce.ibmcloud.com": 7, "typo3.org": 7, "exploit-db.com": 7, "gist.github.com": 7, "plugins.trac.wordpress.org": 7, "bugs.wireshark.org": 7, "git.moodle.org": 7, "secunia.com": 7, "huntr.com": 7, "security.gentoo.org": 7, "bugs.launchpad.net": 7, "code.wireshark.org": 7, "svn.apache.org": 7, "httpd.apache.org": 7, "securitytracker.com": 7, "wordfence.com": 7, "wireshark.org": 7, "bugs.chromium.org": 7, "gitlab.com": 7, "silverstripe.org": 7, "crbug.com": 7, "phpmyadmin.net": 7, "securitylab.github.com": 7, "curl.se": 7, "sourceforge.net": 7, "drupal.org": 7, "discuss.hashicorp.com": 7, "pypi.org": 7, "djangoproject.com": 7, "bugzilla.mozilla.org": 7, "raw.githubusercontent.com": 7, "lists.gnu.org": 7, "bugs.debian.org": 7, "security-tracker.debian.org": 7, "marc.info": 7, "support.apple.com": 7, "blogs.gentoo.org": 7, "bitbucket.org": 7, "bugzilla.suse.com": 7, "go.dev": 7, "pivotal.io": 7, "whitesourcesoftware.com": 7, "cdn.kernel.org": 7, "gitee.com": 7, "lore.kernel.org": 7, "ruby-lang.org": 7, "msrc.microsoft.com": 7, "wordpress.org": 7, "plone.org": 7, "redhat.com": 7, "oracle.com": 7, "anonsvn.wireshark.org": 7, "mail-archives.apache.org": 7, "xenbits.xen.org": 6, "postgresql.org": 6, "twitter.com": 6, "git.openssl.org": 6, "jvn.jp": 6, "rubygems.org": 6, "symfony.com": 6, "www-01.ibm.com": 6, "src.chromium.org": 6, "tenable.com": 6, "lists.apple.com": 6, "packagist.org": 6, "issues.redhat.com": 6, "helpx.adobe.com": 6, "phabricator.wikimedia.org": 6, "review.openstack.org": 6, "chromereleases.googleblog.com": 6, "contao.org": 6, "discuss.elastic.co": 6, "security.openstack.org": 6, "lkml.org": 6, "medium.com": 6, "nozominetworks.com": 6, "grafana.com": 6, "oval.cisecurity.org": 6, "review.opendev.org": 6, "advisory.checkmarx.net": 6, "vupen.com": 6, "launchpad.net": 6, "openssl.org": 6, "framework.zend.com": 6, "samba.org": 6, "talosintelligence.com": 6, "zerodayinitiative.com": 6, "bugs.eclipse.org": 6, "gitlab.gnome.org": 6, "nifi.apache.org": 6, "x-stream.github.io": 6, "tanzu.vmware.com": 6, "jvndb.jvn.jp": 6, "opendev.org": 6, "bugzilla.kernel.org": 6, "sourceware.org": 6, "codereview.chromium.org": 6, "research.jfrog.com": 6, "discuss.rubyonrails.org": 6, "spring.io": 6, "twcert.org.tw": 6, "googlechromereleases.blogspot.com": 6, "sec.cloudapps.cisco.com": 6, "issues.jboss.org": 6, "simplesamlphp.org": 6, "mail-archive.com": 6, "docs.saltstack.com": 6, "docs.shopware.com": 6, "kb.isc.org": 6, "support.f5.com": 6, "kernel.org": 6, "osvdb.org": 6, "cwiki.apache.org": 6, "hg.moinmo.in": 6, "fluidattacks.com": 6, "gitlab.eclipse.org": 6, "nuget.org": 6, "lists.openstack.org": 6, "developer.mozilla.org": 6, "youtube.com": 6, "drive.google.com": 6, "owasp.org": 6, "vaadin.com": 6, "mercurial-scm.org": 6, "mandriva.com": 6, "archives.neohapsis.com": 6, "hg.code.sf.net": 6, "curl.haxx.se": 6, "pillow.readthedocs.io": 6, "struts.apache.org": 6, "vulncheck.com": 6, "webkitgtk.org": 6, "documentation.concretecms.org": 6, "patchstack.com": 6, "patchwork.kernel.org": 6, "hg.graphicsmagick.org": 6, "source.android.com": 6, "liferay.dev": 6, "nodesecurity.io": 6, "web.nvd.nist.gov": 6, "jira.mongodb.org": 6, "cve.org": 6, "core.trac.wordpress.org": 6, "news.ycombinator.com": 6, "downloads.asterisk.org": 6, "tomcat.apache.org": 6, "kb.cert.org": 6, "cert-portal.siemens.com": 6, "devhub.checkmarx.com": 6, "lists.nongnu.org": 6, "squid-cache.org": 6, "ink-desk-28f.notion.site": 6, "h20566.www2.hpe.com": 6, "intel.com": 6, "docs.djangoproject.com": 6, "go.googlesource.com": 6, "herolab.usd.de": 6, "matrix.org": 6, "talosintel.com": 6, "vapid.dhs.org": 6, "ckeditor.com": 6, "cwe.mitre.org": 6, "pagure.io": 6, "cisa.gov": 6, "weblog.rubyonrails.org": 6, "markmail.org": 6, "issues.liferay.com": 6, "jspwiki-wiki.apache.org": 6, "gitbox.apache.org": 6, "bugs.gentoo.org": 5, "docs.microsoft.com": 5, "puppet.com": 5, "incibe.es": 5, "cxf.apache.org": 5, "bugzilla.wikimedia.org": 5, "mvnrepository.com": 5, "usom.gov.tr": 5, "bz.apache.org": 5, "nodejs.org": 5, "syzkaller.appspot.com": 5, "vuln.ryotak.me": 5, "docs.google.com": 5, "spinics.net": 5, "auth0.com": 5, "basercms.net": 5, "next-auth.js.org": 5, "plugins.jenkins.io": 5, "libreoffice.org": 5, "tiny.cloud": 5, "hg.openjdk.java.net": 5, "owncloud.org": 5, "community.otrs.com": 5, "git.openstack.org": 5, "osgeo-org.atlassian.net": 5, "bugzilla.gnome.org": 5, "forum.xpdfreader.com": 5, "istio.io": 5, "developers.ibexa.co": 5, "portswigger.net": 5, "wpvulndb.com": 5, "issues.chromium.org": 5, "advisories.mageia.org": 5, "doc.powerdns.com": 5, "patchwork.ozlabs.org": 5, "ec-cube.net": 5, "phpbb.com": 5, "rfc-editor.org": 5, "synology.com": 5, "ocert.org": 5, "mail-archives.us.apache.org": 5, "crates.io": 5, "en.wikipedia.org": 5, "issues.asterisk.org": 5, "jira.spring.io": 5, "secuniaresearch.flexerasoftware.com": 5, "tools.ietf.org": 5, "wiki.jenkins-ci.org": 5, "youtu.be": 5, "camel.apache.org": 5, "0dd.zone": 5, "blog.gitea.io": 5, "bugs.ghostscript.com": 5, "bugzilla.novell.com": 5, "developer.joomla.org": 5, "gitlab.torproject.org": 5, "lists.wikimedia.org": 5, "trac.torproject.org": 5, "wpscan.com": 5, "ibm.com": 5, "trac.roundcube.net": 5, "pidgin.im": 5, "git.ghostscript.com": 5, "gerrit.wikimedia.org": 5, "gitlab.freedesktop.org": 5, "hiddenlayer.com": 5, "support.hpe.com": 5, "thread.gmane.org": 5, "cvcn.gov.it": 5, "activemq.apache.org": 5, "article.gmane.org": 5, "bakery.cakephp.org": 5, "bugs.python.org": 5, "chromium.googlesource.com": 5, "docs.github.com": 5, "docs.rs": 5, "grimthereaperteam.medium.com": 5, "mailman.nginx.org": 5, "psirt.global.sonicwall.com": 5, "selenic.com": 5, "esecforte.com": 5, "mend.io": 5, "netsparker.com": 5, "playframework.com": 5, "securityreason.com": 5, "files.opcfoundation.org": 5, "lgtm.com": 5, "stackoverflow.com": 5, "tools.cisco.com": 5, "redmine.org": 5, "vicarius.io": 5, "w1.fi": 5, "blog.phusion.nl": 5, "codeigniter4.github.io": 5, "csirt.divd.nl": 5, "documentation.centreon.com": 5, "eprint.iacr.org": 5, "git.gnome.org": 5, "joel-malwarebenchmark.github.io": 5, "magento.com": 5, "mantisbt.org": 5, "research.loginsoft.com": 5, "neos.io": 5, "syss.de": 5, "xforce.iss.net": 5, "advisories.nats.io": 5, "bugs.tryton.org": 5, "lists.launchpad.net": 5, "salsa.debian.org": 5, "saltproject.io": 5, "shopware.com": 5, "shawroot.cc": 5, "blog.ripstech.com": 5, "blog.sonarsource.com": 5, "cheatsheetseries.owasp.org": 5, "docs.craftercms.org": 5, "docs.umbraco.com": 5, "go-review.googlesource.com": 5, "kc.mcafee.com": 5, "labs.integrity.pt": 5, "pyup.io": 5, "rubysec.com": 5, "support.ntp.org": 5, "wiki.openstack.org": 5, "concretecms.org": 5, "darkmatter.ae": 5, "linkedin.com": 5, "otrs.com": 5, "privoxy.org": 5, "sonarsource.com": 5, "trustwave.com": 5, "vmware.com": 5, "blog.rubygems.org": 5, "karmainsecurity.com": 5, "cloud.google.com": 5, "docs.python.org": 5, "git-wip-us.apache.org": 5, "nvidia.custhelp.com": 5, "pastebin.com": 5, "pypi.python.org": 5, "python-security.readthedocs.io": 5, "rumbling-slice-eb0.notion.site": 5, "rapid7.com": 5, "advisory.dw1.io": 5, "akka.io": 5, "android.googlesource.com": 5, "argo-cd.readthedocs.io": 5, "blog.fuzzing-project.org": 5, "blog.laravel.com": 5, "codeberg.org": 5, "docs.cilium.io": 5, "docs.docker.com": 5, "docs.wagtail.org": 5, "downloads.powerdns.com": 5, "electronjs.org": 5, "forums.rancher.com": 5, "irssi.org": 5, "kallithea-scm.org": 5, "legalhackers.com": 5, "lists.freedesktop.org": 5, "mellium.im": 5, "rubyonrails.org": 5, "spark.apache.org": 5, "storyboard.openstack.org": 5, "subversion.apache.org": 5, "tls.mbed.org": 5, "sunsolve.sun.com": 5, "wiki.ubuntu.com": 5, "apollographql.com": 5, "herodevs.com": 5, "imagemagick.org": 5, "kde.org": 5, "qualys.com": 5, "usenix.org": 5, "wizlynxgroup.com": 5, "x41-dsec.de": 5, "gentoo.org": 5, "git.videolan.org": 5, "moinmo.in": 5, "puppetlabs.com": 5, "arxiv.org": 5, "blog.getbootstrap.com": 5, "review.gluster.org": 5, "roy.marples.name": 5, "stackblitz.com": 5, "facebook.com": 5, "git.savannah.gnu.org": 5, "blog.torproject.org": 5, "codepen.io": 5, "codeql.github.com": 5, "commons.apache.org": 5, "confluence.atlassian.com": 5, "cs.opensource.google": 5, "doc.akka.io": 5, "docs.opennms.com": 5, "docs.openstack.org": 5, "docs.silverstripe.org": 5, "doc.traefik.io": 5, "doyensec.com": 5, "foss.heptapod.net": 5, "gcc.gnu.org": 5, "git.sheetjs.com": 5, "hackmd.io": 5, "ics-cert.kaspersky.com": 5, "kiwitcms.org": 5, "kjur.github.io": 5, "lists.gnupg.org": 5, "logback.qos.ch": 5, "logging.apache.org": 5, "mail.python.org": 5, "metacpan.org": 5, "neo4j.com": 5, "opcfoundation.org": 5, "ostorlab.co": 5, "palletsprojects.com": 5, "portal.liferay.dev": 5, "research.securitum.com": 5, "sites.google.com": 5, "source.codeaurora.org": 5, "support.sonatype.com": 5, "twistedmatrix.com": 5, "edoardoottavianelli.it": 5, "sec-consult.com": 5, "sudo.ws": 5, "vulnerability-lab.com": 5, "yiiframework.com": 5, "www-1.ibm.com": 5, "cherrypy.org": 5, "vapidlabs.com": 5, "archiva.apache.org": 5, "bugs.cacti.net": 5, "docs.moodle.org": 5, "freeradius.org": 5, "git.php.net": 5, "hmarco.org": 5, "hyp3rlinx.altervista.org": 5, "lists.bestpractical.com": 5, "php.net": 5, "qpid.apache.org": 5, "blog.clamav.net": 5, "codex.wordpress.org": 5, "cxsecurity.com": 5, "security.libvirt.org": 