Category

Product

This update introduces fixes for the Attack Surface, detection for the liblzma backdoor, and a public store for agents.

Product

Discovering & Monitoring Mobile Applications Attack Surface with Ostorlab

The article introduces Ostorlab Attack Surface Discovery as a solution for discovering and contin...

Tue 26 March 2024

Product

Addition of CSS Injection Detection, ARM64 support, and migration of Agent's Docker Images.

This update introduces fixes for the Attack Surface, migration of Agent's Docker Images to Docker...

Mon 25 March 2024

Product

Exposed Scan PCAP and JIRA custom Mapping

This update introduces a series of new features related to the IDE, Jira integration, OXO, and ma...

Mon 18 March 2024

This update introduces various improvements to the XSS scanner, the functionality of the open-source CLI, and monitoring rule creation.

This update introduce a series of updates aimed at enhancing user experience, platform improvements, and bug fixes across various features.

Latest posts

OXO Open-Source Improving

The latest update of OXO open-source introduces substantial improvements, providing users with faster startup and execution times. Additionally, this update enhances search capabilities in the CLI for more effective querying. Users now also benefit from increased customization options, including the ability to define accepted agents and specify in_selector in the agent group definition.

Mon 26 February 2024

Test Credential Name

The latest update introduces the addition of a "test credential name" feature, allowing users to label test credentials for easier identification and management.

Mon 19 February 2024

Attack Surface Discovery paths

The latest update incorporates attack surface discovery paths, offering detailed insights into how assets were discovered. This addition helps understand from which asset(s) a particular asset came from.

Fri 16 February 2024

IAM, XSS and over 1000 new dynamic rules.

Recent updates have significantly enhanced dynamic analysis with new programming language support and vulnerable pattern detection, refined IAM management with new roles, improved granularity in attack surface access, advanced XSS detection, and vulnerable dependency identification, alongside crucial bug fixes across the system.

Mon 12 February 2024

Support for Basic Authentication, HTTP folders and other improvements

Ostorlab has added support for Basic Authentication, HTTP folders and various enhancements to the attack surface and stack traces sections.

Tue 16 January 2024

2023 in review

As 2023 has concluded, it's time to reflect and prepare for an optimistic 2024.

Wed 10 January 2024

Introduction of a comprehensive audit logging system

Introducing a comprehensive audit logging system including user logins, data modifications, configuration changes, and more.

Mon 20 November 2023

Support for Bitbucket CI/CD integration, IDE Enhancements

Support for Bitbucket CI/CD integration, IDE Enhancements and more.

Tue 14 November 2023