Trail of Bits - Security Ticks

25 open-source cybersecurity tools that don’t care about your budget

AI, AWS, Compliance, GitHub, GitLab, Kubernetes, Linux, News, open source, OpenClaw, penetration testing, software, Trail of Bits / SecurityTicks

25 open-source cybersecurity tools that don’t care about your budget 2026-04-27 at 10:30 By Anamarija Pogorelec Regardless of the operating system you use, managing secrets, apps, cloud, compliance, and security operations can be overwhelming. The free, open-source tools presented in this article can help you detect threats, increase visibility, enforce controls, and investigate and respond […]

25 open-source cybersecurity tools that don’t care about your budget Read More »

mquire: Open-source Linux memory forensics tool

computer forensics, cybersecurity, Don't miss, Incident Response, Linux, News, open source, rootkits, software, Trail of Bits / SecurityTicks

mquire: Open-source Linux memory forensics tool 2026-03-04 at 08:22 By Anamarija Pogorelec Linux memory forensics has long depended on debug symbols tied to specific kernel versions. These symbols are not installed on production systems by default, and sourcing them from external repositories creates a recurring problem: repositories go stale, kernel builds diverge, and analysts working

mquire: Open-source Linux memory forensics tool Read More »

Buttercup: Open-source AI-driven system detects and patches vulnerabilities

darpa, Don't miss, GitHub, Hot stuff, News, open source, software, Trail of Bits / SecurityTicks

Buttercup: Open-source AI-driven system detects and patches vulnerabilities 2025-08-18 at 09:42 By Help Net Security Buttercup is a free, automated, AI-powered platform that finds and fixes vulnerabilities in open-source software. Developed by Trail of Bits, it recently earned second place in DARPA’s AI Cyber Challenge (AIxCC). Main components Buttercup is made up of four main

Buttercup: Open-source AI-driven system detects and patches vulnerabilities Read More »

The Zoom attack you didn’t see coming

Cryptocurrency, cybercrime, Don't miss, Hot stuff, Malware, News, scams, social engineering, Trail of Bits, Zoom / SecurityTicks

The Zoom attack you didn’t see coming 2025-04-18 at 17:02 By Zeljka Zorz Did you know that when participating in a Zoom call, you can grant permission to other participants to control your computer remotely? While this feature may come in handy when dealing with trusted family, friends and colleagues, threat actors have started abusing

The Zoom attack you didn’t see coming Read More »

Worldcoin: Trail of Bits audit shows no vulnerability for Orb software

audit, Privacy, Trail of Bits, WLD, worldcoin / SecurityTicks

Worldcoin: Trail of Bits audit shows no vulnerability for Orb software 2024-03-14 at 16:37 By Cointelegraph by Christopher Roark A third-party audit of the project reportedly claimed that Orb devices do not record users’ iris-codes onto persistent memory and that they only transmit codes through end-to-end encrypted messaging. This article is an excerpt from Cointelegraph.com

Worldcoin: Trail of Bits audit shows no vulnerability for Orb software Read More »

White House: Use memory-safe programming languages to protect the nation

critical infrastructure, Don't miss, Government, Honeywell, Horizon3.ai, Hot stuff, News, programming, software development, Trail of Bits, USA / SecurityTicks

White House: Use memory-safe programming languages to protect the nation 2024-02-27 at 16:31 By Zeljka Zorz The White House is asking the technical community to switch to using memory-safe programming languages – such as Rust, Python, Swift, C#, Java, and Go – to prevent memory corruption vulnerabilities from entering the digital ecosystem. According to a

White House: Use memory-safe programming languages to protect the nation Read More »