5, "extensions.typo3.org": 5, "gnunet.org": 5, "pretix.eu": 5, "software.intel.com": 5, "syncope.apache.org": 5, "apache.org": 5, "blackhat.com": 5, "bleepingcomputer.com": 5, "cyrusimap.org": 5, "openssh.com": 5, "arubanetworks.com": 5, "code610.blogspot.com": 5, "code.djangoproject.com": 5, "karaf.apache.org": 5, "lists.openwall.net": 5, "netty.io": 5, "packetstormsecurity.org": 5, "arstechnica.com": 5, "aws.amazon.com": 5, "benjamin-bouchet.com": 5, "blog.jquery.com": 5, "bugs.jquery.com": 5, "bugs.php.net": 5, "bugs.torproject.org": 5, "cert.pl": 5, "community.grafana.com": 5, "community.shopware.com": 5, "cves.at": 5, "datatracker.ietf.org": 5, "docs.geoserver.org": 5, "docs.sentry.io": 5, "edugit.org": 5, "fedorahosted.org": 5, "fetch.spec.whatwg.org": 5, "froala.com": 5, "gerrit.libreoffice.org": 5, "git1-us-west.apache.org": 5, "grimhacker.com": 5, "hg.reportlab.com": 5, "kb.pulsesecure.net": 5, "laravel.com": 5, "lwn.net": 5, "mail.openvswitch.org": 5, "matrix-org.github.io": 5, "nukeviet.vn": 5, "portal.microfocus.com": 5, "research.nccgroup.com": 5, "rt.cpan.org": 5, "s.apache.org": 5, "search.maven.org": 5, "security.docs.wso2.com": 5, "share.ez.no": 5, "shibboleth.net": 5, "solr.apache.org": 5, "starlabs.sg": 5, "support.microsoft.com": 5, "support.zabbix.com": 5, "sysdream.com": 5, "tech.feedyourhead.at": 5, "dolibarr.org": 5, "hashicorp.com": 5, "opennms.com": 5, "passbolt.com": 5, "reddit.com": 5, "sqlite.org": 5, "strongswan.org": 5, "hawktesters.com": 5, "topquadrant.com": 5, "blog.mindedsecurity.com": 5, "dev.eclipse.org": 5, "downloads.digium.com": 5, "permalink.gmane.org": 5, "0xacab.org": 5, "about.gitlab.com": 5, "alephsecurity.com": 5, "blog.cloudflare.com": 5, "bugs.freedesktop.org": 5, "bugs.kde.org": 5, "community.openvpn.net": 5, "core.spip.net": 5, "docs.oracle.com": 5, "dumpco.re": 5, "edk2-docs.gitbooks.io": 5, "forum.cosmos.network": 5, "git.ffmpeg.org": 5, "golang.org": 5, "hex.pm": 5, "lists.x.org": 5, "me.sap.com": 5, "pdfium.googlesource.com": 5, "peps.python.org": 5, "portal.perforce.com": 5, "roundcube.net": 5, "trac.ffmpeg.org": 5, "trac.pjsip.org": 5, "svn.cacti.net": 5, "couchbase.com": 5, "nlnetlabs.nl": 5, "prevanders.net": 5, "sourceclear.com": 5, "suse.com": 5, "novell.com": 5, "openafs.org": 5, "tryton.org": 5, "zope.org": 5, "blog.plataformatec.com.br": 5, "blog.trendmicro.com": 5, "geronimo.apache.org": 5, "hg.tryton.org": 5, "issues.roundup-tracker.org": 5, "akerva.com": 5, "api.slack.com": 5, "backdropcms.org": 5, "blog.certimetergroup.com": 5, "blog.jetbrains.com": 5, "codereview.qt-project.org": 5, "codewhitesec.blogspot.com": 5, "community.librenms.org": 5, "craftcms.com": 5, "discord.com": 5, "discuss.flarum.org": 5, "discuss.tryton.org": 5, "dl.acm.org": 5, "docs.aws.amazon.com": 5, "docs.pinot.apache.org": 5, "docs.projectdiscovery.io": 5, "documentation.bonitasoft.com": 5, "duo.com": 5, "elixirforum.com": 5, "extensions.xwiki.org": 5, "ezplatform.com": 5, "git.launchpad.net": 5, "gitlord.com": 5, "git.shibboleth.net": 5, "gnutls.org": 5, "gxx777.github.io": 5, "ibb.co": 5, "i.ibb.co": 5, "internetcomputer.org": 5, "issues.opennms.org": 5, "jira.qos.ch": 5, "jsoup.org": 5, "kiali.io": 5, "lab.louiz.org": 5, "labs.bishopfox.com": 5, "linkis.apache.org": 5, "mattermost.com": 5, "mycvee.blogspot.com": 5, "notes.sjtu.edu.cn": 5, "opcfoundation-onlineapplications.org": 5, "openid.net": 5, "patch-diff.githubusercontent.com": 5, "pho3n1x-web.github.io": 5, "podalirius.net": 5, "portals.apache.org": 5, "projects.eclipse.org": 5, "pulsesecurity.co.nz": 5, "quarkus.io": 5, "reactjs.org": 5, "review.typo3.org": 5, "salvatoresecurity.com": 5, "securelayer7.net": 5, "secure.ucc.asn.au": 5, "shrouded-trowel-50c.notion.site": 5, "ssd-disclosure.com": 5, "strapi.io": 5, "surrealdb.com": 5, "tailscale.com": 5, "tufangungor.github.io": 5, "support.avaya.com": 5, "webargs.readthedocs.io": 5, "whitehub.net": 5, "ait.ac.at": 5, "checkmarx.com": 5, "cloudbees.com": 5, "cloudera.com": 5, "codeigniter.com": 5, "digital.security": 5, "dulwich.io": 5, "freeipa.org": 5, "gerritcodereview.com": 5, "ghostccamm.com": 5, "horizon3.ai": 5, "imperva.com": 5, "mediawiki.org": 5, "openmicroscopy.org": 5, "schedmd.com": 5, "wwws.nightwatchcybersecurity.com": 5, "synacktiv.com": 5, "synopsys.com": 5, "tigera.io": 5, "twistlock.com": 5, "w3.org": 5, "verneet.com": 5, "dnnsoftware.com": 5, "halfdog.net": 5, "hitachi.co.jp": 5, "reviewboard.org": 5, "us-cert.gov": 5, "depot.galaxyproject.org": 5, "codecanyon.net": 5, "marketplace.visualstudio.com": 5, "docs.telerik.com": 5, "support.hcltechsw.com": 5, "watchguard.com": 5, "bazaar.launchpad.net": 5, "comments.gmane.org": 5, "db.apache.org": 5, "debbugs.gnu.org": 5, "emberjs.com": 5, "git.ganeti.org": 5, "lists.thekelleys.org.uk": 5, "phpmyadmin.git.sourceforge.net": 5, "projects.puppetlabs.com": 5, "anonscm.debian.org": 5, "apereo.github.io": 5, "blogs.apache.org": 5, "bugzilla.opensuse.org": 5, "build.prestashop.com": 5, "community.rapid7.com": 5, "cryptography.io": 5, "cybersecurityworks.com": 5, "dev.mysql.com": 5, "docs.opencast.org": 5, "docs.pagure.org": 5, "docs.powerdns.com": 5, "ftp.openbsd.org": 5, "gitlab.labs.nic.cz": 5, "git.linuxtv.org": 5, "git.spip.net": 5, "googleprojectzero.blogspot.com": 5, "helm.sh": 5, "hermes.opensuse.org": 5, "hg.prosody.im": 5, "isc.sans.edu": 5, "issues.jenkins-ci.org": 5, "jfrog.com": 5, "jira.hdfgroup.org": 5, "jira.springsource.org": 5, "lists.01.org": 5, "lists.lysator.liu.se": 5, "lists.torproject.org": 5, "nealpoole.com": 5, "nokogiri.org": 5, "novysodope.github.io": 5, "somevulnsofadlab.blogspot.jp": 5, "source.ikiwiki.branchable.com": 5, "patchwork.linuxtv.org": 5, "prosody.im": 5, "pub.freerdp.com": 5, "research.checkpoint.com": 5, "rt-solutions.de": 5, "tracker.debian.org": 5, "user-images.githubusercontent.com": 5, "ambionics.io": 5, "bouncycastle.org": 5, "freebsd.org": 5, "mautic.org": 5, "theregister.com": 5, "trac.edgewall.org": 5, "fujitsu.com": 5, "gopivotal.com": 5, "huawei.com": 5, "ush.it": 5, "wiki.shikangsi.com": 5, "xenbits.xenproject.org": 5, "bytium.com": 5, "enpass.io": 5, "archives.seul.org": 5, "blog.npmjs.org": 5, "blog.talosintel.com": 5, "bugs.jqueryui.com": 5, "dev.rubyonrails.org": 5, "download.lighttpd.net": 5, "freeimage.cvs.sourceforge.net": 5, "googlechromereleases.blogspot.ca": 5, "ijbswa.cvs.sourceforge.net": 5, "issues.umbraco.org": 5, "jira.codehaus.org": 5, "jruby.org": 5, "lcamtuf.coredump.cx": 5, "lists.gnutls.org": 5, "lists.qt-project.org": 5, "lists.xen.org": 5, "mx.gw.com": 5, "octobercms.com": 5, "openmeetings.apache.org": 5, "pear.php.net": 5, "projects.theforeman.org": 5, "research.cs.wisc.edu": 5, "airflow.apache.org": 5, "santuario.apache.org": 5, "appcheck-ng.com": 5, "app.safebase.io": 5, "app.snyk.io": 5, "argoproj.github.io": 5, "artifacthub.io": 5, "authjs.dev": 5, "savannah.nongnu.org": 5, "bbpress.org": 5, "belong2yourself.github.io": 5, "blocksecteam.medium.com": 5, "blog.cal1.cn": 5, "blog.detectify.com": 5, "blog.doyensec.com": 5, "blog.gitea.com": 5, "blog.jcoglan.com": 5, "blog.jitendrapatro.me": 5, "blog.jqueryui.com": 5, "blog.jupyter.org": 5, "blog.moku.fr": 5, "blog.payara.fish": 5, "blogs.securiteam.com": 5, "blog.trailofbits.com": 5, "breakingthe3ma.app": 5, "brooklyn.apache.org": 5, "buddypress.org": 5, "bugs.oxid-esales.com": 5, "bz.mercurial-scm.org": 5, "cgit.kde.org": 5, "channels.readthedocs.io": 5, "chromium-review.googlesource.com": 5, "ckan.org": 5, "clojure.atlassian.net": 5, "clusterfuzz-external.appspot.com": 5, "community.snowflake.com": 5, "community.sonarsource.com": 5, "community.synopsys.com": 5, "cupc4k3.medium.com": 5, "developer.arm.com": 5, "dev.liferay.com": 5, "discuss.lightbend.com": 5, "docs.getdbt.com": 5, "docs.gradle.com": 5, "docs.jboss.org": 5, "docs.magnolia-cms.com": 5, "docs.mattermost.com": 5, "docs.opendaylight.org": 5, "docs.rundeck.com": 5, "docs.sixlabors.com": 5, "docs.strapi.io": 5, "docs.typo3.org": 5, "docs.wso2.com": 5, "duartecsantos.github.io": 5, "eclipse.dev": 5, "eslint.org": 5, "excellium-services.com": 5, "exment.net": 5, "fatihhcelik.blogspot.com": 5, "fortiguard.com": 5, "forum.ghost.org": 5, "forum.mautic.org": 5, "gerrit.onosproject.org": 5, "geth.ethereum.org": 5, "ghost.org": 5, "gist.githubusercontent.com": 5, "git.eclipse.org": 5, "git.haproxy.org": 5, "github.dev": 5, "github.openssl.org": 5, "gitlab.kitware.com": 5, "gitlab.ow2.org": 5, "gitlab.redox-os.org": 5, "git.opendaylight.org": 5, "git-scm.com": 5, "gitweb.gentoo.org": 5, "gitweb.torproject.org": 5, "glassfish.org": 5, "go-vela.github.io": 5, "grails.org": 5, "gstreamer.freedesktop.org": 5, "guidovranken.wordpress.com": 5, "hadoop.apache.org": 5, "hexdocs.pm": 5, "hg.python.org": 5, "htcondor-wiki.cs.wisc.edu": 5, "ihacktoprotect.com": 5, "ikiwiki.info": 5, "infosecwriteups.com": 5, "inspector.pypi.io": 5, "invdos.net": 5, "iotaa.cn": 5, "ipsilon-project.org": 5, "issues.shibboleth.net": 5, "james.apache.org": 5, "javaee.github.io": 5, "jdbc.postgresql.org": 5, "jekyllrb.com": 5, "jena.apache.org": 5, "jira.duraspace.org": 5, "jira.hyperledger.org": 5, "johnjhacking.com": 5, "jolokia.org": 5, "jupyterhub.readthedocs.io": 5, "knightlab.northwestern.edu": 5, "know.bishopfox.com": 5, "kramdown.gettalong.org": 5, "kubernetes.io": 5, "kyverno.io": 5, "laravel-news.com": 