Articles


Mobile Applications
Build you CI/CD pipeline for Mobile Applications with Jenkins, Github Actions and Azure Devops
Thu 27 October 2022

This article will cover the main challenges when implementing a CI/CD pipeline for mobile applications. We will also provide examples of how you can implement a CI/CD pipeline for Android and iOS applications in the most used Mobile CI/CD tools.

Mobile Applications
Text4Shell (CVE-2022-42889) in Mobile Applications ... should I worry?
Mon 24 October 2022

CVE-2022-42889 is a vulnerability in the Apache Commons Text Library caused by string interpolation abusing powerful handlers and present in popular application like Amazon Shopping, Udemy and Grammarly. This article goes over the applicability and risk of this vulnerability for Mobile Applications.

Ostorlab
New Dashboard, Better Insights
Thu 20 October 2022

As a reflection of the many new capabilities and changes we have made, we have released a new dashboard providing better insights into an organization's security posture.

Ostorlab
OWASP Mobile Application Verification Standard Support
Tue 04 October 2022

The Mobile Application Security Verification Standard is an important step toward building secure Mobile Applications. Ostorlab now adds support for generating compliance report for L1, L2 and Resilience levels.

Open-source
Tips and tricks for developing & debugging Ostorlab Agents.
Thu 18 August 2022

Tips and tricks to make your life easier when developing & debugging Ostorlab Agents.

Ostorlab
Improved Attack Surface Discovery, Mobile and Web Security Scanning
Thu 18 August 2022

Largest release with improvements to Attack Surface, Open-Source, Mobile and Web scanning and much much more.

Open-source
Life of a Scan: how Ostorlab's open-source vulnerability scanner works
Tue 02 August 2022

This article talks about how Ostorlab works under the hood.

Attack Surface Management
Attack Surface Insights - part 2
Thu 16 June 2022

Attack Surface is not just about open ports and services; this article covers key insights beyond the standard technical ones.

Attack Surface Management
Mapping your Attack Surface - part 1
Tue 17 May 2022

Attack surface mapping has become the number one headache of CISO's of most large organization, this article goes over techniques and tools used by Ostorlab to enable powerful and accurate attack surface discovery and monitoring.

Hiring
What I've learned from my first job as a Software Engineer at Ostorlab
Tue 19 April 2022

This article talks about the experience of Rabson Phiri who works as a Software Engineer at Ostorlab.