open source

Cybersecurity AI (CAI): Open-source framework for AI security

agentic AI, Artificial Intelligence, Don't miss, framework, GitHub, News, open source, software /

Cybersecurity AI (CAI): Open-source framework for AI security 2025-09-22 at 10:29 By Anamarija Pogorelec Cybersecurity AI (CAI) is an open-source framework that helps security teams build and run AI-driven tools for offensive and defensive tasks. It’s designed for anyone working in security, including researchers, ethical hackers, IT staff, and organizations that want to use AI […]

Cybersecurity AI (CAI): Open-source framework for AI security Read More »

Behind the scenes of cURL with its founder: Releases, updates, and security

code, cybersecurity, Don't miss, Features, Hot stuff, how-to, News, open source, opinion, patching, software, software development, strategy, tips, vulnerability management /

Behind the scenes of cURL with its founder: Releases, updates, and security 2025-09-18 at 09:01 By Mirko Zorz In this Help Net Security interview, Daniel Stenberg, lead developer od cURL, discusses how the widely used tool remains secure across billions of devices, from cloud services to IoT. He shares insights into cURL’s decades-long journey of

Behind the scenes of cURL with its founder: Releases, updates, and security Read More »

Rayhunter: EFF releases open-source tool to detect cellular spying

Don't miss, EFF, GitHub, mobile devices, News, open source, Privacy, software, surveillance /

Rayhunter: EFF releases open-source tool to detect cellular spying 2025-09-17 at 08:12 By Anamarija Pogorelec The Electronic Frontier Foundation (EFF) has released Rayhunter, a new open-source tool designed to detect cell site simulators (CSS). These devices, also known as IMSI catchers or Stingrays, mimic cell towers to trick phones into connecting so they can collect

Rayhunter: EFF releases open-source tool to detect cellular spying Read More »

Self-replicating worm hits 180+ npm packages in (largely) automated supply chain attack

Aikido Security, Don't miss, Hot stuff, JavaScript, News, Node.js, open source, ReversingLabs, StepSecurity, supply chain attacks, Wiz, worms /

Self-replicating worm hits 180+ npm packages in (largely) automated supply chain attack 2025-09-17 at 01:18 By Zeljka Zorz A potentially monumental supply chain attack is underway, thanks to a self-replicating worm-like payload that has been compromising packages published on the npm Registry. The worm has been dubbed “Shai-hulud” as it steals credentials from victims who

Self-replicating worm hits 180+ npm packages in (largely) automated supply chain attack Read More »

Arkime: Open-source network analysis and packet capture system

GitHub, network analysis, News, open source, traffic monitoring /

Arkime: Open-source network analysis and packet capture system 2025-09-15 at 08:47 By Help Net Security Arkime is an open-source system for large-scale network analysis and packet capture. It works with your existing security tools to store and index network traffic in standard PCAP format, making it easy to search and access. The solution includes a

Arkime: Open-source network analysis and packet capture system Read More »

Garak: Open-source LLM vulnerability scanner

Artificial Intelligence, Don't miss, GitHub, LLMs, News, open source, scanner, software /

Garak: Open-source LLM vulnerability scanner 2025-09-10 at 09:00 By Help Net Security LLMs can make mistakes, leak data, or be tricked into doing things they were not meant to do. Garak is a free, open-source tool designed to test these weaknesses. It checks for problems like hallucinations, prompt injections, jailbreaks, and toxic outputs. By running

Garak: Open-source LLM vulnerability scanner Read More »

Linux Kernel Runtime Guard hits 1.0.0 with major updates and broader support

Linux, News, open source, software, system hardening /

Linux Kernel Runtime Guard hits 1.0.0 with major updates and broader support 2025-09-08 at 09:52 By Sinisa Markovic The Linux Kernel Runtime Guard (LKRG) is a kernel module that checks the Linux kernel while it’s running. It looks for signs of tampering and tries to catch attempts to exploit security flaws in the kernel. Because

Linux Kernel Runtime Guard hits 1.0.0 with major updates and broader support Read More »

InterceptSuite: Open-source network traffic interception tool

cybersecurity, Don't miss, GitHub, network, News, open source, software /

InterceptSuite: Open-source network traffic interception tool 2025-09-08 at 08:34 By Mirko Zorz InterceptSuite is an open-source, cross-platform network traffic interception tool designed for TLS/SSL inspection, analysis, and manipulation at the network level. “InterceptSuite is designed primarily for non-HTTP protocols, although it does support HTTP/1 and HTTP/2. It offers support for databases, SMTP, and custom protocols,

InterceptSuite: Open-source network traffic interception tool Read More »

Can AI agents catch what your SOC misses?

Artificial Intelligence, cybersecurity, Don't miss, Features, framework, Hot stuff, network monitoring, News, open source, research, security operations, SOC /

Can AI agents catch what your SOC misses? 2025-09-02 at 10:45 By Mirko Zorz A new research project called NetMoniAI shows how AI agents might reshape network monitoring and security. Developed by a team at Texas Tech University, the framework brings together two ideas: distributed monitoring at the edge and AI-driven analysis at the center.