5, "launchpadlibrarian.net": 5, "learn.microsoft.com": 5, "lf-opendaylight.atlassian.net": 5, "lists.exim.org": 5, "lists.quagga.net": 5, "lists.samba.org": 5, "lists.schedmd.com": 5, "loopback.io": 5, "mail.zope.org": 5, "makandracards.com": 5, "mariadb.com": 5, "mosquitto.org": 5, "mp.weixin.qq.com": 5, "openfga.dev": 5, "oxidforge.org": 5, "pentest.com.tr": 5, "phab.bots.miraheze.wiki": 5, "plugins.craftcms.com": 5, "polarssl.org": 5, "spreecommerce.com": 5, "public-inbox.org": 5, "rancher.com": 5, "redmine.openinfosecfoundation.org": 5, "repo.mercurial-scm.org": 5, "rhinosecuritylabs.com": 5, "runkit.com": 5, "sansec.io": 5, "savannah.gnu.org": 5, "seanmonstar.com": 5, "security.FreeBSD.org": 5, "seemann.io": 5, "sl1nki.page": 5, "sources.debian.org": 5, "stackdiary.com": 5, "support.hazelcast.com": 5, "supportportal.juniper.net": 5, "support.servicenow.com": 5, "swarm.ptsecurity.com": 5, "tauri.app": 5, "thecybergeek.co.uk": 5, "tib36.github.io": 5, "storm.apache.org": 5, "trovent.github.io": 5, "trovent.io": 5, "uima.apache.org": 5, "unit42.paloaltonetworks.com": 5, "unparalleled.eu": 5, "support.blackberry.com": 5, "uwsgi-docs.readthedocs.io": 5, "vufind.org": 5, "vulmon.com": 5, "vuln.go.dev": 5, "vuln.ryotak.net": 5, "websecnerd.blogspot.in": 5, "wha13.github.io": 5, "whitehatck01.blogspot.com": 5, "wiki.mageia.org": 5, "wiki.phpbb.com": 5, "wp-crontrol.com": 5, "ag-grid.com": 5, "apiman.io": 5, "bentley.com": 5, "bitvise.com": 5, "bluetooth.com": 5, "bookstackapp.com": 5, "cnblogs.com": 5, "cnvd.org.cn": 5, "code-intelligence.com": 5, "compass-security.com": 5, "django-cms.org": 5, "doctrine-project.org": 5, "eclipse.org": 5, "elastic.co": 5, "envoyproxy.io": 5, "exploitalert.com": 5, "fastly.com": 5, "fzi.de": 5, "getastra.com": 5, "graylog.org": 5, "htbridge.com": 5, "kingkk.com": 5, "libssh.org": 5, "nccgroup.trust": 5, "nginx.com": 5, "openpolicyagent.org": 5, "pac4j.org": 5, "pgadmin.org": 5, "phpmyfaq.de": 5, "roundup-tracker.org": 5, "rubydoc.info": 5, "saltstack.com": 5, "secpod.com": 5, "shielder.it": 5, "smarty.net": 5, "smilecdr.com": 5, "soluble.ai": 5, "star123.top": 5, "sumor.top": 5, "swascan.com": 5, "teeworlds.com": 5, "verot.net": 5, "videolan.org": 5, "xwiki.org": 5, "yuque.com": 5, "yarnpkg.com": 5, "zeppelin.apache.org": 5, "unomi.apache.org": 5, "web2py.com": 5, "web.mit.edu": 5, "chiark.greenend.org.uk": 5, "conostix.com": 5, "daimacn.com": 5, "dojotoolkit.org": 5, "igniterealtime.org": 5, "logilab.org": 5, "swi-prolog.org": 5, "yuiblog.com": 5, "xerces.apache.org": 5, "yuilibrary.com": 5, "zaranshaikh.blogspot.com": 5, "checkmk.com": 5, "support.eset.com": 5, "git.canopsis.net": 5, "forescout.com": 5, "mitel.com": 5, "cert-in.org.in": 5, "schneider-elektronik.de": 5, "security-advisory.acronis.com": 5, "activemq.2283324.n4.nabble.com": 5, "apache-ignite-developers.2346864.n4.nabble.com": 5, "baraktawily.blogspot.co.il": 5, "blog.diniscruz.com": 5, "blog.kotowicz.net": 5, "blog.neargle.com": 5, "blog.nodejs.org": 5, "blog.talosintelligence.com": 5, "borgbackup.readthedocs.io": 5, "bugs.proftpd.org": 5, "cgit.drupalcode.org": 5, "erlang.org": 5, "extplorer.net": 5, "foxglovesecurity.com": 5, "freshmeat.net": 5, "googlechromereleases.blogspot.de": 5, "h20000.www2.hp.com": 5, "htmlpurifier.org": 5, "itrc.hp.com": 5, "kalilinux.co": 5, "lists.horde.org": 5, "lists.suse.com": 5, "lists.ucc.gu.uwa.edu.au": 5, "lkml.iu.edu": 5, "mercurial.selenic.com": 5, "miki.it": 5, "openocd.zylin.com": 5, "phpmyadmin.svn.sourceforge.net": 5, "poi.apache.org": 5, "redmine.lighttpd.net": 5, "repo.or.cz": 5, "rubyforge.org": 5, "aka.ms": 5, "sakurity.com": 5, "blog.filippo.io": 5, "blog.ircmaxell.com": 5, "blog.justinbull.ca": 5, "blogs.akamai.com": 5, "blog.sonatype.com": 5, "blog.spip.net": 5, "blog.srcclr.com": 5, "brakemanscanner.org": 5, "bridge.grumpy-troll.org": 5, "buer.haus": 5, "bugs.dojotoolkit.org": 5, "bugs.openjdk.java.net": 5, "bugs.otr.im": 5, "bugzilla.proxmox.com": 5, "collectiveidea.com": 5, "connect2id.com": 5, "coredns.io": 5, "cosmosofcyberspace.github.io": 5, "delvingbitcoin.org": 5, "devco.re": 5, "dev.icinga.org": 5, "docs.cometbft.com": 5, "docs.couchbase.com": 5, "docs.getindico.io": 5, "dovecot.org": 5, "download.samba.org": 5, "forge.glpi-project.org": 5, "ftp.suse.com": 5, "git.blender.org": 5, "git.enlightenment.org": 5, "git.musl-libc.org": 5, "git.samba.org": 5, "git.zx2c4.com": 5, "grsecurity.net": 5, "hackdefense.com": 5, "hg.mozilla.org": 5, "hibernate.atlassian.net": 5, "ics-cert.us-cert.gov": 5, "int21.de": 5, "issues.igniterealtime.org": 5, "issues.rpath.com": 5, "kb.juniper.net": 5, "kyberslash.cr.yp.to": 5, "labs.twistedmatrix.com": 5, "ledgersmb.org": 5, "lib.openmpt.org": 5, "lists.dns-oarc.net": 5, "lists.fedorahosted.org": 5, "lists.linuxfoundation.org": 5, "lists.xapian.org": 5, "minerva.crocs.fi.muni.cz": 5, "mta.openssl.org": 5, "somevulnsofadlab.blogspot.com": 5, "oss-fuzz.com": 5, "oss.oracle.com": 5, "source.git-annex.branchable.com": 5, "pub.dev": 5, "quickview.cloudapps.cisco.com": 5, "robotattack.org": 5, "security.googleblog.com": 5, "shells.systems": 5, "sintonen.fi": 5, "skia.googlesource.com": 5, "staaldraad.github.io": 5, "store.shopware.com": 5, "sumofpwn.nl": 5, "support.lenovo.com": 5, "trac.osgeo.org": 5, "trac.webkit.org": 5, "trac.xiph.org": 5, "udiniya.wordpress.com": 5, "support.novell.com": 5, "weechat.org": 5, "withatwist.dev": 5, "codeaurora.org": 5, "exim.org": 5, "foxmole.com": 5, "genivia.com": 5, "gosecure.net": 5, "home-assistant.io": 5, "quagga.net": 5, "tarlogic.com": 5, "varnish-cache.org": 5, "xorl.wordpress.com": 5, "zenar.io": 5, "zone.spip.net": 5, "zyan.scripts.mit.edu": 5, "theforeman.org": 5, "tracker.firebirdsql.org": 5, "trubka.network.cz": 5, "wiki.mahara.org": 5, "cacti.net": 5, "eterna.com.au": 5, "eweek.com": 5, "ghostscript.com": 5, "h5l.org": 5, "ietf.org": 5, "information-security.fr": 5, "iwantacve.cn": 5, "links.org": 5, "mutt.org": 5, "slackware.com": 5, "thewildbeast.co.uk": 5, "tornadoweb.org": 5, "znuny.com": 5, "apps.apple.com": 5, "dontvacuum.me": 5, "wiz.io": 5, "tsc-soft.co.jp": 5, "2016.hack.lu": 5, "agrrrdog.blogspot.com": 5, "alexcrack.com": 5, "apache-spark-developers-list.1001551.n3.nabble.com": 5, "appwrite.com": 5, "archive.hack.lu": 5, "argo.com": 5, "bandoche.com": 5, "bilishim.com": 5, "blackboxexporter.com": 5, "blog.amossys.fr": 5, "blog.angularjs.org": 5, "blog.apps.npr.org": 5, "blog.bestpractical.com": 5, "blog.checkpoint.com": 5, "blog.csdn.net": 5, "blog.datomic.com": 5, "blog.emaze.net": 5, "blog.intothesymmetry.com": 5, "blog.portswigger.net": 5, "blog.recurity-labs.com": 5, "blog.securelayer7.net": 5, "boltcms.com": 5, "breaktoprotect.blogspot.com": 5, "bugs.jython.org": 5, "bugs.ledger-cli.org": 5, "buildbot.net": 5, "bzr.linuxfoundation.org": 5, "ca17.com": 5, "census-labs.com": 5, "centreon.com": 5, "ceriksen.com": 5, "chargen.matasano.com": 5, "chrony.tuxfamily.org": 5, "code.call-cc.org": 5, "community.ca.com": 5, "community.impresscms.org": 5, "cpansearch.perl.org": 5, "craft.com": 5, "crafter.com": 5, "cvs.moodle.org": 5, "cvsweb.netbsd.org": 5, "cyberworldmirror.com": 5, "davidsopaslabs.blogspot.com": 5, "dev.deluge-torrent.org": 5, "dfn.dl.sourceforge.net": 5, "directory.apache.org": 5, "doc.scrapy.org": 5, "doc.silverstripe.org": 5, "docs.info.apple.com": 5, "docs.python-requests.org": 5, "docs.withknown.com": 5, "dolibarr.com": 5, "dotclear.org": 5, "dx.doi.org": 5, "elixir.ematia.de": 5, "embed.plnkr.co": 5, "en.0day.today": 5, "encode.com": 5, "etcd.com": 5, "ethereum.com": 5, "evilpacket.net": 5, "exfiltrated.com": 5, "extendedsubset.com": 5, "fitnesse.org": 5, "flyingmana.de": 5, "freecode.com": 5, "ghost.com": 5, "gilacms.com": 5, "git-blame.blogspot.com": 5, "git.deluge-torrent.org": 5, "githubcommherflower.com": 5, "git.postgresql.org": 5, "go-ethereum.com": 5, "gogs.io": 5, "gollum.com": 5, "grailsblog.objectcomputing.com": 5, "groovy-lang.org": 5, "ha.cker.info": 5, "haxx.ml": 5, "heartex.com": 5, "help.plot.ly": 5, "hidden-one.co.in": 5, "holisticinfosec.org": 5, "hsqldb.org": 5, "icecoder.com": 5, "info.tiki.org": 5, "jakarta.apache.org": 5, "jeecg-boot.com": 5, "jinja.pocoo.org": 5, "joplin.com": 5, "juddi.apache.org": 5, "labelstud.io": 5, "labs.mwrinfosecurity.com": 5, "lambdaops.com": 5, "langchain.com": 5, "lavalite.com": 5, "lcamtuf.blogspot.ca": 5, "lesscss.org": 5, "libvirt.org": 5, "liferay.com": 5, "linux.oracle.com": 5, "lists.live555.com": 5, "lists.mutt.org": 5, "lists.roaringpenguin.com": 5, "lists.typo3.org": 5, "lua.2524044.n2.nabble.com": 5, "lxml.de": 5, "maven.apache.org": 5, "mina.apache.org": 5, "mumble.info": 5, "n8.tumblr.com": 5, "nevado.skyscreamer.org": 5, "ngenuity-is.com": 5, "nginx.org": 5, "nodejs.com": 5, "openapi-generator.com": 5, "openbsd.org": 5, "opennlp.apache.org": 5, "ph0rse.me": 5, "processwire.com": 5, "prometheus.com": 5, "pyload.com": 5, "pypi.doubanio.com": 5, "pypinksign.com": 5, "python.6.x6.nabble.com": 5, "qcubed.com": 5, "rails.lighthouseapp.com": 5, "raneto.com": 5, "request-baskets.com": 5, "resque.com": 5, "roundup.svn.sourceforge.net": 5, "ruffsecurity.blogspot.com": 5, "0ang3el.blogspot.ru": 5, "2018.zeronights.ru": 5, "98587329.github.io": 5, "aaltodoc.aalto.fi": 5, "accumulo.apache.org": 5, "acloudtree.com": 5, "adamcaudill.com": 