open-source
-
Fleet is an open-source platform for IT and security teams managing thousands of computers. It’s designed to work seamlessly with APIs, GitOps, webhooks, and YAML configurations. Fleet provides a single platform to secure and maintain all computing devices over the air. It offers a centralized solution, from mobile device management (MDM) to patching and verifying…
-
Sara is an open-source tool designed to analyze RouterOS configurations and identify security vulnerabilities on MikroTik hardware. Sara’s main feature is using regular expressions as the primary analysis mechanism. This allows you to quickly and accurately process RouterOS configuration text files, making the tool powerful and easy to use. “Sara is entirely standalone and requires…
-
Evilginx is an open-source man-in-the-middle attack framework designed to phish login credentials and session cookies, enabling attackers to bypass 2FA safeguards. “Back in 2017, I was experimenting with extracting cookies from one browser and importing them into another. I realized this technique could effectively take over accounts, bypassing the need for credentials or even MFA…
-
submitted by /u/Candace_Owens_4225 [link] [comments]
-
https://crypt.fyi https://github.com/osbytes/crypt.fyi I built this project as a learning experience to further my knowledge of web security best practices as well as to improve on existing tools that solve for a similar niche. Curious to receive any thoughts/suggestions/feedback. submitted by /u/codectl [link] [comments]
-
Kindly suggest an android application to wipe deleted files completly. TIA! submitted by /u/blueinklet [link] [comments]
-
A recent report by Lineaje AI Labs has revealed that the United States is the top contributor to open-source projects, but it also leads in anonymous contributions, raising significant concerns about transparency and security in the global software supply chain. Geopolitical Risks in Open-Source Contributions The report, titled “Crossing Boundaries: Breaking Trust,” highlights the geopolitical…
-
Open-source AI offers many opportunities, including high levels of innovation, while also presenting security admins with unique challenges. Leaders in AI, such as Clem Delangue from Hugging Face and Rahul Roy-Chowdhury from Grammarly, stress the significance of transparency and ethical decision-making when building trustworthy AI systems. Delangue advocates for greater transparency even at the expense…
-
Trapster Community is an open-source, lightweight, low-interaction honeypot designed for deployment within internal networks. It enhances network security by creating a deceptive layer that monitors and detects suspicious activities.
-
FuzzyAI is an open-source framework that helps organizations identify and address AI model vulnerabilities in cloud-hosted and in-house AI models, like guardrail bypassing and harmful output generation.
-
Keycloak is an open-source project for identity and access management (IAM). It provides user federation, strong authentication, user management, authorization, and more. Keycloak is based on standard protocols and supports OpenID Connect, OAuth 2.0, and SAML.
-
Google recently announced a milestone in finding vulnerabilities in open-source software using automated fuzzing tools enhanced by artificial intelligence (AI). Twenty-six new vulnerabilities — including a critical one in the OpenSSL library — were discovered in open-source projects. All were found using AI-generated and -enhanced fuzz targets.
-
Neosync is an open-source, developer-centric solution designed to anonymize PII, generate synthetic data, and synchronize environments for improved testing and debugging.
-
NEWS BRIEF Security updates in the Android ecosystem is a complex, multi-stage affair, with each downstream manufacturer responsible for incorporating security fixes and deploying them to individual user devices. Manufacturers have diverse device portfolios with different models running different versions of the Android operating system and related software, which means they are responsible for multiple…
-
Google has officially launched Vanir, an open-source security patch validation tool designed to streamline and automate the process of ensuring software security patches are integrated effectively.
-
Google has officially launched Vanir, a groundbreaking open-source security patch validation tool designed to enhance the efficiency and accuracy of patch management.
-
In a move set to redefine security patch validation, Google announced the public availability of Vanir, an open-source tool designed to revolutionize how developers identify and address security vulnerabilities.
-
MalBot December 7, 2024, 12:45am 1 Four flaws in open-source machine learning tools could lead to code execution or path traversal.
-
Today, we are announcing the availability of Vanir, a new open-source security patch validation tool. Introduced at Android Bootcamp in April, Vanir gives Android platform developers the power to quickly and efficiently scan their custom platform code for missing security patches and identify applicable available patches. Vanir significantly accelerates patch validation by automating this process,…