I sometimes wonder how far we’ve actually come:
The security world in general still whinges about full-disclosure – especially when it keeps you up until 3am and/or away from your family; I believe the preponderance of tools – nessus, metasploit, nmap, sqlmap, skipfish, wpscan, … – is a message and it tells us that more tools, more openly available, with less zero-day horse-trading is good for the internet marketplace. Occasionally it’s bad for specific internet entities, but rarely fatal.
But the media, and the government cyberspooks? They still have a vested interest in presenting tools (and security knowledge) as arcane and possibly worthy of restriction.
That’s not a perspective which is healthy for the internet. It was not back then, is still is not, now.