5, "advisories.gitlab.com": 5, "advisories.octopus.com": 5, "aetsu.github.io": 5, "agent-js.icp.xyz": 5, "sailsjs.org": 5, "aisec.today": 5, "aleksis.org": 5, "alesandroortiz.com": 5, "alexsecurity.rocks": 5, "alicangonullu.org": 5, "anisiosantos.me": 5, "anongit.mindrot.org": 5, "ant.apache.org": 5, "antmedia.io": 5, "apidoc.gitee.com": 5, "apidock.com": 5, "apiiro.com": 5, "app.intigriti.com": 5, "appwrite.io": 5, "atlaskit.atlassian.com": 5, "attackerkb.com": 5, "at-trustit.tuv.at": 5, "autobahn.readthedocs.io": 5, "avideo.tube": 5, "backbonejs.org": 5, "bad.code.blog": 5, "badpackets.net": 5, "bandit.readthedocs.io": 5, "baomidou.com": 5, "beanvalidation.org": 5, "becomepentester.blogspot.ae": 5, "bishopfox.com": 5, "bitbucket.hdfgroup.org": 5, "bittherapy.net": 5, "blakeembrey.com": 5, "blitiri.com.ar": 5, "blog.0xzon.dev": 5, "blog.appsecco.com": 5, "blog.bentkowski.info": 5, "blog.bssi.fr": 5, "blog.caller.xyz": 5, "blog.chebuya.com": 5, "blog.compass-security.com": 5, "blog.daniel-ruf.de": 5, "blog.effectrenan.com": 5, "blog.ethereum.org": 5, "blog.exodusintel.com": 5, "blog.gdssecurity.com": 5, "blog.gradle.org": 5, "blog.hackeriet.no": 5, "blog.hackingforce.com.br": 5, "blog.ipfs.io": 5, "blog.isosceles.com": 5, "blog.jiguang.xyz": 5, "blog.librenms.org": 5, "blog.litespeedtech.com": 5, "blog.mevsec.com": 5, "blog.nettitude.com": 5, "blog.orange.tw": 5, "blog.ostorlab.co": 5, "blog.phpbb.com": 5, "blog.pusher.com": 5, "blog.qualys.com": 5, "blog.sentry.io": 5, "blogs.gnome.org": 5, "blog.slonser.info": 5, "blog.smithsecurity.biz": 5, "blogs.opera.com": 5, "blogs.sap.com": 5, "blog.truesec.com": 5, "blog.xss.am": 5, "boats.gitlab.io": 5, "boho.or.kr": 5, "book.hacktricks.xyz": 5, "brave.com": 5, "breakandpray.com": 5, "bsg.tech": 5, "bto.bluecoat.com": 5, "bugs.bitlbee.org": 5, "bugs.libssh.org": 5, "bugs.limesurvey.org": 5, "bugs.otrs.org": 5, "bugs.ruby-lang.org": 5, "bugzilla.libav.org": 5, "bundler.io": 5, "burninatorsec.blogspot.com": 5, "buttercup.pw": 5, "caddy.community": 5, "caddyserver.com": 5, "scala-lang.org": 5, "cardaci.xyz": 5, "carl1l.github.io": 5, "scarybeastsecurity.blogspot.de": 5, "casdoor.org": 5, "c-c-a.org": 5, "cdn2.hubspot.net": 5, "cdn.datatables.net": 5, "cdn.sheetjs.com": 5, "cert.enea.pl": 5, "cgit.freebsd.org": 5, "cgit.freedesktop.org": 5, "chaos.social": 5, "chartkick.com": 5, "checkstyle.org": 5, "chmod744.super.site": 5, "chocapikk.com": 5, "clerk.com": 5, "clojars.org": 5, "cloud-trustit.spp.at": 5, "codeburst.io": 5, "code.jeremyevans.net": 5, "codex.bbpress.org": 5, "codex.buddypress.org": 5, "com0t.github.io": 5, "commonmark.thephpleague.com": 5, "community.contao.org": 5, "community.developer.atlassian.com": 5, "community.gravitee.io": 5, "community.traefik.io": 5, "community.veracode.com": 5, "concretecms.com": 5, "contrastsecurity.com": 5, "cortexmetrics.io": 5, "cowtowncoder.medium.com": 5, "cratedb.com": 5, "cryptosense.com": 5, "csrc.nist.gov": 5, "cube01.io": 5, "cupc4k3.lol": 5, "cure53.de": 5, "cve.anastasi.link": 5, "cve.naver.com": 5, "cve.nstsec.com": 5, "cyllective.com": 5, "danielfett.de": 5, "dannewitz.ninja": 5, "darkbit.io": 5, "datasette.io": 5, "datnlq.gitbook.io": 5, "deadsh0t.medium.com": 5, "demo.ripstech.com": 5, "deps.dev": 5, "devdocs.magento.com": 5, "devel0pment.de": 5, "developer.apple.com": 5, "developer.hashicorp.com": 5, "developer.jboss.org": 5, "developers.cloudflare.com": 5, "developers.google.com": 5, "developer.shopware.com": 5, "developers.yubico.com": 5, "developer.woocommerce.com": 5, "develop.sentry.dev": 5, "dev.gajim.org": 5, "dev.to": 5, "diff.coditsu.io": 5, "diff.hex.pm": 5, "digi.ninja": 5, "directus.io": 5, "discourse.vtk.org": 5, "discuss.istio.io": 5, "dist.apache.org": 5, "dist.plone.org": 5, "dnsdist.org": 5, "doc.clickup.com": 5, "doc.rust-lang.org": 5, "docs.centreon.com": 5, "docs.ceph.com": 5, "docs.ckan.org": 5, "docs.dapr.io": 5, "docs.dask.org": 5, "docs.dependencytrack.org": 5, "docs.directus.io": 5, "docs.flyte.org": 5, "docs.gitlab.com": 5, "docs.gofiber.io": 5, "docs.gravityforms.com": 5, "docs.libp2p.io": 5, "docs.locust.io": 5, "docs.mulesoft.com": 5, "docs.nautobot.com": 5, "docs.nginx.com": 5, "docs.parseplatform.org": 5, "docs.pylonsproject.org": 5, "docs.r3.com": 5, "docs.saltproject.io": 5, "docs.scrapy.org": 5, "docs.securesauce.dev": 5, "docs.sigstore.dev": 5, "docs.snowflake.com": 5, "docs.spring.io": 5, "docs.sqlalchemy.org": 5, "docs.sympy.org": 5, "docs.tigergraph.com": 5, "docs.totaljs.com": 5, "docs.velociraptor.app": 5, "docs.veracode.com": 5, "docs.vyperlang.org": 5, "docs.wagtail.io": 5, "documentation.concrete5.org": 5, "documentation.wazuh.com": 5, "doi.org": 5, "dotnetnuke.codeplex.com": 5, "dubell.io": 5, "dustri.org": 5, "dwrensha.github.io": 5, "security.360.cn": 5, "security.openttd.org": 5, "securitywarrior9.blogspot.com": 5, "edg.io": 5, "edhunter484.medium.com": 5, "eldstal.se": 5, "electron.atom.io": 5, "elgg.org": 5, "emily.id.au": 5, "en.bandisoft.com": 5, "en.bitcoin.it": 5, "engindemirbilek.github.io": 5, "en.osdn.jp": 5, "epadillas.github.io": 5, "erlef.github.io": 5, "eslam.io": 5, "exceptionfactory.com": 5, "experienceleague.adobe.com": 5, "expressjs.com": 5, "fastapi-admin-pro.long2ice.io": 5, "fbdhhhh47.github.io": 5, "febin0x4e4a.blogspot.com": 5, "febin0x4e4a.wordpress.com": 5, "febinj.medium.com": 5, "ferrous-systems.com": 5, "fgsec.net": 5, "filezilla-project.org": 5, "fisheye6.atlassian.com": 5, "flask-limiter.readthedocs.io": 5, "floqast.com": 5, "flowiseai.com": 5, "flyd.uk": 5, "fmyyy1.github.io": 5, "forge.centreon.com": 5, "forge.typo3.org": 5, "forum.codeigniter.com": 5, "forum.datomic.com": 5, "forum.ksec.co.uk": 5, "forum.netgate.com": 5, "forum.openzeppelin.com": 5, "forums.couchbase.com": 5, "forum.silverstripe.org": 5, "forums.swift.org": 5, "fossies.org": 5, "freemarker.apache.org": 5, "frycos.github.io": 5, "fuo.fi": 5, "fusionauth.io": 5, "gainsec.com": 5, "gauravnarwani.com": 5, "genix.me": 5, "geoserver.org": 5, "gerrit.asterisk.org": 5, "gerrit.ovirt.org": 5, "getcomposer.org": 5, "getgrav.org": 5, "getkirby.com": 5, "getlaminas.org": 5, "getlektor.com": 5, "git-annex.branchable.com": 5, "git.fedorahosted.org": 5, "github.com.mattermost": 5, "git.libssh.org": 5, "git.oschina.net": 5, "git.reviewboard.kde.org": 5, "git.sdaoden.eu": 5, "git.xiph.org": 5, "gld.mcphail.uk": 5, "glitch.com": 5, "gluu.org": 5, "go2docs.graylog.org": 5, "godoc.org": 5, "gohugo.io": 5, "go-review.git.corp.google.com": 5, "graz.pure.elsevier.com": 5, "greysec.net": 5, "groups.drupal.org": 5, "grumpz.net": 5, "guides.spreecommerce.org": 5, "gultsch.de": 5, "hackerdna.com": 5, "hacker.soarescorp.com": 5, "hackers.report": 5, "hackinglab.cz": 5, "hackmysystems.tumblr.com": 5, "hackpuntes.com": 5, "hansmi.ch": 5, "hapifhir.io": 5, "help.ecostruxureit.com": 5, "help.egroupware.org": 5, "help.mulesoft.com": 5, "help.panic.com": 5, "help.passbolt.com": 5, "help.rapid7.com": 5, "help.sonatype.com": 5, "shindig.apache.org": 5, "shiro.apache.org": 5, "homakov.blogspot.ru": 5, "html5lib.readthedocs.io": 5, "httpwg.org": 5, "hub.docker.com": 5, "hugegraph.apache.org": 5, "i.blackhat.com": 5, "ibm.github.io": 5, "igniterealtime.atlassian.net": 5, "silverpeas.com": 5, "imgur.com": 5, "infosec.exchange": 5, "infra.spec.whatwg.org": 5, "inhann.top": 5, "inlong.apache.org": 5, "insinuator.net": 5, "intrix.com.au": 5, "ipython.org": 5, "ipython.readthedocs.io": 5, "irrd.readthedocs.io": 5, "isec.pl": 5, "issues.ibexa.co": 5, "issues.jasig.org": 5, "issues.jenkins.io": 5, "issues.sonatype.org": 5, "it-sec.de": 5, "itsmeanonartist.tech": 5, "jadaptive.com": 5, "janino-compiler.github.io": 5, "java.net": 5, "jay-from-future.github.io": 5, "jenkins-ci.org": 5, "jetpack.com": 5, "jinja.palletsprojects.com": 5, "jinmu1108.github.io": 5, "jira.onosproject.org": 5, "jira.opendaylight.org": 5, "jira.sonarsource.com": 5, "jira.whamcloud.com": 5, "jquery.com": 5, "jqueryui.com": 5, "jqueryvalidation.org": 5, "jsfiddle.net": 5, "jub0bs.com": 5, "junit.org": 5, "kafka.apache.org": 5, "kb.hitcon.org": 5, "kb.netapp.com": 5, "skipper.com": 5, "koji.fedoraproject.org": 5, "korelogic.com": 5, "koz.io": 5, "labanskoller.se": 5, "labs.detectify.com": 5, "lab.wallarm.com": 5, "landave.io": 5, "laravel-admin.org": 5, "latestpcsolution.wordpress.com": 5, "launchpad.support.sap.com": 5, "laworigin.github.io": 5, "layui.dev": 5, "learn.snyk.io": 5, "lednerb.de": 5, "lessonsec.com": 5, "libgit2.org": 5, "libnmap.readthedocs.io": 5, "lib.rs": 5, "lightning.network": 5, "limpidsecurity.pl": 5, "linkerd.io": 5, "linotp.org": 5, "lists.cncf.io": 5, "lists.denx.de": 5, "lists.ffmpeg.org": 5, "lists.mindrot.org": 5, "lists.osgeo.org": 5, "lists.w3.org": 5, "lists.zx2c4.com": 5, "locutus.io": 5, "lutrasecurity.com": 5, "lycshub.github.io": 5, "m3n0sd0n4ld.github.io": 5, "mail.gnome.org": 5, "mailman-mail5.webfaction.com": 5, "smalruby.jp": 5, "marketplace.atlassian.com": 5, "martinthomson.github.io": 5, "mat4mee.notion.site": 5, "matt.ucc.asn.au": 5, "mayaseven.com": 5, "media.dedaub.com": 5, "mensfeld.pl": 5, "meshery.io": 5, "meta.wikimedia.org": 5, "meterpreter.org": 5, "minhnq22.medium.com": 5, "mitmproxy.org": 5, "mitogen.networkgenomics.com": 5, "mksec.tk": 5, "mlflow.org": 5, "modwsgi.readthedocs.io": 5, "monicz.dev": 