Ostorlab Team
Defending Against GraphQL Attacks: A Deep Dive into Common Vulnerabilities
This article is an in-depth look at the most common GraphQL vulnerabilities, why they occur, and how they can be mitigated.
Mon 21 October 2024
HTTP2, Private Custom Checks, actively exploited CVE and much more.
The latest releases introduce HTTP/2 support, improve UI and detection, enhance privacy and security measures, and update custom checks and analysis environments for better performance.
Mon 07 October 2024
Enhanced Vulnerability Detection, Expanded Features, and Critical Fixes
This update introduces enhanced vulnerability detection with AI improvements, new UI features, expanded support for asset types, upgraded network interception, and broader CVE coverage, alongside several bug fixes and optimizations across scanning, fingerprinting, and GitHub Actions.
Mon 09 September 2024
OXO Titan, Support for CVSS4, and Attack Surface search with certificates
Our latest release features a new OnPrem UI, better PDF Reports with insightful graphs, support for CVSS4, plus much more.
Wed 28 August 2024
Privacy Compliance Testing, Fingerprint detection, and User Experience Enhancements
Dive into our latest release featuring the introduction of Privacy Compliance Testing, new detection of several fingerprints, and User Experience Enhancements.
Threat Center, Account Security Enhancements, and added detection
Dive into our latest release featuring the introduction of a Threat Center, enhanced account security, and new detection.
Latest posts
Advanced XSS Protection, CircleCI Enhancements, and UI Upgrades in Our Latest Release
Dive into our latest release featuring cutting-edge XSS detection, streamlined CircleCI workflows, sleek UI enhancements, and robust security integrations with Codecov and UV—designed to empower and secure your digital experience.
Wed 31 July 2024
Revolutionizing Mobile Security Testing with Ostorlab's AI-Powered Monkey Tester
Introducing the AI-powered Monkey Tester in the Ostorlab mobile vulnerability scanner, significantly boosting test coverage and speed for a more comprehensive and efficient testing experience.
Tue 16 July 2024
Detection of CocoaPods Supply Chain Vulnerability, CCPA, SOC2 and more
This update introduces new detection capabilities, new data & privacy controls, improved user experience across the platform, and bug fixes.
Mon 08 July 2024
CocoaPods Supply Chain Fire: What Should You Know
E.V.A Information Security uncovered critical vulnerabilities in CocoaPods, leading to immediate patches, and developers must now remove unclaimed packages, verify dependencies, and scan their applications to ensure security.
Wed 03 July 2024
Bug Fixes, Detection, and Attack Surface Improvements
This update introduces bug fixes, detection improvements, and attack surface enhancements to provide a more seamless user experience.
Mon 01 July 2024
iOS TestFlight scan, Slack Integrations and other improvements
This update introduces support for scanning apps using iOS TestFlight, Slack Integrations, support for scanning web apps with an SBOM, and other improvements.
Mon 10 June 2024
Integrations, Dynamic analysis improvements, and a new standard support
This update introduces multiple new integrations with CI/CD pipelines, improvements to dynamic traces interception & analysis, support for the MASVS v2.0.0 standard, and many bug fixes.
Mon 27 May 2024
Discovery of hidden web paths, detection of libwebp vulnerability, and new CVE detections.
This update adds the discovery of hidden web paths, detection of libwebp vulnerability, and new CVE detections.
Mon 06 May 2024
Changelog
View all changesHTTP2, Private Custom Checks, actively exploited CVE and much more.
Mon 07 October 2024
Enhanced Vulnerability Detection, Expanded Features, and Critical Fixes
Mon 09 September 2024
OXO Titan, Support for CVSS4, and Attack Surface search with certificates
Wed 28 August 2024