Ostorlab Team
Bypassing Obfuscation in Android Apps: A Dual Approach with DalvikFLIRT and LLM-Powered Rewrites
This research introduces a pioneering dual approach that combines signature-based matching (DalvikFLIRT) with LLM-powered code transformation to bypass sophisticated Android app obfuscation, enabling automated security analysis of previously impenetrable code.
Wed 16 April 2025
CNIL Standard Integration, SARIF Support, Copilot Enhancements, and Smarter Vulnerability Analysis.
This release introduces CNIL standard support, SARIF export, and improved vulnerability insights with locations and advanced search. Copilot is more powerful, performance is faster, and asset and remediation workflows are smoother.
Mon 07 April 2025
Ostorlab's Security Scanner GitHub App,Ticket Aggregation V2, Copilot Launch, and Enhanced Security Features
February's update introduces Ticket Aggregation V2 and Ostorlab Copilot, alongside improvements to reporting capabilities and detection mechanisms. These updates enhance vulnerability management, user experience, and security analysis across the platform.
Thu 20 February 2025
Effective Vulnerability Ticketing System with Ostorlab
This article announces Ostorlab's vulnerability ticketing system V2 and how it automates and streamlines the entire process of managing, and remediating security vulnerabilities through features like automated ticket creation, lifecycle management, policy enforcement, and integration with existing tools.
Tue 18 February 2025
AI-Automated Attack Surface Management: The Future of Cybersecurity Discovery
This article explores AI-automated attack surface management, its impact on cybersecurity, and how it automates asset discovery and vulnerability detection.
AI-automated Attack surface, Privacy Analysis, Wordpress agent, and more.
Ostorlab's January 2025 update introduces AI-powered attack surface discovery and improves IDE performance. The release expands detection capabilities with new secret and privacy checks, adds a WordPress security agent, and implements additional threat fingerprints and CVE support. A new Privacy profile for compliance analysis is launched, along with enhancements to scan options and vulnerability reporting. These updates aim to improve asset analysis, security assessments, and risk mitigation across various digital environments.
Latest posts
Advanced Search Query, API Endpoints, Tons of new detections, and more.
The December release introduces advanced inventory search with Python-like syntax, enhanced asset status filtering, API endpoint autodiscovery, and comprehensive scan summaries. Additionally, it adds GraphQL vulnerability detection, domain takeover prevention, new CVE detections, privacy compliance checks, and Jira integration improvements for streamlined issue management.
Mon 02 December 2024
Revamped Search, new detection capabilities, actively exploited CVEs and much more.
The latest releases introduces a revamped search UI, new detection capabilities, attack surface & inventory performance improvements, plus much more.
Tue 22 October 2024
HTTP2, Private Custom Checks, actively exploited CVE and much more.
The latest releases introduce HTTP/2 support, improve UI and detection, enhance privacy and security measures, and update custom checks and analysis environments for better performance.
Mon 07 October 2024
Enhanced Vulnerability Detection, Expanded Features, and Critical Fixes
This update introduces enhanced vulnerability detection with AI improvements, new UI features, expanded support for asset types, upgraded network interception, and broader CVE coverage, alongside several bug fixes and optimizations across scanning, fingerprinting, and GitHub Actions.
Mon 09 September 2024
OXO Titan, Support for CVSS4, and Attack Surface search with certificates
Our latest release features a new OnPrem UI, better PDF Reports with insightful graphs, support for CVSS4, plus much more.
Wed 28 August 2024
Privacy Compliance Testing, Fingerprint detection, and User Experience Enhancements
Dive into our latest release featuring the introduction of Privacy Compliance Testing, new detection of several fingerprints, and User Experience Enhancements.
Mon 12 August 2024
Threat Center, Account Security Enhancements, and added detection
Dive into our latest release featuring the introduction of a Threat Center, enhanced account security, and new detection.
Mon 05 August 2024
Advanced XSS Protection, CircleCI Enhancements, and UI Upgrades in Our Latest Release
Dive into our latest release featuring cutting-edge XSS detection, streamlined CircleCI workflows, sleek UI enhancements, and robust security integrations with Codecov and UV—designed to empower and secure your digital experience.
Wed 31 July 2024
Changelog
View all changesAI-automated Attack surface, Privacy Analysis, Wordpress agent, and more.
Mon 20 January 2025
Advanced Search Query, API Endpoints, Tons of new detections, and more.
Mon 02 December 2024