5, "morehouse.github.io": 5, "mostwanted002.cf": 5, "mouha.be": 5, "movermeyer.com": 5, "msrc-blog.microsoft.com": 5, "mthbernardes.github.io": 5, "mulch.dev": 5, "my.f5.com": 5, "my.goanywhere.com": 5, "nablarch.atlassian.net": 5, "nakedsecurity.sophos.com": 5, "nandynarwhals.org": 5, "narrow-oatmeal-0c0.notion.site": 5, "nasa.github.io": 5, "nest.pijul.com": 5, "nghttp2.org": 5, "nmap.org": 5, "nodemailer.com": 5, "node-postgres.com": 5, "nostarttls.secvuln.info": 5, "notes.netbytesec.com": 5, "note.youdao.com": 5, "note.zhaoj.in": 5, "nova.app": 5, "nowotarski.info": 5, "nozero.io": 5, "nsfocusglobal.com": 5, "numanozdemir.com": 5, "objectcomputing.com": 5, "octoprint.org": 5, "okankurtulus.com.tr": 5, "omespino.com": 5, "onekey.com": 5, "openai.com": 5, "openbase.com": 5, "opencast.jira.com": 5, "opencirt.com": 5, "openjdk.org": 5, "opennms.atlassian.net": 5, "opensearch.org": 5, "opensource.fast-report.com": 5, "openssf.org": 5, "opentelemetry.io": 5, "opsecx.com": 5, "orc.apache.org": 5, "oroinc.com": 5, "oryx-embedded.com": 5, "oss-security.openwall.narkive.com": 5, "osv.dev": 5, "owncloud.com": 5, "packaging.python.org": 5, "pagehelper.github.io": 5, "panda002.hashnode.dev": 5, "papers.mathyvanhoef.com": 5, "sparkjava.com": 5, "payatu.com": 5, "peckshield.com": 5, "pentesterlab.com": 5, "people.kingsds.network": 5, "petl.readthedocs.io": 5, "piraeus.io": 5, "plotly.com": 5, "plugins.gradle.org": 5, "plus.google.com": 5, "pony7.fr": 5, "popalltheshells.medium.com": 5, "powerful-bulb-c36.notion.site": 5, "prestosql.io": 5, "pretalx.com": 5, "prismjs.com": 5, "privatebin.info": 5, "programmer.help": 5, "projects.duckcorp.org": 5, "prophaze.com": 5, "publicobject.com": 5, "pubs.acs.org": 5, "pugjs.org": 5, "pulsar.apache.org": 5, "pydio.com": 5, "pythonhosted.org": 5, "python-hyper.org": 5, "quilljs.com": 5, "quiltmc.org": 5, "r0.haxors.org": 5, "ranchermanager.docs.rancher.com": 5, "rankmath.com": 5, "rastating.github.io": 5, "ratpack.io": 5, "reportportal.io": 5, "repo.saltproject.io": 5, "researchgate.net": 5, "research.hisolutions.com": 5, "research.insecurelabs.org": 5, "restsharp.dev": 5, "review.whamcloud.com": 5, "rhodecode.com": 5, "rhynorater.github.io": 5, "robertheaton.com": 5, "rodelllemit.medium.com": 5, "rootdaemon.com": 5, "roumenpetrov.info": 5, "rpyc.readthedocs.io": 5, "ruby-doc.org": 5, "rudnkh.me": 5, "sahildhar.github.io": 5, "samuzora.com": 5, "saturncloud.io": 5, "sca.analysiscenter.veracode.com": 5, "scalyr-static.s3.amazonaws.com": 5, "scikit-learn.org": 5, "scnps.co": 5, "scratch.mit.edu": 5, "sec.stealthcopter.com": 5, "secure1.securityspace.com": 5, "security-garage.com": 5, "security.gradle.com": 5, "securitylabs.datadoghq.com": 5, "security.paloaltonetworks.com": 5, "securitypitfalls.wordpress.com": 5, "securitytrails.com": 5, "segment.com": 5, "sektioneins.de": 5, "sethmlarson.dev": 5, "setuptools.pypa.io": 5, "shattered.io": 5, "sheetjs.com": 5, "siebene.github.io": 5, "silverpeas.org": 5, "skalatan.de": 5, "skerritt.blog": 5, "skii.dev": 5, "skywalking.apache.org": 5, "sling.apache.org": 5, "smshrimant.com": 5, "snicco.io": 5, "softwaresupport.hpe.com": 5, "solidus.io": 5, "sonarsource.atlassian.net": 5, "sources.debian.net": 5, "spacemesh.io": 5, "specifications.freedesktop.org": 5, "spec.matrix.org": 5, "src.fedoraproject.org": 5, "srcincite.io": 5, "stackstorm.com": 5, "staging-website.elastic.co": 5, "stash.kopano.io": 5, "subrion.org": 5, "support.aerospike.com": 5, "support.ca.com": 5, "support.citrix.com": 5, "support.confluent.io": 5, "support.contrastsecurity.com": 5, "support.delphix.com": 5, "support.herodevs.com": 5, "support.snyk.io": 5, "sw.aveva.com": 5, "sylabs.io": 5, "sylius.com": 5, "sympa-community.github.io": 5, "sysdig.com": 5, "systeminformation.io": 5, "systemweakness.com": 5, "tada.github.io": 5, "tadayoshi-sato.medium.com": 5, "tantosec.com": 5, "tches.iacr.org": 5, "techblog.wikimedia.org": 5, "technet.microsoft.com": 5, "tempered.works": 5, "tf1t.gitbook.io": 5, "thehackernews.com": 5, "the-it-wonders.blogspot.com": 5, "thelia.net": 5, "threat.tevora.com": 5, "threema.ch": 5, "tickets.puppetlabs.com": 5, "tiki.org": 5, "stimulsoft.com": 5, "tprynn.github.io": 5, "tracker.die-offenbachs.homelinux.org": 5, "tracker.moodle.org": 5, "tracker.phpbb.com": 5, "tracker.zkoss.org": 5, "trac.xapian.org": 5, "trafficcontrol.apache.org": 5, "travis-ci.com": 5, "trends.builtwith.com": 5, "strimzi.com": 5, "trino.io": 5, "tristartom.github.io": 5, "truedigitalsecurity.com": 5, "trufflesecurity.com": 5, "trungvm.gitbook.io": 5, "trust.neo4j.com": 5, "tryhexadecimal.com": 5, "tttang.com": 5, "unbound.net": 5, "unpoly.com": 5, "updates.playhive.com": 5, "updates.snyk.io": 5, "support.zeus.com": 5, "suricata-ids.org": 5, "us-cert.cisa.gov": 5, "vapor.codes": 5, "vega.github.io": 5, "veracode.com": 5, "verichains.io": 5, "versprite.com": 5, "vertx.io": 5, "vimeo.com": 5, "vitejs.dev": 5, "svn.savannah.gnu.org": 5, "vulners.com": 5, "w3lib.readthedocs.io": 5, "warehouse.python.org": 5, "weakdh.org": 5, "webassembly.github.io": 5, "webiny.com": 5, "webmasters.googleblog.com": 5, "wger.de": 5, "wicket.apache.org": 5, "wiki.duraspace.org": 5, "wiki.eclipse.org": 5, "wiki.folio.org": 5, "wiki.gentoo.org": 5, "wiki.mercurial-scm.org": 5, "wiki.opendaylight.org": 5, "wiki.shibboleth.net": 5, "winscp.net": 5, "wintercms.com": 5, "winterdragon.ca": 5, "wiremock.org": 5, "withknown.com": 5, "wtfsec.org": 5, "activecyber.us": 5, "admidio.org": 5, "adminer.org": 5, "aleksey.com": 5, "alevsk.com": 5, "alluxio.io": 5, "ansible.com": 5, "anyscale.com": 5, "apereo.org": 5, "apolloconfig.com": 5, "baeldung.com": 5, "barracuda.com": 5, "benthamsgaze.org": 5, "bountysource.com": 5, "brics.dk": 5, "broadcom.com": 5, "brzozowski.io": 5, "bsi.bund.de": 5, "ccsq8.com": 5, "certik.com": 5, "chtsecurity.com": 5, "cigital.com": 5, "ciphertechs.com": 5, "cloudflare.com": 5, "cloudfoundry.org": 5, "coalfire.com": 5, "concrete5.org": 5, "coresecurity.com": 5, "crowdstrike.com": 5, "crushftp.com": 5, "cvedetails.com": 5, "cybereagle.io": 5, "cyfirma.com": 5, "darkreading.com": 5, "ddosi.org": 5, "descope.com": 5, "dnspython.org": 5, "docker.com": 5, "doyler.net": 5, "dsecbypass.com": 5, "dubget.com": 5, "economizzer.org": 5, "edwardthomson.com": 5, "elementary-data.com": 5, "enhavo.com": 5, "enterprisedb.com": 5, "equalexperts.com": 5, "eyecontrol.nl": 5, "fastify.io": 5, "ffmpeg.org": 5, "fireeye.com": 5, "fork-cms.com": 5, "fossil-scm.org": 5, "gitpod.io": 5, "gradio.app": 5, "gsma.com": 5, "hacksecproject.com": 5, "hackthebox.com": 5, "hakaioffensivesecurity.com": 5, "haproxy.com": 5, "htmlunit.org": 5, "ihteam.net": 5, "imperialviolet.org": 5, "impresscms.org": 5, "intruder.io": 5, "isc.org": 5, "jetbrains.com": 5, "jhipster.tech": 5, "lancom-systems.de": 5, "landaire.net": 5, "laravel-enlightn.com": 5, "limesurvey.org": 5, "logicallysecure.com": 5, "mageni.net": 5, "makotemplates.org": 5, "mandiant.com": 5, "menlosecurity.com": 5, "mgm-sp.com": 5, "monolune.com": 5, "mpg123.de": 5, "nds.ruhr-uni-bochum.de": 5, "netlify.com": 5, "netsarang.com": 5, "ni.com": 5, "nomadproject.io": 5, "nu11secur1ty.com": 5, "obrela.com": 5, "octobot.online": 5, "okta.com": 5, "on-x.com": 5, "op-c.net": 5, "opencart.com": 5, "opencrx.org": 5, "optiv.com": 5, "oxeye.io": 5, "papermerge.com": 5, "paramiko.org": 5, "pethuraj.com": 5, "phoronix.com": 5, "pizzapower.me": 5, "portainer.io": 5, "postfix.org": 5, "www-prd-trops.events.ibm.com": 5, "prestashop.com": 5, "privacy-wise.com": 5, "projectcalico.org": 5, "purplemet.com": 5, "qemu.org": 5, "raifberkaydincel.com": 5, "rejetto.com": 5, "reportlab.com": 5, "rsaconference.com": 5, "rust-lang.org": 5, "sap.com": 5, "scottbrady91.com": 5, "secureauth.com": 5, "securitymetrics.com": 5, "semantic-mediawiki.org": 5, "shielder.com": 5, "shorebreaksecurity.com": 5, "sidertia.com": 5, "slf4j.org": 5, "sockjs.org": 5, "splunk.com": 5, "symantec.com": 5, "sympa.org": 5, "tcpdump.org": 5, "telerik.com": 5, "terrapin-attack.com": 5, "trustmatta.com": 5, "vandyke.com": 5, "vdoo.com": 5, "viralpatel.net": 5, "virtualbox.org": 5, "whitehats.nl": 5, "winimage.com": 5, "yubico.com": 5, "zdnet.com": 5, "zenml.io": 5, "zofrex.com": 5, "zsh.org": 5, "xalan.apache.org": 5, "xavibel.com": 5, "xmit.xyz": 5, "xmlgraphics.apache.org": 5, "xmpp.org": 5, "yondon.blog": 5, "zerosecuritypenetrationtesting.com": 5, "zh-cn.tenable.com": 5, "zookeeper.apache.org": 5, "zuso.ai": 5, "zxsecurity.co.nz": 5, "testh5shanglv.minshengec.com:1024": 5, "thinkphp.com": 5, "tiddlywiki5.com": 5, "trac.dojotoolkit.org": 5, "tracker.ceph.com": 5, "tree-kit.com": 5, "unomi.apache.org.": 5, "ureport.com": 5, "users.encs.concordia.ca": 5, "vsintelli.com": 5, "wiki.apache.org": 5, "wiki.rpath.com": 5, "andmp.com": 5, "benjaminfleischer.com": 5, "bigdiao.cc": 5, "blcat.cn": 5, "brocade.com": 5, "conviso.com.br": 5, "coreftp.com": 5, "cs.utexas.edu": 5, "dest-unreach.org": 5, "egroupware.org": 5, "elasticsearch.com": 5, "fetchmail.info": 5, "fomori.org": 5, "getsymphony.com": 5, "gevent.org": 5, "graphicsmagick.org": 5, "hackersb.cn": 5, "inspircd.org": 5, "isg.rhul.ac.uk": 5, "ja-sig.org": 5, "jcraft.com": 5, "jianshu.com": 5, "linuxgrill.com": 5, "mbsd.jp": 5, "mega-nerd.com": 5, "movabletype.org": 5, "mpxj.org": 5, "nemux.org": 5, "netbytesec.com": 