open source

Python Foundation rejects US government grant earmarked for security improvements

Don't miss, funding, Government, Hot stuff, News, open source, Python, Python Software Foundation, security review /

Python Foundation rejects US government grant earmarked for security improvements 2025-10-29 at 14:23 By Zeljka Zorz The Python Software Foundation (PSF) has rejected a $1.5 million government grant due to restrictive conditions that would force the foundation to betray its mission and its community, the programming non-profit announced on Monday. “In January 2025, the PSF […]

Python Foundation rejects US government grant earmarked for security improvements Read More »

Proximity: Open-source MCP security scanner

Don't miss, GitHub, News, open source, penetration testing, red team, scanner, scanning, software, threat hunting /

Proximity: Open-source MCP security scanner 2025-10-29 at 08:29 By Mirko Zorz Proximity is a new open-source tool that scans Model Context Protocol (MCP) servers. It identifies the prompts, tools, and resources that a server makes available, and it can evaluate how those elements might introduce security risks. The tool also work with NOVA, a rule

Proximity: Open-source MCP security scanner Read More »

Chainguard Raises $280 Million in Growth Funding

Chainguard, Cybersecurity Funding, funding, open source, supply chain /

Chainguard Raises $280 Million in Growth Funding 2025-10-27 at 17:14 By Eduard Kovacs Chainguard has raised $636 million in the past six months alone for its software supply chain security solutions.  The post Chainguard Raises $280 Million in Growth Funding appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Chainguard Raises $280 Million in Growth Funding Read More »

Dependency-Track: Open-source component analysis platform

cybersecurity, data analysis, Don't miss, GitHub, News, open source, software /

Dependency-Track: Open-source component analysis platform 2025-10-27 at 08:46 By Sinisa Markovic Software is a patchwork of third-party components, and keeping tabs on what’s running under the hood has become a challenge. The open-source platform Dependency-Track tackles that problem head-on. Rather than treating software composition as a one-time scan, it continuously monitors every version of every

Dependency-Track: Open-source component analysis platform Read More »

Wireshark 4.6.0 brings major updates for packet analysis and decryption

networking, News, open source, penetration testing, software, wireless /

Wireshark 4.6.0 brings major updates for packet analysis and decryption 2025-10-23 at 17:10 By Anamarija Pogorelec If you’ve ever used Wireshark to dig into network traffic you know how vital even small upgrades can be. With version 4.6.0 the team behind the open-source network protocol analyzer has added a number of features that could change

Wireshark 4.6.0 brings major updates for packet analysis and decryption Read More »

OpenFGA: The open-source engine redefining access control

access control, DevOps, Don't miss, GitHub, News, open source, software, Terraform /

OpenFGA: The open-source engine redefining access control 2025-10-22 at 15:13 By Sinisa Markovic OpenFGA is an open-source, high-performance, and flexible authorization engine inspired by Google’s Zanzibar system for relationship-based access control. It helps developers model and enforce fine-grained access control in their applications. At its core, OpenFGA enables teams to define who can do what

OpenFGA: The open-source engine redefining access control Read More »

Nodepass: Open-source TCP/UDP tunneling solution

cybersecurity, DevOps, Don't miss, GitHub, network monitoring, networking, News, open source, penetration testing, red team, software /

Nodepass: Open-source TCP/UDP tunneling solution 2025-10-20 at 13:18 By Sinisa Markovic When you think of network tunneling, “lightweight” and “enterprise-grade” rarely appear in the same sentence. NodePass, an open-source project, wants to change that. It’s a compact but powerful TCP/UDP tunneling solution built for DevOps teams and system administrators who need to manage complex network

Nodepass: Open-source TCP/UDP tunneling solution Read More »

Maltrail: Open-source malicious traffic detection system

Don't miss, GitHub, Linux, malware detection, monitoring, News, open source, software, Threat Intelligence, traffic monitoring /

Maltrail: Open-source malicious traffic detection system 2025-10-15 at 08:30 By Sinisa Markovic Maltrail is an open-source network traffic detection system designed to spot malicious or suspicious activity. It works by checking traffic against publicly available blacklists, as well as static lists compiled from antivirus reports and user-defined sources. These “trails” can include domain names, URLs,

Maltrail: Open-source malicious traffic detection system Read More »

Nagios: Open-source monitoring solution

Don't miss, GitHub, monitoring, News, open source, software /

Nagios: Open-source monitoring solution 2025-10-10 at 08:19 By Anamarija Pogorelec Nagios is an open-source monitoring solution, now included as part of the robust Nagios Core Services Platform (CSP). It delivers end-to-end visibility across the entire IT infrastructure, covering everything from websites and DNS to servers, routers, switches, workstations, and critical services. It helps organizations proactively

Nagios: Open-source monitoring solution Read More »

Legit tools, illicit uses: Velociraptor, Nezha turned against victims

APT, attack tools, Cisco, Don't miss, Hot stuff, Huntress, News, open source, Ransomware, Sophos /

