SecZen

🔒 Decrypt Weekly – November 1 Issue
Check out this week’s edition for interesting reads, security tools, and updates on key changes in the cybersecurity world. Stay connected with weekly updates! #CyberSecurity

🔒 Explore our guide on security architecture with threat-based modeling. Learn how integrating Time-Based Security, the Intrusion Kill Chain, and MITRE ATT&CK strengthens detection, response, and resilience against cyber threats. #CyberSecurity #ThreatModeling #SOC

🔗 Chainloop - software supply chains 🚀 v0.75.x Highlights:
Org membership API
Scoped invitations
Role info display in API
Set role during invitation
Read-only viewer role
Domain-based allow-listing
docs.chainloop.dev
#infosec #cybersecurity #devsecops #cicd

mitmproxy 🚀 10.2.3 Release Highlights: Fixed IPv6 glitch, CONNECT URL bug, added arm64 macOS variant. Addressed DNS duplicates, wireguard config issue, and leaf cert creation bug. New mitmdump options and enhanced HTTP flow filters
mitmproxy.org
#infosec #cybersecurity #pentesting

Forwarder - MITM proxy 🚀 v.1.2.0 🆕 Introducing idle timeout, armed TLS listener, and connection metrics. 🔒 Security boosts with automatic closure after 1hr of inactivity and enhanced ConnectTimeout. Added GOMEMLIMIT and GOMAXPROCS metrics. forwarder-proxy.io
#mitm #infosec #cybersecurity

httpX - toolkit that allows running reliable multi threaded probes
#infosec #cybersecurity
github.com/projectdisco...

Teleport - 🚀 v15.1.0 Release Highlights:
- Standalone tbot Docker image
- Custom mouse pointers for remote desktop sessions
- Okta groups and apps synchronization
- EKS auto-discovery in Access Management UI
- TLS routing native WebSocket connection upgrade support
goteleport.com
#infosec #devsecops

Release v0.70.0 · chainloop-dev/chainloop Highlights Hierarchical Dependency-Track project support @sedan07 extended the dependency-Track plugin to support attaching automatically created projects to existing parent projects. This enables ...

Chainloop - software supply chain control plane 🚀 v0.70.0 release highlights
- support parent ID for auto-create hierarchical projects
- filter workflow runs by status
- added workflow latest_revision and description
#sbom #cicd #infosec #cybersecurity

Vault by HashiCorp Vault secures, stores, and tightly controls access to tokens, passwords, certificates, API keys, and other secrets critical in modern computing.

Vault - secrets manager 🚀 Release v1.15.6
🔒 Ensure secure client certificate validation by comparing public keys with trusted non-CA and leaf certificates, preventing trust in certs with the same serial but different keys or use of alternate certs with forged serial numbers.
#infosec #devsecops

KICS - Keeping Infrastructure as Code Secure KICS is an open source solution for static code analysis of Infrastructure as Code.

Kicks - IaC vuln scanner 🚀 v1.7.13 Release Highlights:
🔄 Parallel scanning
➕ Terraform nifcloud queries
🔍 Tencentcloud: cbs disk without encryption
🔍 Various queries for CloudFormation, Docker, crossplane, pulumi, and more!
#iac #devsecops #infosec #cybersecurity

Open Policy Agent Policy-based control for cloud native environments

OPA - Open Policy Agent 🚀 v0.62.0 Release:
🔄 Environment variable backups for cmd flags
➕ Added WithBundleParserOpts to OCI downloader
🔍 Logging optimization
🔄 Allow bundles to contain calls to unknown Rego functions
🛠 Improved input validation in topdown/http
#infosec #cybersecurity

Kali Linux 2024.1 Release (Micro Mirror) | Kali Linux Blog Hello 2024! Today we are unveiling Kali Linux 2024.1. As this is our the first release of the year, it does include new visual elements! Along with this we also have some exciting new mirrors to talk ...

