Collaborate Disseminate
Raven (Risk Analysis and Vulnerability Enumeration for CI/CD) is an open-source CI/CD pipeline security scanner that makes hidden risks visible by connecting the dots across vulnerabilities woven throughout the pipeline that, when viewed collectively, … Continue reading Raven: Open-source CI/CD pipeline security scanner
Google is enhancing Google Play Protect’s real-time scanning to include code-level scanning, to keep Android devices safe from malicious and unwanted apps, especially those downloaded (or sideloaded) from outside of the Google Play app store R… Continue reading Google Play Protect takes on malicious apps with code-level scanning
Vulnerability scanners delve into systems to uncover security gaps. The primary mission? To fortify organizations against breaches and shield sensitive data from exposure. Beyond merely pinpointing weaknesses, vulnerability scanning is a proactive meas… Continue reading 5 free vulnerability scanners you should check out
With regular felt pens, users are limited to the colors of the pens in a set. As you might have guessed, though, the Colorpik Pen is different – it can reproduce 16 million colors, which are scanned from the user’s environment.Continue ReadingCategory:… Continue reading Colorpik Pen draws from its surroundings to draw in 16 million colors
GitHub has announced that its application security testing tools are now more widely available for subscribers of Microsoft’s Azure DevOps Services. Enabling GitHub Advanced Security for Azure DevOps (Source: Microsoft) What is GitHub Advanced Se… Continue reading Microsoft, GitHub announce application security testing tools for Azure DevOps
GitHub is making push protection – a security feature designed to automatically prevent the leaking of secrets to repositories – free for owners of all public repositories. Previously, the feature was available only for private repositories… Continue reading Never leak secrets to your GitHub repositories again
There are a lot of situations where a research group may turn to an electron microscope to get information about whatever system they might be studying. Assessing the structure of …read more Continue reading Building an Electron Microscope For Research
After releasing the Open Source Vulnerabilities database (OSV.dev) in February, Google has launched the OSV-Scanner, a free command line vulnerability scanner that open source developers can use to check for vulnerabilities in their projects’ dep… Continue reading OSV-Scanner: A free vulnerability scanner for open-source software
Modern environments have become more dynamic and the need for equally progressive asset discovery techniques has intensified. The new Cybersecurity and Infrastructure Security Agency (CISA) Binding Operational Directive (BOD) 23-01 recognizes this fact… Continue reading Future-proofing asset and vulnerability intelligence in response to CISA’s BOD 23-01
Nmap is a widely used free and open-source network scanner. It’s used for network inventorying, port scanning, managing service upgrade schedules, monitoring host or service uptime, etc. It works on most operating systems: Linux, Windows, macOS, … Continue reading Nmap 7.93, the 25th anniversary edition, has been released