Collaborate Disseminate
The tj-actions/changed-files GitHub Action, which is used in 23,000 repositories, has been targeted in a supply chain attack.
The post Popular GitHub Action Targeted in Supply Chain Attack appeared first on SecurityWeek.
Continue reading Popular GitHub Action Targeted in Supply Chain Attack
IntelMQ is an open-source solution designed to help IT security teams (including CERTs, CSIRTs, SOCs, and abuse departments) streamline the collection and processing of security feeds using a message queuing protocol. “Originally designed for CSI… Continue reading IntelMQ: Open-source tool for collecting and processing security feeds
Socket researchers said the malware-ridden packages were collectively downloaded over 330 times. GitHub removed all of the malicious packages Wednesday.
The post Lazarus Group deceives developers with 6 new malicious npm packages appeared first on CyberScoop.
Continue reading Lazarus Group deceives developers with 6 new malicious npm packages
NetBird is an open-source solution that integrates a configuration-free peer-to-peer private network with centralized access control, providing a single platform to build secure private networks for your organization or home. NetBird features NetBird c… Continue reading NetBird: Open-source network security
Learn essential coding and development skills, from Python-powered AI to version control with Git and GitHub. Continue reading This Professional Web Development & Coding Bundle for 2025 Is Just $50
Hetty is an open-source HTTP toolkit designed for security research, offering a free alternative to commercial tools like Burp Suite Pro. Built with the needs of penetration testers, security professionals, and bug bounty hunters in mind, Hetty provide… Continue reading Hetty: Open-source HTTP toolkit for security research
Microsoft Threat Intelligence exposes a malvertising campaign exploiting GitHub, Discord, and Dropbox. Discover the multi-stage attack chain, the… Continue reading Microsoft Dismantles Malvertising Scam Using GitHub, Discord, Dropbox
Fix Inventory is an open-source tool for detecting compliance and security risks in cloud infrastructure accounts. It was built from the ground up for cloud-native environments and provides broad support for over 300 cloud services, including AWS, Goog… Continue reading Fix Inventory: Open-source cloud asset inventory tool
Commix is an open-source penetration testing tool designed to automate the detection and exploitation of command injection vulnerabilities, streamlining security assessments for researchers and ethical hackers. Commix features Easy to use: Commix simpl… Continue reading Commix: Open-source OS command injection exploitation tool
This month’s roundup features exceptional open-source cybersecurity tools that are gaining attention for strengthening security across various environments. Kunai: Open-source threat hunting tool for Linux Kunai is an open-source tool that provides dee… Continue reading Hottest cybersecurity open-source tools of the month: February 2025