Dive into our latest release featuring the introduction of a Threat Center, enhanced account security, and new detection.

Security

Advanced Techniques for Bypassing 4xx Errors

Discover the comprehensive techniques that are commonly used to bypass 4xx errors. Learn about the various methods used, including HTTP method fuzzing, request header manipulation, parameter tampering, and more.

Mon 05 August 2024

Product

Advanced XSS Protection, CircleCI Enhancements, and UI Upgrades in Our Latest Release

Dive into our latest release featuring cutting-edge XSS detection, streamlined CircleCI workflows, sleek UI enhancements, and robust security integrations with Codecov and UV—designed to empower and secure your digital experience.

Wed 31 July 2024

Product

Revolutionizing Mobile Security Testing with Ostorlab's AI-Powered Monkey Tester

Introducing the AI-powered Monkey Tester in the Ostorlab mobile vulnerability scanner, significantly boosting test coverage and speed for a more comprehensive and efficient testing experience.

Tue 16 July 2024

CVE-2024-5315, an actively exploited Dolibarr SQL Injection with in incorrect patched-in version.

This update introduces new detection capabilities, new data & privacy controls, improved user experience across the platform, and bug fixes.

Latest posts

CocoaPods Supply Chain Fire: What Should You Know

E.V.A Information Security uncovered critical vulnerabilities in CocoaPods, leading to immediate patches, and developers must now remove unclaimed packages, verify dependencies, and scan their applications to ensure security.

Wed 03 July 2024

Bug Fixes, Detection, and Attack Surface Improvements

This update introduces bug fixes, detection improvements, and attack surface enhancements to provide a more seamless user experience.

Mon 01 July 2024

iOS TestFlight scan, Slack Integrations and other improvements

This update introduces support for scanning apps using iOS TestFlight, Slack Integrations, support for scanning web apps with an SBOM, and other improvements.

Mon 10 June 2024

Integrations, Dynamic analysis improvements, and a new standard support

This update introduces multiple new integrations with CI/CD pipelines, improvements to dynamic traces interception & analysis, support for the MASVS v2.0.0 standard, and many bug fixes.

Mon 27 May 2024

Discovery of hidden web paths, detection of libwebp vulnerability, and new CVE detections.

This update adds the discovery of hidden web paths, detection of libwebp vulnerability, and new CVE detections.

Mon 06 May 2024

🚀 OXO v1.0!

OXO version 1.0, is 10x times faster, supports ARM64 architectures, and is packed with improved capabilities like scanning multiple assets, simpler and powerful CLI.

Mon 29 April 2024

Better UI, more concise scan report, improved detection of insecure webview usage, and multiple bug fixes.

This update improves the user interface of the platform, adds new detection for Webview-related vulnerabilities, and ships multiple bug fixes.

Tue 23 April 2024

Apple Privacy: A Comprehensive Guide to Privacy Manifest Files

This article offers a guide to Privacy Manifest files in Apple's ecosystem, stressing their importance for transparency and compliance, especially with the upcoming 2024 mandate, outlining steps for implementation, and underscoring their role in promoting user trust and adherence to regulations.

Thu 18 April 2024