software

Artemis: Open-source modular vulnerability scanner

Don't miss, GitHub, Hot stuff, News, open source, penetration testing, scanner, scanning, software, vulnerability assessment /

Artemis: Open-source modular vulnerability scanner 2025-07-30 at 09:00 By Mirko Zorz Artemis is an open-source modular vulnerability scanner that checks different aspects of a website’s security and translates the results into easy-to-understand messages that can be shared with the organizations being scanned. “The most important feature of the tool is report generation. Besides scanning, it […]

React to this headline:

Loading spinner

Artemis: Open-source modular vulnerability scanner Read More »

Vulnhuntr: Open-source tool to identify remotely exploitable vulnerabilities

Artificial Intelligence, Don't miss, GitHub, LLMs, News, open source, Protect AI, software /

Vulnhuntr: Open-source tool to identify remotely exploitable vulnerabilities 2025-07-28 at 08:13 By Mirko Zorz Vulnhuntr is an open-source tool that finds remotely exploitable vulnerabilities. It uses LLMs and static code analysis to trace how data moves through an application, from user input to server output. This helps it spot complex, multi-step vulnerabilities that traditional tools

React to this headline:

Loading spinner

Vulnhuntr: Open-source tool to identify remotely exploitable vulnerabilities Read More »

Autoswagger: Open-source tool to expose hidden API authorization flaws

API security, cybersecurity, Don't miss, GitHub, Intruder, News, open source, software /

Autoswagger: Open-source tool to expose hidden API authorization flaws 2025-07-24 at 11:57 By Help Net Security Autoswagger is a free, open-source tool that scans OpenAPI-documented APIs for broken authorization vulnerabilities. These flaws are still common, even at large enterprises with mature security teams, and are especially dangerous because they can be exploited with little technical

React to this headline:

Loading spinner

Autoswagger: Open-source tool to expose hidden API authorization flaws Read More »

Cervantes: Open-source, collaborative platform for pentesters and red teams

cybersecurity, Don't miss, GitHub, News, open source, OWASP, penetration testing, red team, software /

Cervantes: Open-source, collaborative platform for pentesters and red teams 2025-07-23 at 08:31 By Mirko Zorz Cervantes is an open-source collaborative platform built for pentesters and red teams. It offers a centralized workspace to manage projects, clients, vulnerabilities, and reports, all in one place. By streamlining data organization and team coordination, it helps reduce the time

React to this headline:

Loading spinner

Cervantes: Open-source, collaborative platform for pentesters and red teams Read More »

Calico: Open-source solution for Kubernetes networking, security, and observability

Don't miss, GitHub, Kubernetes, networking, News, open source, software /

Calico: Open-source solution for Kubernetes networking, security, and observability 2025-07-21 at 08:12 By Mirko Zorz Calico is an open-source unified platform that brings together networking, security, and observability for Kubernetes, whether you’re running in the cloud, on-premises, or at the edge. The solution uses the lowest amount of processing resources, which is especially important in

React to this headline:

Loading spinner

Calico: Open-source solution for Kubernetes networking, security, and observability Read More »

Review: Passwork 7.0, self-hosted password manager for business

authentication, cybersecurity, Don't miss, Hot stuff, News, passwords, Passwork, Review, Reviews, software /

Review: Passwork 7.0, self-hosted password manager for business 2025-07-17 at 13:09 By Help Net Security Over the years, the number of services we use has exploded, and so has the need to protect our credentials. Back in what I like to call “the age of innocence,” we scribbled passwords on paper or reused “password123” across

React to this headline:

Loading spinner

Review: Passwork 7.0, self-hosted password manager for business Read More »

Falco: Open-source cloud-native runtime security tool for Linux

Cloud, Cloud Native Computing Foundation, Don't miss, GitHub, Linux, News, open source, software /

