Software

Autoswagger: Open-source tool to expose hidden API authorization flaws

July 24, 2025 add comment
Autoswagger is a free, open-source tool that scans OpenAPI-documented APIs for broken authorization vulnerabilities. These flaws are still common, even at large enterprises with mature security teams, and are... Read more »

Cervantes: Open-source, collaborative platform for pentesters and red teams

July 23, 2025 add comment
Cervantes is an open-source collaborative platform built for pentesters and red teams. It offers a centralized workspace to manage projects, clients, vulnerabilities, and reports, all in one place. By... Read more »

Calico: Open-source solution for Kubernetes networking, security, and observability

July 21, 2025 add comment
Calico is an open-source unified platform that brings together networking, security, and observability for Kubernetes, whether you’re running in the cloud, on-premises, or at the edge. The solution uses... Read more »

Review: Passwork 7.0, self-hosted password manager for business

July 17, 2025 add comment
Over the years, the number of services we use has exploded, and so has the need to protect our credentials. Back in what I like to call “the age... Read more »

Falco: Open-source cloud-native runtime security tool for Linux

July 16, 2025 add comment
Falco is an open-source runtime security tool for Linux systems, built for cloud-native environments. It monitors the system in real time to spot unusual activity and possible security threats.... Read more »

pqcscan: Open-source post-quantum cryptography scanner

July 14, 2025 add comment
pqcscan is an open-source tool that lets users scan SSH and TLS servers to see which Post-Quantum Cryptography (PQC) algorithms they claim to support. It saves the results in... Read more »

Kanvas: Open-source incident response case management tool

July 9, 2025 add comment
Kanvas is an open-source incident response case management tool with a simple desktop interface, built in Python. It gives investigators a place to work with SOD (Spreadsheet of Doom)... Read more »

ParrotOS 6.4 lands with key tool updates and kernel upgrade

July 8, 2025 add comment
ParrotOS, known for its emphasis on security, privacy, and development, is widely used by cybersecurity professionals and enthusiasts alike. Version 6.4 delivers a host of updates and community-driven enhancements.... Read more »

Aegis Authenticator: Free, open-source 2FA app for Android

July 7, 2025 add comment
Aegis Authenticator is an open-source 2FA app for Android that helps you manage login codes for your online accounts. The app features strong encryption and the ability to back... Read more »

GitPhish: Open-source GitHub device code flow security assessment tool

July 3, 2025 add comment
GitPhish is an open-source security research tool built to replicate GitHub’s device code authentication flow. It features three core operating modes: an authentication server, automated landing page deployment, and... Read more »
Subscribe to our Newsletter