April 22, 2021
Cloud Sniper: Manage and automate cloud security operations
Cloud Sniper is an open-source platform for managing cloud security operations that aims to make it easy for cloud teams to deal with security incidents.
“One of our main goals is end-to-end automation of security incident lifecycles. Cloud Sniper performs automatic actions from deployment via Terraform to findings management,” Nicolás Rivero Corvalán, one of the tool’s creators, told Help Net Security.
“When using this platform, the lifecycle of a particular use case is covered end-to-end: from a simple action, detection, and slack notification to complex integrations with correlation, self-remediation, and exception management through actions performed by a slack bot, as an example.”
10 Free Security Tools at Black Hat Asia 2021
Researchers are set to demonstrate a plethora of tools for conducting pen tests, vulnerability assessments, data forensics, and a wide range of other use cases.
1 of 11
As in previous years, next month s Black Hat Asia 2021 virtual event will feature a full lineup of free security tools some new and some updated versions of existing tools.
Many of these tools are based on open source technologies, include those for conducting penetration tests and vulnerability assessments, data forensics and incident response, malware and network defense, application security, reverse engineering, and Web application security.
Some tools are designed for the security research community. Others are meant to help enterprise security teams address common challenges, such as those related to swift threat detection and mitigation, phishing attacks, and fileless malware.
Black Hat Announces Keynote Speaker Troy Hunt for Black Hat Asia 2021 Virtual Event
Friday, April 16, 2021 12:48PM IST (7:18AM GMT)
San Francisco, United States:
Black Hat, the world’s leading producer of information security events, announces security researcher and founder of Have I Been Pwned, Troy Hunt, as the Keynote speaker for this year’s Black Hat Asia virtual event, taking place May 4 – 7. Hunt will present his “Lessons from 11 Billion Breached Records” on Thursday, May 6 at 9 a.m. (SGT / UTC+8).
Security flaws, hackers and data breaches have become the new normal both online and offline with personal information being digitized, this leaves many vulnerable and exploited at the whim of attackers. Black Hat Asia attendees will discover lessons Hunt has learned after processing more than 11 billion records of breached data. In this talk, the Have I Been Pwned creator will give participants
Security Gaps in IoT Access Control Threaten darkreading.com - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from darkreading.com Daily Mail and Mail on Sunday newspapers.
By Staff Writer on Apr 13, 2021 2:52PM
Patches and mitigations available.
Security researchers say they have uncovered nine vulnerabilities in four TCP/IP stacks that could be used to target a range of servers, medical and industrial devices.
The two companies said they intend to present their findings at Black Hat Asia 2021, which is early next month.
The vulnerabilities were found in the FreeBSD, Nucleus NET, IPnet and NetX TCP/IP stacks, and “relate to domain name system (DNS) implementations, causing either denial of service (DoS) or remote code execution (RCE), allowing attackers to take target devices offline or to take control over them,” Forescout Research said in a blog post.