New Open-Source Tool Spotlight

Nosey Parker is like a precision `grep` for secrets. It scans files, directories, Git histories, and GitHub repos, using 186 regex patterns to detect sensitive info with high accuracy. Outputs are deduplicated to reduce noise, and it scales up to 20TB inputs at GB/s speeds. #CyberSecurity #OpenSource

Project link on #GitHub https://github.com/praetorian-inc/noseyparker

#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity

—
P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking

New Open-Source Tool Spotlight

A Rust-powered Windows kernel rootkit, **shadow-rs**, blends advanced system manipulation with Rust's safety principles. Features include process hiding, privilege elevation, callback management, and more. For research/education. #RustLang #KernelDevelopment

Project link on #GitHub https://github.com/joaoviictorti/shadow-rs

#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity

—
P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking

Proton Business Suite Review 2025: Privacy-First Platform: https://lttr.ai/Afdnh

New Open-Source Tool Spotlight

PurpleLab offers a fully deployable cybersecurity lab with a web-based UI. Includes Windows Server 2019 sandbox, detection rule management, and MITRE ATT&CK integration. Ideal for testing detection rules or simulating attacks. #Cybersecurity #DevSecOps

Project link on #GitHub https://github.com/Krook9d/PurpleLab

#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity

—
P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking

AWS launches new cloud security features https://www.helpnetsecurity.com/2025/06/18/aws-launches-new-cloud-security-features/ #accountprotection #cloudsecurity #Kubernetes #Don'tmiss #Hotstuff #News #DDoS #AWS #MFA

New Open-Source Tool Spotlight

Transform any URL into an LLM-ready input with `Reader`. Just prefix the URL with `https://r.jina.ai/` for clean, readable content extraction. Perfect for enhancing agents & RAG pipelines. #LLM #NLP

Need web search results for your LLM? Prepend queries with `https://s.jina.ai/` to fetch top results—content included. E.g., `https://s.jina.ai/your+query` brings knowledge directly to your model. #AItools #DataEngineering

Reader API now supports images! Captions are auto-generated for images missing alt tags, giving LLMs better context for reasoning and summarizing multimedia pages. #MachineLearning #AI

Project link on #GitHub https://github.com/jina-ai/reader

#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity

—
P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking

New Open-Source Tool Spotlight

Using Microsoft Teams as a C2 channel? Meet convoC2. It embeds commands in hidden span tags and extracts outputs from Adaptive Card image URLs. Detection is tough—Teams logs aren’t antivirus-friendly. #CyberSecurity #RedTeam

Project link on #GitHub https://github.com/cxnturi0n/convoC2

#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity

—
P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking

New Open-Source Tool Spotlight

gVisor: a user-space application kernel designed for container isolation. It mimics a Linux kernel interface while being written in Go for memory safety, running in user space. Ideal for sandboxing workloads in Docker or Kubernetes. #Containers #Sandbox

Project link on #GitHub https://github.com/google/gvisor

#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity

—
P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking

New Open-Source Tool Spotlight

Falcoctl streamlines Falco administration with commands for managing plugins, rules, and registries. From adding an artifact index to searching specific plugins like `cloudtrail`, it’s built for precision. Works with multiple backends (HTTP, S3, GCS). Config files simplify repeat usage. #Falco #DevSecOps

Project link on #GitHub https://github.com/falcosecurity/falcoctl

#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity

—
P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking

New Open-Source Tool Spotlight

Falco offers real-time runtime security for Linux, designed to detect malicious activity via kernel-level monitoring. It tracks syscalls & integrates with Kubernetes metadata while supporting analysis in SIEM systems. #SecOps #CloudNative

Falco's modular repos streamline its ecosystem. Core ones include `libs` (drivers/libraries), `rules` (predefined threat detection rules), and `plugins` (external integrations). Check out `falcoctl` for CLI management. #DevSecOps #OpenSource

Why is Falco in C++? Its low-level, high-throughput needs require precise control over memory and performance—traits Go can't fully address. Plus, C++ enables kernel-level integration and cross-language plugin compatibility. #Programming #CloudSecurity

