Security News

Mosint: Open-source automated email OSINT tool
2023-11-30 05:30

Mosint is an automated email OSINT tool written in Go designed to facilitate quick and efficient investigations of target emails. It integrates multiple services, providing security researchers with rapid access to a broad range of information.

Vigil: Open-source LLM security scanner
2023-11-29 04:00

Vigil is an open-source security scanner that detects prompt injections, jailbreaks, and other potential threats to Large Language Models. "I've been really excited about the possibilities of LLMs, but have also noticed the need for better security practices around the applications built around them and the data we give the applications access to. This project gave me a great chance to build something at the intersection of AI and cybersecurity. Hopefully it is providing other security researchers and developers a start in experimenting with existing LLM input and output safety measures, and even creating their own. More"whats possible" than anything I'd expect to be used directly in production," Adam M. Swanda, the creator of Vigil, told Help Net Security.

AWS Kill Switch: Open-source incident response tool
2023-11-27 06:00

AWS Kill Switch is an open-source incident response tool for quickly locking down AWS accounts and IAM roles during a security incident. "I recently left my role as Sr. Director, Security Engineering at Robinhood and have been using my free time to sharpen my skills as an individual contributor and contribute to open source. I find it stimulating and a great way to build stronger ties with the security community," Jeffrey Lyon, the creator of AWS Kill Switch, told Help Net Security.

Open-source Blender project battling DDoS attacks since Saturday
2023-11-22 16:12

Blender has confirmed that recent site outages have been caused by ongoing DDoS attacks that started on Saturday. "Since last Saturday, 18 November, the blender.org servers are under a DDoS attack; bringing down our servers by overloading them with requests," reads the announcement.

Open-source AV/EDR bypassing lab for training and learning
2023-11-22 04:30

Best EDR Of The Market is a user-mode endpoint detection and response project designed to serve as a testing ground for understanding and bypassing EDR's user-mode detection methods. These techniques are mainly based on a dynamic analysis of the target process state,.

PolarDNS: Open-source DNS server tailored for security evaluations
2023-11-21 05:30

PolarDNS is a specialized authoritative DNS server that allows the operator to produce custom DNS responses suitable for DNS protocol testing purposes. DNS header malformations Injection of unsolicited records Injection of arbitrary bytes of arbitrary lengths.

Wireshark 4.2.0 released, open-source packet analysis gets even better
2023-11-17 08:34

Wireshark, the popular network protocol analyzer, has reached version 4.2.0. Wireshark 4.2.0: Notable changes Wireshark supports dark mode on Windows. Packet list sorting has been improved....

HARmor: Open-source tool for sanitizing and securing HAR files
2023-11-15 06:53

HARmor is an open-source tool that sanitizes HTTP Archive files. Easy to install and run, it enables the safe handling and sharing of HAR files.

k0smotron: Open-source Kubernetes cluster management
2023-11-14 04:30

Open-source solution k0smotron is enterprise-ready for production-grade Kubernetes cluster management with two support options. The k0smotron operator is deployed onto an existing Kubernetes cluster, designated as the management cluster similar to a "Mothership," that orchestrates and provides control plane services on demand.

GitHub Universe: Open Source Trends Report and New AI Security Products
2023-11-10 15:38

GitHub Advanced Security gains AI features, and GitHub Copilot now includes a chatbot option. At the GitHub Universe conference held in San Francisco and virtually on Nov. 8 and Nov. 9, 2023, the company revealed its new open source trends report as well as changes to GitHub Copilot and AI enhancements for GitHub Advanced Security.