🔐 Kali Linux 2024.1 Release is here: ✨ Kali project got more mirrors, Theme refresh, NetHunter Updates, and introducing new tools: blue-hydra, OpenTAXII, readpe, Snort, and Above!
#pentesting #infosec #cybersecurity

GitHub - gravitl/netmaker: Netmaker makes networks with WireGuard. Netmaker automates fast, secure, and distributed virtual networks. Netmaker makes networks with WireGuard. Netmaker automates fast, secure, and distributed virtual networks. - gravitl/netmaker

netmaker - wireguard based networks 🚀 v0.23.0 update: ✨ Revamped Internet Gateways: Improved connectivity for hosts and clients! 🌐 Access internet gateways via Remote Access tab. 💻 PostUp/PostDown commands, EMQX cloud support, Metadata for Remote Access Gateways.
#selfhosted #netsec #vpn #zerotrust

GitHub - tenable/terrascan: Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure. Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure. - tenable/terrascan

🚀 Terrascan 1.18.12 is here! 🔍 Update includes:
✨ Fixed display line numbers in CloudFormation templates scan results.
Terrascan enhances IaC compliance and security.
#devsecops #terraform #cicd #infosec

GitHub - chris2511/xca: X Certificate and Key management X Certificate and Key management. Contribute to chris2511/xca development by creating an account on GitHub.

xca - CA certificate and key management
🚀 2.6.0 Release Highlights:
🌐 Support for ovpn files
🛠 Fixes PKCS12 imports
🔐 Support for legacy keys
#cryptography #certificates #infosec #cybersecurity

HollowsHunter - scan Windows processes for malicious implants v0.3.9 release update
🚀 Added /pattern flag to allow search for custom signatures using SigFinder format
github.com/hasherezade/...
#malware #infosec #cybersecurity

GitHub - globaldatanet/aws-firewall-factory: Easily improve the security of your web applications with aws firewall factory. Protect your valuable assets with seamless WAF deployment, updates, and sta... Easily improve the security of your web applications with aws firewall factory. Protect your valuable assets with seamless WAF deployment, updates, and staging, all efficiently managed centrally wi...

aws-firewall-factory - Web AWS firewall factory 4.2.3 Release
- Check for Managed Rule Groups Labels and Rules
- Athena WAF log table support for easy analysis
- Fixes for customizable log group creation
#netsec #infosec #cybersecruity

GitHub - nitefood/asn: ASN / RPKI validity / BGP stats / IPv4v6 / Prefix / URL / ASPath / Organization / IP reputation / IP geolocation / IP fingerprinting / Network recon / lookup API server / Web tr... ASN / RPKI validity / BGP stats / IPv4v6 / Prefix / URL / ASPath / Organization / IP reputation / IP geolocation / IP fingerprinting / Network recon / lookup API server / Web traceroute server - ni...

asn - Network recon tool
🚀 v.0.76.0 release AS target lookup improvements:
⚡ Accelerate pWhois for AS OrgIDs & INETNUMs
🔍 Faster INETNUM origin lookup via Team Cymru WHOIS
🚥 Highlight unannounced INETNUMs
🔄 Switched to RIPEStat API
#osint #shodan #infosec #cybersecurity

Truffle Security Co. Truffle Security is an open-source security software company that secures sensitive data by detecting and remediating leaked keys and credentials.

Trufflehog - credentials scanner v.3.68.0 release update
- Added canary detection without detonation
#securitytools #infosec #cybersecruity
trufflesecurity.com

Welcome | authentik Bring all of your authentication into a unified platform.

Authentik - Identity Provider focused on flexibility and versatility release 2024.2.0
- fix for webauthn retry
- fixed rbac in permission_required decorator
#securitytools #idp #sso #infosec #cybersecurity

The Artemis security scanner Artemis is an open-source security vulnerability scanner developed by CERT PL. It is built to look for website misconfigurations and vulnerabilities on a large number of sites. It automatically prepar...

