ostorlab v0.16 releases: security scanning platform
Ostorlab
Ostorlab is a security scanning platform that enables running complex security scanning tasks involving multiple tools in an easy, scalable, and distributed way.
Ostorlab provides:
- CLI to run scans locally and on Ostorlab’s Cloud and access the results.
- SDK to build scanner components called Agents.
- Store to publish Agents and share them with the community.
- Automated Agent builder that takes care of automatically building and releasing Agents directly from the source code repo.
Ostorlab supports scanning everything, from mobile applications, web applications, IP addresses to containers, and with that targeting the detection of almost everything, from finding simple configuration issues, crawling for secrets to running a full-blown dynamic analysis environment.
Ostorlab covers both Android and iOS platforms and can identify over 250 classes of vulnerabilities and over 100.000 outdated vulnerable dependencies.
Ostorlab is built from the start to target Mobile Applications and uses powerful static analysis coupled with dynamic and behavioral analysis to ensure high coverage of the application’s attack surface, and validate findings to enable false-positive free results.
Changelog v0.16
- Optional asset in vulnerability location and add
LOG
type to asset location metadata. by @mohsinenar in #503