Network Computing Dark Reading

Advertise

Application Security

11/3/2014
10:00 AM

Ericka Chickowski
Slideshows

Connect Directly

1 Comment
Comment Now

50%

10 Cool Security Tools Open-Sourced By The Internet's Biggest Innovators

Google, Facebook, Netflix, and others have all offered up tools they've developed in-house to the community at large.

1 of 10

As today's Internet giants break the barrier for speed and scale of development of systems, their teams are increasingly tasked with building home-brewed security systems that can help them develop and manage their systems securely without missing a beat. In the end, the entire security community is benefitting from a lot of these investments, as many of these firms make these tools available through open-source projects. Over the past few years, some very useful tools have come from the security and engineering teams at Facebook, Twitter, Google, Netflix, Etsy, and even AOL.

Security Monkey

Built by Netflix three years ago, Security Monkey is a monitoring and security analysis tool for Amazon Web Services configurations. It includes components for monitoring various AWS account components, developing, and executing actions based on policy rules, notifying users when audit rules are triggered and storing configuration histories for forensic and audit purposes.

(Image: Netflix)

Ericka Chickowski specializes in coverage of information technology and business innovation. She has focused on information security for the better part of a decade and regularly writes about the security industry as a contributor to Dark Reading. View Full Bio

1 of 10

Comment |

Email This |

Print |

RSS

More Insights

Webcasts

Cyber Attack Evasion Techniques

Zero-Trust In Practice

More Webcasts

White Papers

Let's Talk: Why Language Matters in Cybersecurity

6 Emerging Cyber Threats That Enterprises Face in 2020

More White Papers

Reports

eSentire Annual Threat Intelligence Report: 2019 Perspectives and 2020 Predictions

Assessing Cybersecurity Risk in Today's Enterprise

More Reports

Comments

Newest First | Oldest First | Threaded View

[close this box]

50%

Marilyn Cohodas,
User Rank: Strategist
11/4/2014 | 10:49:12 AM

Solid collection of open source tools> what's your favorite?

Great job, Ericka on putting this together. Wondering which ones Dark Reading commnunity members use and what are their favorites. Share your thoughts in the comments.

Reply | Post Message | Messages List | Start a Board

Hot Topics

Editors' Choice

44% of Security Threats Start in the Cloud

Kelly Sheridan, Staff Editor, Dark Reading, 2/19/2020

California Man Arrested for Politically Motivated DDoS

Dark Reading Staff 2/21/2020

Zero-Factor Authentication: Owning Our Data

Nick Selby, Chief Security Officer at Paxos Trust Company, 2/19/2020

Live Events

Webinars

March 16-19, 2020: Data Center World Registration is open! Join Us

Data Center World: The leading conference & expo for Data Center and IT Infrastructure Professionals. Register Today!

Get Insights: Cisco vs Microsoft & More at EC20 Orlando

More Informa Tech Live Events

White Papers

Let's Talk: Why Language Matters in Cybersecurity

6 Emerging Cyber Threats That Enterprises Face in 2020

Digital Transformation Built on the Cloud

The Forgotten Link Between Linux Threats & Cloud Security

High Performance Applications

More White Papers

Video

All Videos

Cartoon

Latest Comment: He said XP and 7 are both insecure? And Server 2003 and 2008 also? Can't have him saying those things! We don't have any ...

Cartoon Archive

Current Issue

6 Emerging Cyber Threats That Enterprises Face in 2020

This Tech Digest gives an in-depth look at six emerging cyber threats that enterprises could face in 2020. Download your copy today!

Download This Issue!

Back Issues | Must Reads

Flash Poll

All Polls

Reports

How Enterprises Are Developing Secure Applications

IT security and application development are disparate processes that are increasingly coming together. Here's a look at how that's happening.

Download Now!

How Enterprises Are Attacking the Cybersecurity Problem

0 comments

How Enterprises Are Using IT Threat Intelligence

0 comments

Online Malware and Threats: A Profile of Today's Security Posture

0 comments

More Reports

Twitter Feed

Tweets about "from:DarkReading OR @DarkReading"

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database

CVE-2020-9008
PUBLISHED: 2020-02-25

Stored Cross-site scripting (XSS) vulnerability in Blackboard Learn/PeopleTool v9.1 allows users to inject arbitrary web script via the Tile widget in the People Tool profile editor.

CVE-2020-9018
PUBLISHED: 2020-02-25

LiteCart through 2.2.1 allows admin/?app=users&doc=edit_user CSRF to add a user.

CVE-2020-9019
PUBLISHED: 2020-02-25

The WPJobBoard plugin 5.5.3 for WordPress allows Persistent XSS via the Add Job form, as demonstrated by title and Description.

CVE-2020-9391
PUBLISHED: 2020-02-25

An issue was discovered in the Linux kernel 5.4 and 5.5 through 5.5.6 on the AArch64 architecture. It ignores the top byte in the address passed to the brk system call, potentially moving the memory break downwards when the application expects it to move upwards, aka CID-dcde237319e6. This has been ...

CVE-2020-8793
PUBLISHED: 2020-02-25

OpenSMTPD before 6.6.4 allows local users to read arbitrary files (e.g., on some Linux distributions) because of a combination of an untrusted search path in makemap.c and race conditions in the offline functionality in smtpd.c.

To save this item to your list of favorite Dark Reading content so you can find it later in your Profile page, click the "Save It" button next to the item.

If you found this interesting or useful, please use the links to the services below to share it with other readers. You will need a free account with each service to share an item via that service.
Tweet This
[close this box]