In 2025, vulnerability scanning tools are essential for modern security teams, but running a scan is rarely the hard part anymore. The real challenge is automating it at scale: across thousands of ...

GitHub’s CodeQL is a robust query language originally developed by Semmle that allows you to look for vulnerabilities in the source code ...

NetPeek is GTK4/libadwaita app for fuss-free network scanning on Linux desktops. A user-friendly alternative to nmap for ...

Attackers on underground forums claimed they were using HexStrike AI, an open-source red-teaming tool, against Citrix ...

Web application security is the practice of protecting websites, online services, and applications from cyber threats that ...

What could have been a historic supply chain attack seems to have been averted due to the rapid response of the open source ...

Cybercriminals are using a legitimate red teaming tool to automate the exploitation of n-day vulnerabilities, reducing the ...

Hexstrike AI, a free open-source AI platform, is rapidly being repurposed by threat actors to automate and accelerate ...

The vulnerability, dubbed SessionReaper, allows customer account takeover and unauthenticated remote code execution ...

OpenAI released two open-weight models earlier this month. This was the first time OpenAI released an open-weight model since GPT-2 in 2019. OpenAI CEO Sam Altman said the decision was driven by China ...

Hackers are increasingly using a new AI-powered offensive security framework called HexStrike-AI in real attacks to exploit ...