open source

OpenWrt 25.12.0 ships with new package manager, built-in upgrade tool, support for 2200+ devices

OpenWrt 25.12.0 ships with new package manager, built-in upgrade tool, support for 2200+ devices 2026-03-09 at 13:50 By Anamarija Pogorelec OpenWrt 25.12.0 is now available for download. The release incorporates over 4,700 commits since branching from OpenWrt 24.10. Package manager changes One of the most significant structural changes in 25.12.0 is the replacement of the […]

OpenWrt 25.12.0 ships with new package manager, built-in upgrade tool, support for 2200+ devices Read More »

Open-source tool Sage puts a security layer between AI agents and the OS

Open-source tool Sage puts a security layer between AI agents and the OS 2026-03-09 at 08:06 By Anamarija Pogorelec Autonomous AI agents running on developer workstations execute shell commands, fetch URLs, and write files with little or no inspection of what they are doing. Open-source project Sage inserts an interception layer between an AI agent

Open-source tool Sage puts a security layer between AI agents and the OS Read More »

FreeScout vulnerability enables unauthenticated, zero-click RCE via email (CVE-2026-28289)

FreeScout vulnerability enables unauthenticated, zero-click RCE via email (CVE-2026-28289) 2026-03-05 at 14:27 By Zeljka Zorz A newly discovered vulnerability (CVE-2026-28289) in the open-source help desk platform FreeScout could allow attackers to take over vulnerable servers by sending a specially crafted email to a FreeScout mailbox. CVE-2026-28289 exploitation FreeScout is a free, open-source help desk and

FreeScout vulnerability enables unauthenticated, zero-click RCE via email (CVE-2026-28289) Read More »

Immutable Linux distribution Nitrux 6.0.0 adds GPU passthrough, boot-level recovery, C++ update system

Immutable Linux distribution Nitrux 6.0.0 adds GPU passthrough, boot-level recovery, C++ update system 2026-03-04 at 09:38 By Anamarija Pogorelec Nitrux 6.0.0, released March 3, 2026, packages several components that security practitioners running Linux workstations will find worth examining: a new hypervisor orchestrator with IOMMU-enforced isolation, a rewritten update system with cryptographic verification, and a recovery

Immutable Linux distribution Nitrux 6.0.0 adds GPU passthrough, boot-level recovery, C++ update system Read More »

mquire: Open-source Linux memory forensics tool

mquire: Open-source Linux memory forensics tool 2026-03-04 at 08:22 By Anamarija Pogorelec Linux memory forensics has long depended on debug symbols tied to specific kernel versions. These symbols are not installed on production systems by default, and sourcing them from external repositories creates a recurring problem: repositories go stale, kernel builds diverge, and analysts working

mquire: Open-source Linux memory forensics tool Read More »

IPFire ships its 200th core update with a new domain blocklist and kernel upgrade

IPFire ships its 200th core update with a new domain blocklist and kernel upgrade 2026-03-02 at 18:31 By Anamarija Pogorelec Network firewall distribution IPFire released Core Update 200, marking the 200th incremental update to the 2.29 branch. The release bundles a kernel upgrade, a beta domain blocklist service, security patches for OpenSSL and glibc, and

IPFire ships its 200th core update with a new domain blocklist and kernel upgrade Read More »

BlacksmithAI: Open-source AI-powered penetration testing framework

BlacksmithAI: Open-source AI-powered penetration testing framework 2026-03-02 at 08:00 By Mirko Zorz BlacksmithAI is an open-source penetration testing framework that uses multiple AI agents to execute different stages of a security assessment lifecycle. A multi-agent structure for offensive workflows BlacksmithAI runs as a hierarchical system in which an orchestrator coordinates task execution across specialized agents.

BlacksmithAI: Open-source AI-powered penetration testing framework Read More »

IronCurtain: An open-source, safeguard layer for autonomous AI assistants

IronCurtain: An open-source, safeguard layer for autonomous AI assistants 2026-02-28 at 07:07 By Zeljka Zorz Veteran security engineer Niels Provos is working on a new technical approach designed to stop autonomous AI agents from taking actions you haven’t specifically authorized. His open-source software solution, called IronCurtain, aims to neutralize the risk of an LLM-powered agent

IronCurtain: An open-source, safeguard layer for autonomous AI assistants Read More »

Wireshark 4.6.4 resolves dissector flaws, plugin compatibility issue

Wireshark 4.6.4 resolves dissector flaws, plugin compatibility issue 2026-02-26 at 10:49 By Anamarija Pogorelec Packet inspection remains a routine activity across enterprise networks, incident response workflows, and malware investigations. Continuous use places long-term stability and parsing accuracy at the center of daily operations. Wireshark version 4.6.4 addresses two vulnerabilities affecting protocol dissectors and resolves a

Wireshark 4.6.4 resolves dissector flaws, plugin compatibility issue Read More »

