If any vulnerability or security issue is discovered in MalwareDB (or any repository under the MalwareDB organization, please inform the maintainer via email at richard.j.zak at gmail.com. If you wish to communicate via GPG, send an email requesting a GPG public key, or send an email to rjzak at protonmail.ch.
Please include:
- The steps needed to reproduce the vulnerability;
- The vulnerable version(s), preferably with Git hash (
git log -1
); - and any additional files to reproduce the vulnerability.
Upon receipt, the maintainer will review, respond, and fix the vulnerability in a timely manner.