Software

Certainly: Open-source offensive security toolkit

September 23, 2024 add comment
Certainly is an open-source offensive security toolkit designed to capture extensive traffic across various network protocols in bit-flip and typosquatting scenarios. Built-in protocols: DNS, HTTP(S), IMAP(S), SMTP(S). “The reason... Read more »

Paid open-source maintainers spend more time on security

September 23, 2024 add comment
Paid maintainers are 55% more likely to implement critical security and maintenance practices than unpaid maintainers and are dedicating more time to implementing security practices like those included in... Read more »

5 Compelling Reasons Not to Manage Your Own VoIP Server

September 20, 2024 add comment
Discover why managing your own VoIP server can be costly, dangerous, and time-consuming for most businesses. Read more »

HackerOne: Nearly Half of Security Professionals Believe AI Is Risky

September 20, 2024 add comment
The Hacker-Powered Security Report showed mixed feelings toward AI in the security community, with many seeing leaked training data as a threat. Read more »

CrowdSec: Open-source security solution offering crowdsourced protection

September 18, 2024 add comment
Crowdsec is an open-source solution that offers crowdsourced protection against malicious IPs. CrowdSec features For this project, the developers have two objectives: Provide free top-quality intrusion detection and protection... Read more »

Detecting vulnerable code in software dependencies is more complex than it seems

September 18, 2024 add comment
In this Help Net Security interview, Henrik Plate, CISSP, security researcher, Endor Labs, discusses the complexities AppSec teams face in identifying vulnerabilities within software dependencies. Plate also discusses the... Read more »

EchoStrike: Generate undetectable reverse shells, perform process injection

September 16, 2024 add comment
EchoStrike is an open-source tool designed to generate undetectable reverse shells and execute process injection on Windows systems. “EchoStrike allows you to generate binaries that, when executed, create an... Read more »

Compliance frameworks and GenAI: The Wild West of security standards

September 16, 2024 add comment
In this Help Net Security interview, Kristian Kamber, CEO at SplxAI, discusses how security challenges for GenAI differ from traditional software. Unlike predictable software, GenAI introduces dynamic, evolving threats,... Read more »

Three Quarters of Dependency Vulnerability Patches Lead to Breakages, Report Finds

September 12, 2024 add comment
Minor updates break clients 94% of the time, while version upgrades cause issues 95% of the time, according to Endor Labs researchers. Read more »

VirtualBox 7.1: This is a major update, here’s what’s new

September 12, 2024 add comment
VirtualBox is a full virtualizer for x86 hardware designed for servers, desktops, and embedded systems. VirtualBox 7.1 introduces an enhanced user interface, cloud VM management, ARM support, Wayland compatibility,... Read more »
Subscribe to our Newsletter