Falco: Open-source cloud-native runtime security tool for Linux 2025-07-16 at 07:46 By Help Net Security Falco is an open-source runtime security tool for Linux systems, built for cloud-native environments. It monitors the system in real time to spot unusual activity and possible security threats. Falco is a graduated project from the Cloud Native Computing Foundation

React to this headline:

Loading spinner

Falco: Open-source cloud-native runtime security tool for Linux Read More »

pqcscan: Open-source post-quantum cryptography scanner

Anvil Secure, Don't miss, Encryption, GitHub, News, open source, scanner, software /

pqcscan: Open-source post-quantum cryptography scanner 2025-07-14 at 09:04 By Mirko Zorz pqcscan is an open-source tool that lets users scan SSH and TLS servers to see which Post-Quantum Cryptography (PQC) algorithms they claim to support. It saves the results in JSON files. You can turn one or more of these files into an HTML report

React to this headline:

Loading spinner

pqcscan: Open-source post-quantum cryptography scanner Read More »

Kanvas: Open-source incident response case management tool

cybersecurity, Don't miss, GitHub, Hot stuff, Incident Response, MITRE, News, open source, software, WithSecure /

Kanvas: Open-source incident response case management tool 2025-07-09 at 07:31 By Mirko Zorz Kanvas is an open-source incident response case management tool with a simple desktop interface, built in Python. It gives investigators a place to work with SOD (Spreadsheet of Doom) or similar files, so they can handle key tasks without jumping between different

React to this headline:

Loading spinner

Kanvas: Open-source incident response case management tool Read More »

ParrotOS 6.4 lands with key tool updates and kernel upgrade

Linux, News, open source, software /

ParrotOS 6.4 lands with key tool updates and kernel upgrade 2025-07-08 at 11:32 By Anamarija Pogorelec ParrotOS, known for its emphasis on security, privacy, and development, is widely used by cybersecurity professionals and enthusiasts alike. Version 6.4 delivers a host of updates and community-driven enhancements. The update is expected to be the final release in

React to this headline:

Loading spinner

ParrotOS 6.4 lands with key tool updates and kernel upgrade Read More »

Aegis Authenticator: Free, open-source 2FA app for Android

2FA, Android, authentication, Don't miss, GitHub, News, open source, software /

Aegis Authenticator: Free, open-source 2FA app for Android 2025-07-07 at 08:34 By Help Net Security Aegis Authenticator is an open-source 2FA app for Android that helps you manage login codes for your online accounts. The app features strong encryption and the ability to back up your data. It supports both HOTP and TOTP, so it

React to this headline:

Loading spinner

Aegis Authenticator: Free, open-source 2FA app for Android Read More »

GitPhish: Open-source GitHub device code flow security assessment tool

Don't miss, GitHub, News, open source, Praetorian, red team, software /

GitPhish: Open-source GitHub device code flow security assessment tool 2025-07-03 at 09:30 By Help Net Security GitPhish is an open-source security research tool built to replicate GitHub’s device code authentication flow. It features three core operating modes: an authentication server, automated landing page deployment, and an administrative management interface. GitPhish can be accessed via a

React to this headline:

Loading spinner

GitPhish: Open-source GitHub device code flow security assessment tool Read More »

Secretless Broker: Open-source tool connects apps securely without passwords or keys

CyberArk, Don't miss, GitHub, News, open source, software /

Secretless Broker: Open-source tool connects apps securely without passwords or keys 2025-07-02 at 08:01 By Mirko Zorz Secretless Broker is an open-source connection broker that eliminates the need for client applications to manage secrets when accessing target services like databases, web services, SSH endpoints, or other TCP-based systems. Secretless Broker features “We created Secretless Broker

React to this headline:

Loading spinner

Secretless Broker: Open-source tool connects apps securely without passwords or keys Read More »

Kanister: Open-source data protection workflow management tool

Cloud Native Computing Foundation, Data Protection, Don't miss, GitHub, Kubernetes, News, open source, software /

