.

Question

.

jtripper opened this issue 10 years ago · comments

.

Stephen Haywood · Answer 1 · Wed Apr 16 2014 02:49:54 GMT+0800 (China Standard Time)

@jtripper I developed this script in December 2011 as evidenced by this blog post, http://averagesecurityguy.info/2011/12/09/owning-a-coldfusion-server/ In the blog post I referenced all the sources I could find at that time.

Stephen Haywood · Answer 2 · Wed Apr 16 2014 03:14:10 GMT+0800 (China Standard Time)

@jtripper It looks like Blackhat Library added a similar script to this one to the site on September 22, 2012. http://www.blackhatlibrary.net/index.php?title=Coldfusion_hacking&action=historysubmit&diff=9242&oldid=6756 It would be difficult for me to steal it from your site in December 2011 if it wasn't posted until September 22, 2012.

Stephen Haywood · Answer 3 · Wed Apr 16 2014 05:36:18 GMT+0800 (China Standard Time)

It happens.

Stephen Haywood
Owner, ASG Consulting
CISSP, OSCP
W: www.averagesecurityguy.info
T: @averagesecguy

On Apr 15, 2014, at 5:15 PM, jtripper notifications@github.com wrote:

Wow, you're right. Looks like I need to talk to some people and find out why your script is on our site.

—
Reply to this email directly or view it on GitHub.

Stephen Haywood · Answer 4 · Wed Apr 16 2014 05:52:06 GMT+0800 (China Standard Time)

Credit is fine.

Stephen Haywood
Owner, ASG Consulting
CISSP, OSCP
W: www.averagesecurityguy.info
T: @averagesecguy

On Apr 15, 2014, at 5:24 PM, jtripper notifications@github.com wrote:

Since our script appears to be copied from this repository, we will either take it down or give you credit for it. Which would you prefer? I apologize for the mix up and for accusing you of plagiarism.

—
Reply to this email directly or view it on GitHub.