Legit tools, illicit uses: Velociraptor, Nezha turned against victims 2025-10-09 at 19:19 By Zeljka Zorz Threat actors are using an increasing variety of commercial and open-source products to carry out their attacks: according to researchers, Velociraptor and Nezha are the latest additions to their attack toolbox. Velociraptor misuse A suspected China-based ransomware threat actor has

Legit tools, illicit uses: Velociraptor, Nezha turned against victims Read More »

DefectDojo: Open-source DevSecOps platform

DevSecOps, Don't miss, GitHub, News, open source, software /

DefectDojo: Open-source DevSecOps platform 2025-10-08 at 09:39 By Anamarija Pogorelec DefectDojo is an open-source tool for DevSecOps, application security posture management (ASPM), and vulnerability management. It helps teams manage security testing, track and remove duplicate findings, handle remediation, and generate reports. Whether you’re a solo security practitioner or a CISO managing multiple teams, DefectDojo helps

DefectDojo: Open-source DevSecOps platform Read More »

Proxmox Mail Gateway: Open-source email security solution reaches version 9.0

antivirus, content filtering, Don't miss, Email, email security, News, open source, Proxmox, software /

Proxmox Mail Gateway: Open-source email security solution reaches version 9.0 2025-10-06 at 08:06 By Anamarija Pogorelec First released in 2005, the open-source Proxmox Mail Gateway has become a widely adopted mail proxy, positioned between the firewall and the internal mail server to stop threats before they reach users. The platform delivers anti-spam and antivirus filtering

Proxmox Mail Gateway: Open-source email security solution reaches version 9.0 Read More »

OpenSSL 3.6.0: New features, crypto support

Encryption, News, open source, software /

OpenSSL 3.6.0: New features, crypto support 2025-10-02 at 17:54 By Anamarija Pogorelec The OpenSSL Project has announced the release of OpenSSL 3.6.0, a feature update that brings significant functionality improvements, standards compliance, and a few key deprecations that developers and security teams will need to keep in mind. Key cryptographic enhancements OpenSSL 3.6.0 introduces several

OpenSSL 3.6.0: New features, crypto support Read More »

Chekov: Open-source static code analysis tool

cloud security, code analysis, cybersecurity, Don't miss, GitHub, News, open source, software /

Chekov: Open-source static code analysis tool 2025-10-02 at 09:18 By Sinisa Markovic Checkov is an open-source tool designed to help teams secure their cloud infrastructure and code. At its core, it’s a static code analysis tool for infrastructure as code (IaC), but it also goes a step further by providing software composition analysis (SCA) for

Chekov: Open-source static code analysis tool Read More »

The hidden risks inside open-source code

cybersecurity, Don't miss, Features, Hot stuff, News, open source, research, Risk Management, software, supply chain /

The hidden risks inside open-source code 2025-09-30 at 09:12 By Mirko Zorz Open-source software is everywhere. It runs the browsers we use, the apps we rely on, and the infrastructure that keeps businesses connected. For many security leaders, it is simply part of the environment, not something they think about every day. That is where

The hidden risks inside open-source code Read More »

Firezone: Open-source platform to securely manage remote access

cybersecurity, GitHub, News, open source, remote access, secure connectivity, software, VPN /

Firezone: Open-source platform to securely manage remote access 2025-09-29 at 08:36 By Sinisa Markovic Firezone is an open-source platform that helps organizations of any size manage secure remote access. Unlike most VPNs, it uses a least-privileged model, giving users only the access they need. Firezone was built to scale from the start, so you can

Firezone: Open-source platform to securely manage remote access Read More »

Delinea releases free open-source MCP server to secure AI agents

agentic AI, Artificial Intelligence, cybersecurity, Delinea, GitHub, News, open source, software /

Delinea releases free open-source MCP server to secure AI agents 2025-09-26 at 08:06 By Sinisa Markovic AI agents are becoming more common in the workplace, but giving them access to sensitive systems can be risky. Credentials often get stored in plain text, added to prompts, or passed around without proper oversight. Delinea wants to fix

Delinea releases free open-source MCP server to secure AI agents Read More »

Kali Linux 2025.3 brings improved virtual machine tooling, 10 new tools

Don't miss, Hot stuff, Kali Linux, News, OffSec, open source, penetration testing, software /

Kali Linux 2025.3 brings improved virtual machine tooling, 10 new tools 2025-09-24 at 12:19 By Zeljka Zorz OffSec has released Kali Linux 2025.3, the most up-to-date version of its popular penetration testing and digital forensics platform. What’s new in Kali Linux 2025.3 Better virtual machine tooling The way Kali builds and ships its VM images

Kali Linux 2025.3 brings improved virtual machine tooling, 10 new tools Read More »

Nosey Parker: Open-source tool finds sensitive information in textual data and Git history

GitHub, News, open source, scanning, software /

Nosey Parker: Open-source tool finds sensitive information in textual data and Git history 2025-09-24 at 08:10 By Anamarija Pogorelec Nosey Parker is an open-source command-line tool that helps find secrets and sensitive information hidden in text files. It works like a specialized version of grep, focused on spotting things like passwords, API keys, and other

Nosey Parker: Open-source tool finds sensitive information in textual data and Git history Read More »

Scroll to Top