Kanister: Open-source data protection workflow management tool 2025-06-26 at 08:04 By Help Net Security Kanister is an open-source tool that lets domain experts define how to manage application data using blueprints that are easy to share and update. It handles the complex parts of running these tasks on Kubernetes and gives a consistent way to

React to this headline:

Loading spinner

Kanister: Open-source data protection workflow management tool Read More »

Reconmap: Open-source vulnerability assessment, pentesting management platform

Don't miss, GitHub, News, open source, reconnaissance, software /

Reconmap: Open-source vulnerability assessment, pentesting management platform 2025-06-24 at 08:03 By Help Net Security Reconmap is an open source tool for vulnerability assessments and penetration testing. It helps security teams plan, carry out, and report on security tests from start to finish. The platform simplifies tasks and makes it easier for teams to work together,

React to this headline:

Loading spinner

Reconmap: Open-source vulnerability assessment, pentesting management platform Read More »

DuckDuckGo’s Scam Blocker now blocks more types of scams

DuckDuckGo, Netcraft, News, Privacy, software /

DuckDuckGo’s Scam Blocker now blocks more types of scams 2025-06-20 at 12:24 By Sinisa Markovic Online scams are getting worse and more varied. DuckDuckGo knows that, so they’ve made changes. Their built-in Scam Blocker now stops more kinds of scam sites, all without tracking you. How Scam Blocker works (Source: DuckDuckGo) “If you accidentally click

React to this headline:

Loading spinner

DuckDuckGo’s Scam Blocker now blocks more types of scams Read More »

35 open-source security tools to power your red team, SOC, and cloud security

Android, cybersecurity, GitHub, Linux, macOS, News, open source, software, Windows /

35 open-source security tools to power your red team, SOC, and cloud security 2025-06-18 at 08:31 By Help Net Security This article showcases free, open-source security tools that support your organization’s teams in red teaming, threat hunting, incident response, vulnerability scanning, and cloud security. Autorize: Burp Suite extension for automatic authorization enforcement detection Autorize is

React to this headline:

Loading spinner

35 open-source security tools to power your red team, SOC, and cloud security Read More »

MDEAutomator: Open-source endpoint management, incident response in MDE

cybersecurity, Don't miss, GitHub, Hot stuff, Microsoft, News, open source, software /

MDEAutomator: Open-source endpoint management, incident response in MDE 2025-06-16 at 08:36 By Help Net Security Managing endpoints and responding to security incidents in Microsoft Defender for Endpoint (MDE) can be time-consuming and complex. MDEAutomator is an open-source tool designed to make that easier. MDEAutomator is a modular, serverless solution for IT and security teams looking

React to this headline:

Loading spinner

MDEAutomator: Open-source endpoint management, incident response in MDE Read More »

Kali Linux 2025.2 delivers Bloodhound CE, CARsenal, 13 new tools

Don't miss, Hot stuff, Kali Linux, News, OffSec, open source, penetration testing, software /

Kali Linux 2025.2 delivers Bloodhound CE, CARsenal, 13 new tools 2025-06-14 at 12:17 By Zeljka Zorz OffSec has released Kali Linux 2025.2, the most up-to-date version of the widely used penetration testing and digital forensics platform. KDE Plasma 6.3 in Kali Linux 2025.2 (Source: OffSec) New in Kali Linux 2025.2 As per usual, the newest

React to this headline:

Loading spinner

Kali Linux 2025.2 delivers Bloodhound CE, CARsenal, 13 new tools Read More »

Security flaws in government apps go unpatched for years

Application Security, cybersecurity, News, report, software, survey, Veracode /

Security flaws in government apps go unpatched for years 2025-06-13 at 08:02 By Help Net Security 78% of public sector organizations are operating with significant security debt, flaws left unaddressed for more than a year, according to Veracode. 55% are burdened with ‘critical’ security debt, representing long-standing vulnerabilities with severe risk potential. Public sector flaw

React to this headline:

Loading spinner

Security flaws in government apps go unpatched for years Read More »

Scroll to Top