5, "opera.com": 5, "pip-installer.org": 5, "procheckup.com": 5, "rabbitmq.com": 5, "roothc.com.br": 5, "rootlabs.com.br": 5, "rsyslog.com": 5, "securityweek.com": 5, "slideshare.net": 5, "sqlalchemy.org": 5, "square16.org": 5, "stack.nl": 5, "tinc-vpn.org": 5, "tripwire.com": 5, "uzbl.org": 5, "zeroscience.mk": 5, "xmlsoft.org": 5, "xxl-job.com": 5, "yehg.net": 5, "yourls.org": 5, "zalando.com": 5, "sony.com": 5, "strawberry.rocks": 5, "werewolves.world": 5, "newegg.com": 5, "consumer.huawei.com": 5, "kb.parallels.com": 5, "support.google.com": 5, "community.targit.com": 5, "unisoc.com": 5, "support.broadcom.com": 5, "security-portal.versa-networks.com": 5, "sliderrevolution.com": 5, "autodesk.com": 5, "trust.mi.com": 5, "git.proxmox.com": 5, "docs.azul.com": 5, "kibty.town": 5, "flowus.cn": 5, "wp-osm-plugin.hyumika.com": 5, "nokia.com": 5, "bdosecurity.de": 5, "khronokernel.com": 5, "wiki.securepoint.de": 5, "bridewell.com": 5, "arc.net": 5, "bravurasecurity.com": 5, "chiggerlor.substack.com": 5, "csflabs.github.io": 5, "manageengine.com": 5, "zoho.com": 5, "devolutions.net": 5, "technitium.com": 5, "dell.com": 5, "eviden.com": 5, "ptzoptics.com": 5, "security.freebsd.org": 5, "giflib.com": 5, "support.hp.com": 5, "icecms.com": 5, "cyberdanube.com": 5, "customers.codesys.com": 5, "kaiten.ru": 5, "keyence.com": 5, "trustedcare.entrust.com": 5, "codefactor.io": 5, "codeastro.com": 5, "exchange.checkmk.com": 5, "cs-cart.com": 5, "usvn.info": 5, "takex-eng.co.jp": 5, "ti.qianxin.com": 5, "stuxxn.github.io": 5, "trevorkems.com": 5, "cve.mahi.be": 5, "0xmupa.github.io": 5, "forum.proxmox.com": 5, "puredata.info": 5, "docs.rocket.chat": 5, "cirosec.de": 5, "docs.adacore.com": 5, "forums.ivanti.com": 5, "thewatch.centreon.com": 5, "papercut.com": 5, "sophos.com": 5, "issue-tracker.miraheze.org": 5, "tiptel.com": 5, "e-tax.nta.go.jp": 5, "teamviewer.com": 5, "answers.webroot.com": 5, "cert.vde.com": 5, "support.bull.com": 5, "cnnvd.org.cn": 5, "westerndigital.com": 5, "closed-loop.biz": 5, "entrust.com": 5, "solvait.com": 5, "woodwing.com": 5, "blog.hawktesters.com": 5, "zyxel.com": 5, "0xahmed.ninja": 5, "2012.appsec-forum.ch": 5, "acme.com": 5, "aliyundrive-webdav.com": 5, "als.regnet.cz": 5, "aluigi.altervista.org": 5, "antirez.com": 5, "apt.inguza.net": 5, "arthurdejong.org": 5, "asfws12.files.wordpress.com": 5, "askubuntu.com": 5, "aspell.net": 5, "badlock.org": 5, "baraktawily.blogspot.com": 5, "benmmurphy.github.io": 5, "bh.ht.vc": 5, "bird.network.cz": 5, "bk.ntp.org": 5, "blog.addepar.com": 5, "blog.c22.cc": 5, "blog.chromium.org": 5, "blog.dscpl.com.au": 5, "blog.fortify.com": 5, "blog.fuseyism.com": 5, "blog.gmane.org": 5, "blog.g-sec.lu": 5, "blog.guya.net": 5, "blog.infosectcbr.com.au": 5, "blog.kazuhooku.com": 5, "blog.koehntopp.de": 5, "blog.nibblesec.org": 5, "blog.noobroot.com": 5, "blog.o0o.nu": 5, "blog.opensecurityresearch.com": 5, "blog.pear.php.net": 5, "blog.pi3.com.pl": 5, "blog.prosody.im": 5, "blog.python.org": 5, "blogs.adobe.com": 5, "blog.scrt.ch": 5, "blog.securitymouse.com": 5, "blog.sendsafely.com": 5, "blog.senr.io": 5, "blogs.iss.net": 5, "blogs.oracle.com": 5, "blog.spiderlabs.com": 5, "blogs.sun.com": 5, "blog.swiecki.net": 5, "blog.swiftmailer.org": 5, "blog.topsec.com.cn": 5, "boinc.berkeley.edu": 5, "bugs.dokuwiki.org": 5, "bugs.gw.com": 5, "bugs.icu-project.org": 5, "bugs.java.com": 5, "bugs.ntp.org": 5, "bugs.openttd.org": 5, "bugzilla.maptools.org": 5, "buzz.typo3.org": 5, "cakeforge.org": 5, "cat.eyalro.net": 5, "checkpw.sourceforge.net": 5, "cisofy.com": 5, "clicky.me": 5, "co3k.org": 5, "code.fabfile.org": 5, "code.qt.io": 5, "community.igniterealtime.org": 5, "crypto.junod.info": 5, "csrf.htmlpurifier.org": 5, "cve.circl.lu": 5, "cvs.sourceforge.net": 5, "cybersecurity.upv.es": 5, "danlec.com": 5, "dev.exiv2.org": 5, "dev.mutt.org": 5, "dev.plone.org": 5, "dev.subrion.org": 5, "distro.conectiva.com.br": 5, "docs.sequelizejs.com": 5, "download.opensuse.org": 5, "download.osgeo.org": 5, "download.savannah.gnu.org": 5, "download.strongswan.org": 5, "drosenbe.blogspot.com": 5, "drupalcode.org": 5, "dsecrg.com": 5, "em386.blogspot.com": 5, "everdox.net": 5, "fastcompression.blogspot.fr": 5, "flash.flowplayer.org": 5, "forum.xda-developers.com": 5, "freeciv.wikia.com": 5, "ftp.gnu.org": 5, "ftp.naist.jp": 5, "ftp.netbsd.org": 5, "ftp.NetBSD.org": 5, "gaganpreet.in": 5, "ganglia.info": 5, "geojson.org": 5, "getid3.sourceforge.net": 5, "git-blame.blogspot.com.es": 5, "git.cyrusimap.org": 5, "git.gluster.org": 5, "git.hylafax.org": 5, "git.infradead.org": 5, "git.kernel.dk": 5, "git.libav.org": 5, "git.lxde.org": 5, "git.mathias-kettner.de": 5, "git.nordu.net": 5, "gitorious.org": 5, "git.savannah.nongnu.org": 5, "git.tuxfamily.org": 5, "googlechromereleases.blogspot.co.uk": 5, "gridscheduler.sourceforge.net": 5, "guac-dev.org": 5, "h30499.www3.hp.com": 5, "habrahabr.ru": 5, "hac425.unaux.com": 5, "ha.xxor.se": 5, "hg.libsdl.org": 5, "hg.savannah.gnu.org": 5, "hkpco.kr": 5, "homakov.blogspot.com": 5, "icedtea.classpath.org": 5, "inertiawar.com": 5, "invisible-island.net": 5, "ircrash.com": 5, "isecpartners.github.io": 5, "jaanuskp.blogspot.com": 5, "jgarber.lighthouseapp.com": 5, "jira.opensymphony.com": 5, "jira.ow2.org": 5, "juliusdavies.ca": 5, "k3research.outerhaven.de": 5, "kbase.redhat.com": 5, "kerneltrap.org": 5, "klikki.fi": 5, "knoxin.blogspot.co.uk": 5, "krbdev.mit.edu": 5, "lab.cs.ttu.ee": 5, "lcamtuf.blogspot.com.au": 5, "ledgersmbdev.blogspot.ca": 5, "libcloud.apache.org": 5, "libexif.sourceforge.net": 5, "linuxtesting.org": 5, "linuxtv.org": 5, "listengine.tuxfamily.org": 5, "lists.alioth.debian.org": 5, "lists.busybox.net": 5, "lists.clamav.net": 5, "lists.fusionforge.org": 5, "lists.infradead.org": 5, "lists.llvm.org": 5, "lists.ntp.org": 5, "lists.openvz.org": 5, "lists.owasp.org": 5, "lists.unbit.it": 5, "lists.vmware.com": 5, "lists.xiph.org": 5, "lists.xymon.com": 5, "lucene.apache.org": 5, "lustre.org": 5, "mahara.org": 5, "mail.globnix.net": 5, "mail.jabber.org": 5, "mail.kde.org": 5, "mailman.alsa-project.org": 5, "mailman.mit.edu": 5, "mail.openjdk.java.net": 5, "mails.dpdk.org": 5, "malloc.im": 5, "martin.swende.se": 5, "mathias-kettner.de": 5, "mayaa.seasar.org": 5, "metadata.ftp-master.debian.org": 5, "mirror.easyname.at": 5, "mirror.linux.org.au": 5, "mod-security.svn.sourceforge.net": 5, "modwsgi.readthedocs.org": 5, "moinmoin.wikiwikiweb.de": 5, "mov.sx": 5, "mstrokin.com": 5, "mysqlblog.fivefarmers.com": 5, "netatalk.sourceforge.net": 5, "net-ninja-mr.me": 5, "news.dieweltistgarnichtso.net": 5, "news.tryton.org": 5, "nmav.gnutls.org": 5, "nongnu.askapache.com": 5, "old.blog.phusion.nl": 5, "openjpeg.googlecode.com": 5, "openvswitch.org": 5, "osandamalith.wordpress.com": 5, "osdir.com": 5, "oss.sgi.com": 5, "otiose.dhs.org": 5, "owasp-esapi-java.googlecode.com": 5, "owasp-java-html-sanitizer.googlecode.com": 5, "ozlabs.org": 5, "packetstormsecurity.nl": 5, "pastie.caboo.se": 5, "penturalabs.wordpress.com": 5, "people.debian.org": 5, "perception-point.io": 5, "perl5.git.perl.org": 5, "phpunit.vulnbusters.com": 5, "pillow.readthedocs.org": 5, "pmt.sourceforge.net": 5, "post-office.corp.redhat.com": 5, "proftpd.org": 5, "projects.edgewall.com": 5, "pseudo-flaw.net": 5, "pylonshq.com": 5, "pyropus.ca": 5, "pywebdav.googlecode.com": 5, "quassel-irc.org": 5, "quickgit.kde.org": 5, "qwertwwwe.github.io": 5, "r00tin.blogspot.com": 5, "rabbit.dereferenced.org": 5, "rack.github.com": 5, "railspikes.com": 5, "restlet.org": 5, "riddle.link": 5, "rosariosis.com": 5, "roundup.cvs.sourceforge.net": 5, "rubysec.github.io": 5, "01.org": 5, "0day.work": 5, "s1m0n.dft-labs.eu": 5, "admin.hostpoint.ch": 5, "alioth-lists.debian.net": 5, "android-review.googlesource.com": 5, "anotepad.com": 5, "antichat.com": 5, "appgateresearch.blogspot.com": 5, "archive.apache.org": 5, "artifex.com": 5, "attachments.samba.org": 5, "attic.apache.org": 5, "bertjwregeer.keybase.pub": 5, "bitslog.com": 5, "blade.tencent.com": 5, "blog.cloudpassage.com": 5, "blog.convisoappsec.com": 5, "blog.cryptographyengineering.com": 5, "blog.documentfoundation.org": 5, "blog.hartwork.org": 5, "blog.hboeck.de": 5, "blog.mozilla.org": 5, "blog.qt.io": 5, "blog.quarkslab.com": 5, "blog.smarttecs.com": 5, "blog.sqreen.com": 5, "blog.wpscan.org": 5, "bnbdr.github.io": 5, "botan.randombit.net": 5, "bpmn.io": 5, "bro-tracker.atlassian.net": 5, "bugreports.qt.io": 5, "bugs.exim.org": 5, "bugs.gnunet.org": 5, "bugs.horde.org": 5, "bugs.linuxfoundation.org": 5, "bugs.openvz.org": 5, "bugs.webkit.org": 5, "bugzilla.clamav.net": 5, "bugzilla.mindrot.org": 5, "bugzilla.samba.org": 5, "bugzilla.tianocore.org": 5, "busybox.net": 5, "c-ares.haxx.se": 5, "ceph.io": 5, "cfreal.github.io": 5, "chromiumcodereview.appspot.com": 5, "civicrm.org": 5, "codechecker-demo.eastus.cloudapp.azure.com": 5, "code.launchpad.net": 5, "codereview.appspot.com": 5, "codesearch.debian.net": 5, "community.jboss.org": 5, "community.qualys.com": 5, "community.sophos.com": 5, "contrib.spip.net": 5, "coreymhudson.github.io": 5, "crashes.fuzzing-project.org": 5, "crrev.com": 5, "crypto.stanford.edu": 5, "defuse.ca": 5, "deshal3v.github.io": 5, "developer.atlassian.com": 5, "dev.gnupg.org": 5, "dev.recurly.com": 5, "discourse.aurelia.io": 5, "discourse.gnome.org": 