Project link on #GitHub https://github.com/falcosecurity/falco

#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity

—
P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking

New Open-Source Tool Spotlight

MCP-Hydra bridges AI assistants like ChatGPT with security tools (e.g., Nmap, Sqlmap) via the Model Context Protocol (MCP). It simplifies AI-assisted pentesting and analysis by making tools extensible and scriptable. #Cybersecurity #AI

Project link on #GitHub https://github.com/HappyHackingSpace/mcp-hydra

#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity

—
P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking

Cybercrime group FIN6 (aka Skeleton Spider) is leveraging trusted cloud services like AWS to deliver malware through fake job applications.

Our latest analysis breaks down:
How attackers use LinkedIn & Indeed to build trust
The use of resume-themed phishing lures
Cloud-hosted infrastructure that evades detection
The delivery of the More_eggs backdoor via .LNK files
Key defense strategies for recruiters and security teams

This campaign is a masterclass in low-complexity, high-evasion phishing

Read the full breakdown: https://dti.domaintools.com/skeleton-spider-trusted-cloud-malware-delivery/?utm_source=Mastodon&utm_medium=Social&utm_campaign=Skeleton-Spider

Fresh Redesign. Better Navigation. Same Mission.

Our documentation page just got a major upgrade!

Quick access to platform-specific guides
Easier navigation
Light or dark mode
Now using Markdown again — making it easier than ever to contribute!

Take a look at the redesign in our before-and-after comparison and explore the new experience: https://docs.cryptomator.org?utm_source=mastodon&utm_medium=social&utm_campaign=docs-redesign

New Open-Source Tool Spotlight

Kubernetes History Inspector (KHI) is an agentless log viewer built for visualizing Kubernetes audit logs. Its timeline-based log analysis and resource relationship diagrams simplify cluster troubleshooting—no complex setups or commands required. #Kubernetes #Observability

Project link on #GitHub https://github.com/GoogleCloudPlatform/khi

#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity

—
P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking

BSI entwickelt IT-Grundschutz++ weiter: Mehr Flexibilität, neue Kennzahlen und Fokus auf KI & Cloud.

#ITSecurity #BSI #CloudSecurity

https://www.bsi.bund.de/DE/Service-Navi/Presse/Alle-Meldungen-News/Meldungen/BSI_Dialog_IT-GrundschutzPlusPlus_250606.html

okay, #cryptography and #cybersecurity folks... let's talk TPMs and remote attestation.

(heck I know AWS Nitro claims it has attestation... but... isn't that software?)

#DCAP #marblerun #confidentialcompute #TPM #RemoteAttestation #cloudsecurity

do you see any cross-functional server and client libraries for these?

(poll just for fun.)

New Open-Source Tool Spotlight

Pocket ID is an OIDC provider simplifying authentication with passkeys. No passwords. Think secure logins using Yubikeys or biometrics. Lightweight compared to Keycloak or Hydra and ideal for focused use cases. Built for Docker setups. #Passkeys #OIDC

Project link on #GitHub https://github.com/pocket-id/pocket-id

#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity

—
P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking

Hackers are abusing Mullvad VPN to steal Salesforce data from companies! Google’s GTIG warns that group UNC6040 uses vishing & fake apps to exfiltrate sensitive info, hiding behind privacy tools. Stay vigilant!
Read more: https://cyberinsider.com/hackers-abuse-mullvad-vpn-to-steal-salesforce-data-from-companies/
#CyberSecurity #DataBreach #Salesforce #MullvadVPN #CloudSecurity #Phishing #Infosec #newz

New Open-Source Tool Spotlight

tfmcp simplifies Terraform management by letting AI assistants like Claude Desktop handle config, plans, and state via the Model Context Protocol (MCP). Built with Rust, it offers robust security, Docker support, and detailed analysis. #Terraform #DevOps

Project link on #GitHub https://github.com/nwiizo/tfmcp

#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity

—
P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking

The cloud security crisis no one’s talking about https://www.helpnetsecurity.com/2025/06/05/cloud-threats-detection/ #cloudsecurity #cybersecurity #report #survey #News #ARMO #SOC