Open-source security debt grows across commercial software

Open-source security debt grows across commercial software 2026-02-26 at 08:36 By Mirko Zorz Open source code sits inside nearly every commercial application, and development teams continue to add new dependencies. Black Duck’s 2026 Open Source Security and Risk Analysis Report data shows that nearly all audited codebases contain open source components, with average component counts

Open-source security debt grows across commercial software Read More »

Hottest cybersecurity open-source tools of the month: February 2026

Hottest cybersecurity open-source tools of the month: February 2026 2026-02-26 at 07:07 By Anamarija Pogorelec This month’s roundup features exceptional open-source cybersecurity tools that are gaining attention for strengthening security across various environments. Pompelmi: Open-source secure file upload scanning for Node.js Software teams building services in JavaScript are adding more layers of defense to handle

Hottest cybersecurity open-source tools of the month: February 2026 Read More »

Microsoft adds domain libraries and Copilot integration to the quantum development kit

Microsoft adds domain libraries and Copilot integration to the quantum development kit 2026-02-25 at 08:05 By Anamarija Pogorelec The Microsoft Quantum Development Kit (QDK) is an open-source toolkit that runs on laptops and in common development environments. It includes code, simulators, libraries, and workflows that work with Visual Studio Code and GitHub Copilot. Integration with

Microsoft adds domain libraries and Copilot integration to the quantum development kit Read More »

Linux kernel 6.19 reaches stable release, kernel 7.0 work is already underway

Linux kernel 6.19 reaches stable release, kernel 7.0 work is already underway 2026-02-09 at 13:32 By Anamarija Pogorelec Development activity on the Linux kernel continues into early 2026 with the stable release of version 6.19. Kernel maintainers have completed the pre-release cycle and merged the final set of changes into the mainline tree. The release

Linux kernel 6.19 reaches stable release, kernel 7.0 work is already underway Read More »

Allama: Open-source AI security automation

Allama: Open-source AI security automation 2026-02-09 at 08:19 By Sinisa Markovic Allama is an open-source security automation platform that lets teams build visual workflows for threat detection and response. It includes integrations with 80+ types of tools and services typical in security operations, including SIEM systems, endpoint detection and response products, identity providers, and ticketing

Allama: Open-source AI security automation Read More »

Microsoft launches LiteBox, a security-focused open-source library OS

Microsoft launches LiteBox, a security-focused open-source library OS 2026-02-05 at 11:29 By Anamarija Pogorelec Microsoft has released LiteBox, a project intended to function as a security-focused library OS that can serve as a secure kernel for protecting a guest kernel using virtualization hardware. LiteBox was developed in collaboration with the Linux Virtualization Based Security (LVBS)

Microsoft launches LiteBox, a security-focused open-source library OS Read More »

Global Threat Map: Open-source real-time situational awareness platform

Global Threat Map: Open-source real-time situational awareness platform 2026-02-04 at 08:32 By Mirko Zorz Global Threat Map is an open-source project offering security teams a live view of reported cyber activity across the globe, pulling together open data feeds into a single interactive map. It visualizes indicators such as malware distribution, phishing activity, and attack

Global Threat Map: Open-source real-time situational awareness platform Read More »

Open-source attacks move through normal development workflows

Open-source attacks move through normal development workflows 2026-02-03 at 08:18 By Anamarija Pogorelec Software development relies on a steady flow of third-party code, automated updates, and fast release cycles. That environment has made the software supply chain a routine point of entry for attackers, with malicious activity blending into normal build and deployment processes. A

Open-source attacks move through normal development workflows Read More »

Product showcase: 2FAS Auth – Free, open-source 2FA for iOS

Product showcase: 2FAS Auth – Free, open-source 2FA for iOS 2026-02-03 at 07:47 By Anamarija Pogorelec Online accounts usually rely on a password, but passwords alone can be weak if they’re reused, easily guessed, or stolen. Two-factor authentication (2FA) adds a second layer of verification, usually a six-digit code generated by an app on your

Product showcase: 2FAS Auth – Free, open-source 2FA for iOS Read More »

Open-source AI pentesting tools are getting uncomfortably good

Open-source AI pentesting tools are getting uncomfortably good 2026-02-02 at 09:10 By Help Net Security AI has come a long way in the pentesting world. We are now seeing open-source tools that can genuinely mimic how a human tester works, not just fire off scans. I dug into three of them, BugTrace-AI, Shannon, and CAI,

Open-source AI pentesting tools are getting uncomfortably good Read More »

Pompelmi: Open-source secure file upload scanning for Node.js

Pompelmi: Open-source secure file upload scanning for Node.js 2026-02-02 at 09:10 By Sinisa Markovic Software teams building services in JavaScript are adding more layers of defense to handle untrusted file uploads. An open-source project called Pompelmi aims to insert malware scanning and policy checks directly into Node.js applications before files reach storage or business logic.

Pompelmi: Open-source secure file upload scanning for Node.js Read More »

Scroll to Top