5, "discuss.gradle.org": 5, "discuss.neos.io": 5, "docs.inspircd.org": 5, "dom4j.github.io": 5, "donncha.is": 5, "download.igniterealtime.org": 5, "dyntopia.com": 5, "secondlookforensics.com": 5, "secureappdev.blogspot.com": 5, "secureyourit.co.uk": 5, "security.cucumberlinux.com": 5, "edk2-docs.gitbook.io": 5, "edk2.groups.io": 5, "edoverflow.com": 5, "efail.de": 5, "elixir.bootlin.com": 5, "en.bitcoinwiki.org": 5, "enigmail.net": 5, "esnet-security.github.io": 5, "exploitbox.io": 5, "eyalitkin.wordpress.com": 5, "fakhrizulkifli.github.io": 5, "fastcompression.blogspot.ca": 5, "fastd.readthedocs.io": 5, "feh.finalrewind.org": 5, "fisheye.codehaus.org": 5, "forums.grsecurity.net": 5, "forum.snapcraft.io": 5, "forums.servicestack.net": 5, "francozappa.github.io": 5, "sf.snu.ac.kr": 5, "fuelphp.com": 5, "gaffer.ptitcanardnoir.org": 5, "gerrit.googlesource.com": 5, "git.busybox.net": 5, "git.centos.org": 5, "git.entrouvert.org": 5, "git.gnunet.org": 5, "git.gnupg.org": 5, "github.blog": 5, "githubengineering.com": 5, "gitlab.xiph.org": 5, "git.netfilter.org": 5, "git.tartarus.org": 5, "git.tt-rss.org": 5, "git.whamcloud.com": 5, "git.zabbix.com": 5, "gnats.netbsd.org": 5, "gnupg.org": 5, "googleonlinesecurity.blogspot.com": 5, "googleprojectzero.blogspot.co.uk": 5, "googleprojectzero.blogspot.cz": 5, "gruss.cc": 5, "guidovranken.files.wordpress.com": 5, "gusralph.info": 5, "h20564.www2.hpe.com": 5, "h20566.www2.hp.com": 5, "heasarc.gsfc.nasa.gov": 5, "hg.ucc.asn.au": 5, "shibboleth.internet2.edu": 5, "hosein-vita.medium.com": 5, "httpoxy.org": 5, "icepng.github.io": 5, "icinga.com": 5, "insert-script.blogspot.com": 5, "insights.sei.cmu.edu": 5, "insights.ubuntu.com": 5, "invent.kde.org": 5, "ioquake3.org": 5, "issues.civicrm.org": 5, "issues.gerritcodereview.com": 5, "issuetracker.google.com": 5, "site.icu-project.org": 5, "site.pi3.com.pl": 5, "jeffhacks.com": 5, "kate.io": 5, "kb.bluecoat.com": 5, "kingcope.wordpress.com": 5, "knobattack.com": 5, "komodoplatform.com": 5, "leastauthority.com": 5, "libexpat.github.io": 5, "libosinfo.org": 5, "libreswan.org": 5, "lists.ath9k.org": 5, "lists.clusterlabs.org": 5, "lists.cypherpunks.ca": 5, "lists.iai.uni-bonn.de": 5, "lists.immunityinc.com": 5, "lists.isc.org": 5, "lists.linuxcontainers.org": 5, "lists.nic.cz": 5, "lists.openldap.org": 5, "lists.open-mesh.org": 5, "lists.osuosl.org": 5, "lists.sequoia-pgp.org": 5, "lists.tartarus.org": 5, "lists.ubuntu.com": 5, "lock.cmpxchg8b.com": 5, "mailarchives.bentasker.co.uk": 5, "mail.gnu.org": 5, "mailman-eng.corp.redhat.com": 5, "make.wordpress.org": 5, "mariadb.atlassian.net": 5, "marlam.de": 5, "smarty-php.googlecode.com": 5, "maustin.net": 5, "mcabber.com": 5, "mega.nz": 5, "meltdownattack.com": 5, "micahflee.com": 5, "mirror.fail": 5, "nathandavison.com": 5, "neomutt.org": 5, "neopg.io": 5, "nethack.org": 5, "newrelic.com": 5, "nohats.ca": 5, "snoopy.cvs.sourceforge.net": 5, "nvisium.com": 5, "old.reddit.com": 5, "open-docs.neuvector.com": 5, "openmpt.org": 5, "openssf.slack.com": 5, "openssl-library.org": 5, "opnsec.com": 5, "orpheus-lyre.info": 5, "osdn.net": 5, "oss.clusterlabs.org": 5, "os-s.net": 5, "ostif.org": 5, "source.jboss.org": 5, "packages.qa.debian.org": 5, "paste.pound-python.org": 5, "patchwork.ffmpeg.org": 5, "patchwork.freedesktop.org": 5, "people.csail.mit.edu": 5, "people.fedoraproject.org": 5, "phabricator.kde.org": 5, "philwantsfish.github.io": 5, "spl0it.org": 5, "platypusattack.com": 5, "postlister.uninett.no": 5, "projects.gnome.org": 5, "projects.ow2.org": 5, "pyyaml.docsforge.com": 5, "qa.debian.org": 5, "qtpass.org": 5, "rachelbythebay.com": 5, "raw.github.com": 5, "raw.globalsecuritydatabase.org": 5, "rdot.org": 5, "relistan.com": 5, "robots.thoughtbot.com": 5, "rtpbleed.com": 5, "rt.perl.org": 5, "ruhr-uni-bochum.sciebo.de": 5, "scannell.me": 5, "scarybeastsecurity.blogspot.ch": 5, "scarybeastsecurity.blogspot.com": 5, "scarybeastsecurity.blogspot.dk": 5, "scumjr.github.io": 5, "secure.phabricator.com": 5, "secure.php.net": 5, "security-center.intel.com": 5, "serenity.is": 5, "sick.codes": 5, "sitewat.ch": 5, "smacktls.com": 5, "source.openmpt.org": 5, "spectreattack.com": 5, "speirofr.appspot.com": 5, "ssrg.nicta.com.au": 5, "support.cloud.engineyard.com": 5, "support.process-one.net": 5, "svn.filezilla-project.org": 5, "svn.resiprocate.org": 5, "sweet32.info": 5, "swiftstack.com": 5, "sword.bladex.cn": 5, "sympa.inria.fr": 5, "t2.fi": 5, "tapestry.apache.org": 5, "thejh.net": 5, "therecord.media": 5, "threatpost.com": 5, "tomforb.es": 5, "trac.gajim.org": 5, "tracker.ardour.org": 5, "trac.mplayerhq.hu": 5, "trac.nginx.org": 5, "tt-rss.org": 5, "unicode-org.atlassian.net": 5, "unix.stackexchange.com": 5, "utcc.utoronto.ca": 5, "vishnudevtj.github.io": 5, "vndh.net": 5, "svn.ec-cube.net": 5, "svn.haxx.se": 5, "svn.ruby-lang.org": 5, "svn.tartarus.org": 5, "vulnhive.com": 5, "web-in-security.blogspot.ca": 5, "wid.cert-bund.de": 5, "wiki.openvz.org": 5, "wiki.samba.org": 5, "worthdoingbadly.com": 5, "wpa3.mathyvanhoef.com": 5, "131002.net": 5, "www3.sqlite.org": 5, "www3.trustwave.com": 5, "acunetix.com": 5, "alphabot.com": 5, "amd.com": 5, "arista.com": 5, "armis.com": 5, "bamsoftware.com": 5, "bitdefender.com": 5, "cabextract.org.uk": 5, "cazzulino.com": 5, "cisecurity.org": 5, "cl.cam.ac.uk": 5, "cncf.io": 5, "contextis.com": 5, "cubeyond.net": 5, "davical.org": 5, "eclypsium.com": 5, "evonide.com": 5, "exiv2.org": 5, "flexera.com": 5, "freeplane.org": 5, "futureweb.at": 5, "gnu.org": 5, "icinga.org": 5, "inputzero.io": 5, "intezer.com": 5, "java.com": 5, "jsof-tech.com": 5, "jwz.org": 5, "kernelmode.blog": 5, "krackattacks.com": 5, "kvakil.me": 5, "ldap-account-manager.org": 5, "legacysecuritygroup.com": 5, "libssh2.org": 5, "lsexperts.de": 5, "mehmetince.net": 5, "midnight-commander.org": 5, "nikhef.nl": 5, "npmjs.org": 5, "openldap.org": 5, "percona.com": 5, "portcullis-security.com": 5, "pureftpd.org": 5, "python.org": 5, "qbittorrent.org": 5, "redteam-pentesting.de": 5, "reversinglabs.com": 5, "rootshellsecurity.net": 5, "rorsecurity.info": 5, "saddns.net": 5, "secfu.net": 5, "secura.com": 5, "seebug.org": 5, "sentinelone.com": 5, "sigsac.org": 5, "stunnel.org": 5, "teskalabs.com": 5, "theregister.co.uk": 5, "thezdi.com": 5, "timmclean.net": 5, "trendmicro.com": 5, "vice.com": 5, "vidocsecurity.com": 5, "viestintavirasto.fi": 5, "virustotal.com": 5, "vusec.net": 5, "xairy.github.io": 5, "sysoev.ru": 5, "t3.dotgnu.info": 5, "tartarus.org": 5, "taviso.decsystem.org": 5, "telia.dl.sourceforge.net": 5, "telussecuritylabs.com": 5, "thekelleys.org.uk": 5, "tickets.opscode.com": 5, "trac.kodi.tv": 5, "trac.transmissionbt.com": 5, "vcs.pcre.org": 5, "venom.crowdstrike.com": 5, "vladz.devzero.fr": 5, "webservsec.blogspot.com": 5, "wiki2.dovecot.org": 5, "wiki.audacityteam.org": 5, "wiki.lustre.org": 5, "wiki.postgresql.org": 5, "worldofpadman.com": 5, "www13.itrc.hp.com": 5, "agarri.fr": 5, "agrs.tu-berlin.de": 5, "apsis.ch": 5, "argyllcms.com": 5, "arm.linux.org.uk": 5, "asmail.be": 5, "attrition.org": 5, "bacula.org": 5, "betanews.com": 5, "binarysniper.net": 5, "bugzilla.org": 5, "cc.gatech.edu": 5, "cert.fi": 5, "ciac.org": 5, "cisco.com": 5, "codenomicon.com": 5, "collabtive.o-dyn.de": 5, "communities.hp.com": 5, "cs.bu.edu": 5, "cs.tau.ac.IL": 5, "cs.tau.ac.il": 5, "cs.technion.ac.il": 5, "dotnetnuke.com": 5, "droid-life.com": 5, "droidrzr.com": 5, "droidsec.org": 5, "educatedguesswork.org": 5, "elasticsearch.org": 5, "elsherei.com": 5, "eucalyptus.com": 5, "evernote.com": 5, "exploringbinary.com": 5, "firebirdsql.org": 5, "floyd.ch": 5, "freelists.org": 5, "freerdp.com": 5, "gdssecurity.com": 5, "getchef.com": 5, "gulftech.org": 5, "gwtproject.org": 5, "haproxy.org": 5, "hdwsec.fr": 5, "hitachi-support.com": 5, "htbridge.ch": 5, "ijg.org": 5, "infoq.com": 5, "infradead.org": 5, "ingate.com": 5, "intelsecurity.com": 5, "jbkempf.com": 5, "jplayer.org": 5, "kernelhub.org": 5, "konakart.com": 5, "libraw.org": 5, "live555.com": 5, "lua.org": 5, "mandrakesecure.net": 5, "maradns.org": 5, "mathyvanhoef.com": 5, "metasploit.com": 5, "mh-sec.de": 5, "mindrot.org": 5, "mitls.org": 5, "mongodb.org": 5, "mono-project.com": 5, "nds.rub.de": 5, "networkworld.com": 5, "nntp.perl.org": 5, "nruns.com": 5, "nsfocus.net": 5, "oliverkarow.de": 5, "opencms.org": 5, "openoffice.org": 5, "palemoon.org": 5, "paul-moore.com": 5, "phenoelit.org": 5, "pimcore.org": 5, "pnigos.com": 5, "process-one.net": 5, "quantumleap.it": 5, "rafayhackingarticles.net": 5, "rajatswarup.com": 5, "ratbox.org": 5, "rul3z.de": 5, "sbosnet.nl": 5, "securation.com": 5, "securegoose.org": 5, "securiteam.com": 5, "sendmail.com": 5, "simplesystems.org": 5, "slimframework.com": 5, "sogo.nu": 5, "splitbrain.org": 5, "springsource.com": 5, "squirrelmail.org": 5, "supercluster.org": 5, "synacktiv.ninja": 5, "tedunangst.com": 5, "tele-consulting.com": 5, "tombom.co.uk": 5, "tt-forums.net": 5, "undeadly.org": 5, "unixodbc.org": 5, "x.org": 5, "zweitag.de": 5, "xstream.codehaus.org": 5, "xteam.baidu.com": 5, "xync.org": 5, "zsh.sourceforge.net": 5, "project-zero.issues.chromium.org": 5, "anker.com": 5, "visionspace.com": 5, "eufy.com": 5, "advisory-inbox.githubapp.com": 5, "myoffice.ru": 5, "support.myoffice.ru": 5, "planex.co.jp": 5, "docs.iredmail.org": 5, "iredmail.org": 5 } ```

