Ostorlab Team
IAM, XSS and over 1000 new dynamic rules.
Recent updates have significantly enhanced dynamic analysis with new programming language support and vulnerable pattern detection, refined IAM management with new roles, improved granularity in attack surface access, advanced XSS detection, and vulnerable dependency identification, alongside crucial bug fixes across the system.
Mon 12 February 2024
Support for Basic Authentication, HTTP folders and other improvements
Ostorlab has added support for Basic Authentication, HTTP folders and various enhancements to the attack surface and stack traces sections.
Tue 16 January 2024
Introduction of a comprehensive audit logging system
Introducing a comprehensive audit logging system including user logins, data modifications, configuration changes, and more.
Mon 20 November 2023
Support for Bitbucket CI/CD integration, IDE Enhancements
Support for Bitbucket CI/CD integration, IDE Enhancements and more.
Tue 14 November 2023
Ostorlab's Victory at the Swiss Cyber defence Security Challenge 2023
Ostorlab clinches the top spot in the Swiss Cyber defense Security Challenge, showcasing their commitment to advancing application security automation.
Security Enhancements, Compliance Mapping, and User Experience Upgrades
New release brings advanced security measures, compliance mapping, and user experience enhancements, including URL injection and OAuth account takeover detection, PCI/GDPR compliance mapping, and a 10x speedup in secret detection. Enjoy improved PDF reports, a new ticket/remediation UI, and better search capabilities.
Latest posts
Support for SBOM scan in Circleci, AzureDevOps and GitHub pipelines & support for Multi-SBOM scanning
Support for multiple.
Tue 29 August 2023
PDF report items filtering by both risk rating and ticket status
Ostorlab has added support for filtering PDF report items by both risk rating and ticket status.
Wed 09 August 2023
August Fix-it!
During our recent Fix-It Week 🛠️😃, our dedicated team put in a tremendous effort to address and resolve over 107 issues affecting our systems.
Tue 08 August 2023
ZIP Exploitation: Critical Vulnerabilities Found in Popular Zip Libraries in Swift and Flutter
Recent in-depth investigations reveal serious vulnerabilities discovered in widely-used zip packages in Flutter and Swift, posing serious security risks for thousands of developers and applications. Our article delves into the technical aspects of these vulnerabilities, explaining their discovery, implications and mitigation strategies.
Fri 04 August 2023
Extended Dependency Detection
Ostorlab now supports uploading an SBOM or Lockfile for extended dependency detection.
Tue 18 July 2023
CircleCI and AppCenter CI/CD integrations
Addition of CircleCI and AppCenter CI/CD integrations.
Tue 11 July 2023
New Features & Fixes in July 2023
We're excited to bring you a host of enhancements and features: open-source Flutter vulnerability detection, extended social auth support for Google and Github, AI-enhanced summaries, a sleek notification UI, and advanced search filters. We've improved geofencing support for India and UK, added new Flutter-specific detection rules, and fixed bugs in various areas. With a freshly redesigned blog and smoother navigation testing for Webview on Android and iOS, we're making your experience even better.
Sat 01 July 2023
Flutter Reverse Engineering and Security Analysis
Article on Static and Dynamic analysis techniques for Reverse engineering Flutter Applications. The article goes over runtime patching, custom ABI interception and traffic interception.
Thu 15 June 2023