Artemis - security vulnerability scanner developed by CERT PL v2.6.0 release
- Finding selected Nuclei vulnerabilities
- WordPress plugin version check
- Added Known Exploited Vulnerabilities KEV source
#securitytools #infosec #cybersecurity

GitHub - projectdiscovery/cloudlist: Cloudlist is a tool for listing Assets from multiple Cloud Providers. Cloudlist is a tool for listing Assets from multiple Cloud Providers. - projectdiscovery/cloudlist

Cloudlist - listing assets from multi cloud v1.0.7 release update
- added integration with Kubernetes via config block. Specify connection details via file path or encoded kubeconfig. Priority to kubeconfig_encoded if both are provided.
#devops #k8s #infosec #cybersecurity

Release Prowler 3.14.0 - Paschendale · prowler-cloud/prowler Home, far away From the war, a chance to live again Home, far away But the war, no chance to live again Iron Maiden's Paschendale. Prowler 3.14 is here! Like the PI number, this version will drive ...

Prowler - Open Source CSPM v3.14.0 release update
- 25 new Azure checks
prowler.com
#securitytools #cspm #infosec #cybersecurity

Copacetic - Quickly patch containers for security without full rebuilds. Copa addresses operational gaps, enabling non-publishers like DevSecOps to patch images.
project-copacetic.github.io/copacetic/we...
#securitytools #vulnerabilities #infosec #cybersecurity

Security Onion 2.4.50 now available including some new features and lots of bug fixes! Security Onion 2.4.50 is now available! It includes some new features for our fellow defenders and lots of bug fixes! https://docs.securityo...

Security Onion - Threat hunting and security monitoring platform 2.4.50 release
- IKE pipeline
- DoD Stig compliance
- Integrations for Citrix, Nginx Winlog, RITA Logs
- Improved co-relations in SOC
#securitytools #ids #infosec #cybersecurity
blog.securityonion.net/2024/02/secu...

garak - LLM vulnerability scanner v0.9.0.12 release update
- added --buffs parameter
- plugins OpenAI, Low Res Lang, Rasa generator, Tree of Attacks
#securitytools #llm #ai #infosec #cybersecurity

GOAD - Game of Active Directory
- GOAD 5vms 2 forests 3 domains
- GOAD-Light 3 vms 1 forest 2 domains
- NHA 5vms 2 domains
- Provision witth Virtualbox VmWare Proxmox Azure
#homelab #pentesting #infosec #cybersecurity
github.com/Orange-Cyber...

GitHub - iann0036/iamlive: Generate an IAM policy from AWS, Azure, or Google Cloud (GCP) calls using client-side monitoring (CSM) or embedded proxy Generate an IAM policy from AWS, Azure, or Google Cloud (GCP) calls using client-side monitoring (CSM) or embedded proxy - iann0036/iamlive

imalive - generate IAM policy from client monitoring v1.1.7 release
- updated policy maps
- added host flag
#securitytools #cloudsecurity #infosec #cybersecurity

GitHub - chainloop-dev/chainloop: Chainloop is an open source software supply chain control plane, a single source of truth for artifacts plus a declarative attestation crafting process. Chainloop is an open source software supply chain control plane, a single source of truth for artifacts plus a declarative attestation crafting process. - chainloop-dev/chainloop

Chainloop - supply chain control plane v0.65.0 release update
- added secret types to prevent secret leaks in logs
- OCI credentials support
- dagger pipelines
#securitytools #sbom #infosec #cybersecurity

Release Teleport 15.0.2 · gravitational/teleport Description Fixed a potential panic in the tsh status command. #38305 Fixed SSO user locking in the setup access step of the RDS auto discover flow in the web UI. #38283 Optionally permit the auth...

Teleport - access infrastructure 15.0.2 Release Update
- Prevented access token leakage by removing them from URL parameters
- Enabled hardware key serial number validation option
#securitytools #infosec #cybersecurity