And please let me know if anyone has any other ideas, and feel free to edit the weight configuration list as needed so I can use it in the code.

keshav-space commented 2 weeks ago

And please let me know if anyone has any other ideas, and feel free to edit the weight configuration list as needed so I can use it in the code.

@ziadhany this looks good to start.

keshav-space commented 2 weeks ago

@ziadhany please update the changelog. Also, IMO we should use weight_config.yml instead of JSON file for configuration, like we do in our other projects.

DennisClark commented 2 weeks ago

Re: "IMO we should use weight_config.yml instead of JSON file for configuration, like we do in our other projects." I am fine with that alternative.

pombredanne commented 2 weeks ago

Re: "IMO we should use weight_config.yml instead of JSON file for configuration, like we do in our other projects." I am fine with that alternative.

But why having a config file? IMHO this should just be some Python data in a .py file. This is not meant to be updated by anyone but us for now.

DennisClark commented 2 weeks ago

I think that someone running their own installation of VulnerableCode should be able to adjust the weight assignments based on their own experience. The idea of a config file has been in the design document for quite a while now and we need to move things forward to get this done.

DennisClark commented 2 weeks ago

ok, let's go with .py if that is the simplest

mjherzog commented 2 weeks ago

We should keep local configuration in the plan but custom configuration would add unnecessary complexity at this early stage.

keshav-space commented 2 weeks ago

Thanks @ziadhany, merging this now!

DennisClark commented 2 weeks ago

@ziadhany or @keshav-space could you please post some screenshots here that show the display of the new values in VCIO? Thanks! Also please confirm that all 3 values will be available in the V2 API.

ziadhany commented 2 weeks ago

@DennisClark We store the value of risk_score in a column and currently display it in the API. However, Exploitability and Weighted Severity are still missing. We already have the logic to calculate these metrics (Exploitability, Weighted Severity, and Risk), and we can easily implement it. However, we need to decide whether to store exploitability and weighted_severity in the database or calculate them dynamically with each API call. If we choose to store them, we must also determine whether to store them at the Vulnerability level or the Package level.

Screenshot from 2024-11-08 00-53-08

DennisClark commented 2 weeks ago

@ziadhany I think your should store the values of exploitability and weighted_severity at the same level as risk_score.

tdruez commented 2 weeks ago

@ziadhany @DennisClark

If we choose to store them, we must also determine whether to store them at the Vulnerability level or the Package level.

Looking at https://github.com/aboutcode-org/vulnerablecode/pull/1593/files

I see 4 values being computed:

We need to clarify if those values are computed/defined for a Vulnerability entry of for a Package (combination of Vulnerabilities).

This matters a lot in the presentation of the data, depending on the context, one may view it through 1 Package, or through 1 vulnerability that affects many Packages.

At the moment, only the Package.risk_score is stored and displayed (Package model and API). I would suggest that the Vulnerability.risk_score should also be stored and available in the API so the value can be used when looking at the list of Vulnerabilities.

Now, for weighted_severity and exploitability_level, looking at the code or at the design document, it is not clear if those values are qualifying a Package, a Vulnerability, or both.

ziadhany commented 2 weeks ago

@DennisClark @tdruez

Yes, we can store a vulnerability risk. However, weighted_severity and exploitability_level are specific to each vulnerability and are computed using the exploits, references, and severities associated with it.

If we plan to store the risk_score for each vulnerability while also storing and displaying the weighted_severity and exploitability_level, it will lead to data duplication.

I suggest storing only the weighted_severity and exploitability_level for each vulnerability. This way, calculating the vulnerability risk and package risk becomes a straightforward mathematical operation.

However, if we don't mind some data duplication in exchange for better performance, we could store the following: exploitability_level, weighted_severity, and vulnerability risk in the vulnerability model package risk in the package model (already exists).

Please let me know exactly what needs to be done so we can quickly create a pull request for it.

tdruez commented 2 weeks ago

If we plan to store the risk_score for each vulnerability while also storing and displaying the weighted_severity and exploitability_level, it will lead to data duplication.

@ziadhany could you clarify the "data duplication", maybe with an example? I'm not sure to get what would be duplicated here.

ziadhany commented 2 weeks ago

@tdruez Let's say we have two vulnerabilities, both affecting the package.

We are going to calculate the weighted_severity and exploitability_level forVulnerability 1. We get values of 2 and 3, respectively. We did the same for Vulnerability 2 and get 4 , 2.

The risk for Vulnerability 1: ( 2 3 ) = 6 The risk for Vulnerability 2: ( 4 2 ) = 8

The package risk is the maximum risk of the vulnerabilities affecting this package, which is 8.

If we store the weighted_severity and exploitability_level, there’s no need to store the vulnerability risk (as it would be redundant data). Similarly, there’s no need to store the package risk since it can be easily calculated as the maximum of the vulnerability risks.

tdruez commented 2 weeks ago

If we plan to store the risk_score for each vulnerability while also storing and displaying the weighted_severity and exploitability_level, it will lead to data duplication.

I still don't see the duplication storing the risk_score for each vulnerability. The risk for Vulnerability 1: ( 2 * 3 ) = 6 and The risk for Vulnerability 2: ( 4 * 2 ) = 8 in your example: both have a different risk_score that is useful to order and filter a Vulnerability listing outside a Package context.

If we store the weighted_severity and exploitability_level, there’s no need to store the vulnerability risk (as it would be redundant data).

Could you clarify this? Why is it redundant?

ziadhany commented 2 weeks ago

@tdruez I mean, if we create two columns for weighted_severity and exploitability_level, there’s no need to have a vulnerability_risk column because it is the product of the two columns.

and there might be no need for a package risk column since it represents the maximum of the vulnerability risk value that affect this package .

But, as you mentioned, it can be useful for ordering and filtering a vulnerability listing, and it can lead to better performance.

tdruez commented 2 weeks ago

@ziadhany Alright, we should start by adding weighted_severity and exploitability_level as fields of the Vulnerability model in any case., right?

ziadhany commented 2 weeks ago

@ziadhany Alright, we should start by adding weighted_severity and exploitability_level as fields of the Vulnerability model in any case., right?

Alright, I'll create a quick PR for this.

DennisClark commented 2 weeks ago

@ziadhany I think that the suggestions from @tdruez make more sense than my previous remarks about putting all 3 fields at the same level. Thanks for all the analysis.