Can AI agents catch what your SOC misses? Read More »

AIDEFEND: Free AI defense framework

Artificial Intelligence, cybersecurity, Don't miss, framework, Hot stuff, News, open source /

AIDEFEND: Free AI defense framework 2025-09-01 at 09:21 By Mirko Zorz AIDEFEND (Artificial Intelligence Defense Framework) is an open knowledge base dedicated to AI security, providing defensive countermeasures and best practices to help security pros safeguard AI and machine learning systems. Practicality is at the core of AIDEFEND. The framework is designed to be “highly

AIDEFEND: Free AI defense framework Read More »

Hottest cybersecurity open-source tools of the month: August 2025

cybersecurity, Don't miss, GitHub, News, open source, software /

Hottest cybersecurity open-source tools of the month: August 2025 2025-08-27 at 08:02 By Sinisa Markovic This month’s roundup features exceptional open-source cybersecurity tools that are gaining attention for strengthening security across various environments. Buttercup: Open-source AI-driven system detects and patches vulnerabilities Buttercup is a free, automated, AI-powered platform that finds and fixes vulnerabilities in open-source

Hottest cybersecurity open-source tools of the month: August 2025 Read More »

Kopia: Open-source encrypted backup tool for Windows, macOS, Linux

backup, Don't miss, GitHub, News, open source, software /

Kopia: Open-source encrypted backup tool for Windows, macOS, Linux 2025-08-25 at 08:21 By Help Net Security Kopia is an open-source backup and restore tool that lets you create encrypted snapshots of your files and store them in cloud storage, on a remote server, on network-attached storage, or on your own computer. It doesn’t create a

Kopia: Open-source encrypted backup tool for Windows, macOS, Linux Read More »

LudusHound: Open-source tool brings BloodHound data to life

cybersecurity, Don't miss, GitHub, News, open source, red team, software, SpecterOps /

LudusHound: Open-source tool brings BloodHound data to life 2025-08-20 at 08:31 By Mirko Zorz LudusHound is an open-source tool that takes BloodHound data and uses it to set up a working Ludus Range for safe testing. It creates a copy of an Active Directory environment using previously gathered BloodHound data. Red teams can use this

LudusHound: Open-source tool brings BloodHound data to life Read More »

Git 2.51: Preparing for the future with SHA-256

Encryption, News, open source /

Git 2.51: Preparing for the future with SHA-256 2025-08-19 at 10:46 By Anamarija Pogorelec Git 2.51 is out, and the release continues the long process of modernizing the version control system. The update includes several technical changes, but one of the most important areas of work is Git’s move toward stronger cryptographic security through SHA-256

Git 2.51: Preparing for the future with SHA-256 Read More »

Buttercup: Open-source AI-driven system detects and patches vulnerabilities

darpa, Don't miss, GitHub, Hot stuff, News, open source, software, Trail of Bits /

Buttercup: Open-source AI-driven system detects and patches vulnerabilities 2025-08-18 at 09:42 By Help Net Security Buttercup is a free, automated, AI-powered platform that finds and fixes vulnerabilities in open-source software. Developed by Trail of Bits, it recently earned second place in DARPA’s AI Cyber Challenge (AIxCC). Main components Buttercup is made up of four main

Buttercup: Open-source AI-driven system detects and patches vulnerabilities Read More »

Obot MCP Gateway: Open-source platform to securely manage the adoption of MCP servers

GitHub, News, open source, software /

Obot MCP Gateway: Open-source platform to securely manage the adoption of MCP servers 2025-08-15 at 08:34 By Help Net Security Obot MCP Gateway is a free, open-source gateway that enables IT organizations to securely manage and scale adoption of Model Context Protocol (MCP) servers. MCPs are becoming the standard for how AI agents interface with

Obot MCP Gateway: Open-source platform to securely manage the adoption of MCP servers Read More »

Open-source flow monitoring with SENSOR: Benefits and trade-offs

Don't miss, Features, Hot stuff, InferSight, mikrotik, networking, News, open source, Paessler, resarch, RESILIX, Semper Victus, software, traffic monitoring /

Open-source flow monitoring with SENSOR: Benefits and trade-offs 2025-08-14 at 09:16 By Mirko Zorz Flow monitoring tools are useful for tracking traffic patterns, planning capacity, and spotting threats. But many off-the-shelf solutions come with steep licensing costs and hardware demands, especially if you want to process every packet. A research team at the University of

Open-source flow monitoring with SENSOR: Benefits and trade-offs Read More »

EntraGoat: Vulnerable Microsoft Entra ID infrastructure to simulate identity security misconfigurations

cybersecurity, Don't miss, GitHub, Hot stuff, News, open source, Semperis, software /

EntraGoat: Vulnerable Microsoft Entra ID infrastructure to simulate identity security misconfigurations 2025-08-12 at 08:01 By Help Net Security EntraGoat is a purpose-built tool that sets up a vulnerable Microsoft Entra ID environment to mimic real-world identity security issues. It’s designed to help security professionals practice spotting and exploiting common misconfigurations. The tool creates a range

EntraGoat: Vulnerable Microsoft Entra ID infrastructure to simulate identity security misconfigurations Read More »

Open-source server management platform Proxmox VE 9.0 released

Debian, enterprise, Linux, networking, News, open source, Proxmox, servers, software, storage /

Open-source server management platform Proxmox VE 9.0 released 2025-08-06 at 16:17 By Help Net Security Proxmox Virtual Environment (VE) 9.0 introduces advancements in both storage and networking capabilities, addressing critical enterprise demands. A highlight is the long-awaited support for snapshots on thick-provisioned LVM shared storage, improving storage management capabilities especially for enterprise users with Fibre

Open-source server management platform Proxmox VE 9.0 released Read More »

BloodHound 8.0 debuts with major upgrades in attack path management

Black Hat USA 2025, Don't miss, Duo Security, GitHub, Microsoft Entra ID, News, open source, software, SpecterOps /

BloodHound 8.0 debuts with major upgrades in attack path management 2025-08-05 at 10:11 By Help Net Security SpecterOps has released BloodHound 8.0, the latest iteration of its open-source attack path management platform, featuring major enhancements and expanded capabilities. BloodHound OpenGraph The release introduces BloodHound OpenGraph, a major advancement in identity attack path management that uncovers

BloodHound 8.0 debuts with major upgrades in attack path management Read More »

Scroll to Top