AmneziaVPN is an open source VPN specifically designed for users in authoritarian countries with significant online censorship of content, services, and circumvention tools. The platform modifies standard VPN protocols to mask internet traffic, making it harder for sophisticated censors to detect and block. AmneziaVPN also allows users to set up and host their own VPN server. …
It’s back and bigger than ever!The Free Pentest Contest 2025 — giving organizations around the world the opportunity to receive a professional, full-scope penetration test completely free of charge. Our goal remains simple: to make world-class cybersecurity accessible to everyone. Whether you’re a growing startup, a large enterprise, or an independent developer, this contest is …
Compliance Done Right: 1 Pentest, 2 Certifications Let's talk about two big names in cybersecurity compliance: ISO 27001 and SOC 2 certification. They are respected standards in information security, but they often leave businesses with critical questions. Which one do I need? Wait, do I need both? And where do I even begin? Besides answering …
Supply Chain Vulnerabilities Start Outside Your Network Supply chain vulnerabilities aren't only missing patches or weak passwords inside your company. A lot of the time, the risk begins with someone else. It could be a vendor with poor password practices, an outdated integration you forgot about, or hardware with unpatched firmware. When these gaps exist …
About Círculo Círculo is a safety app built on the Matrix protocol that enables users in authoritarian contexts to create a small “trusted circle” of six people with whom they can share location, safety, and wellness updates, as well as other messages in a secure environment. Audit Description OTF’s Security Lab partner 7ASecurity conducted penetration testing and a “whitebox” audit (a form …
7ASecurity is proud to share the results of a recent security audit of Linkerd. Linkerd is an open source service mesh for Kubernetes which prioritizes reliability, security, and simplicity. Thanks to the help of the Open Source Technology Improvement Fund (OSTIF) and the Cloud Native Computing Foundation, this project can continue to provide a lightweight …
Our team of senior security experts recently completed another comprehensive security audit of AmneziaVPN. Over a 16-day period, we rigorously examined their Android, iOS, and Desktop clients, as well as their AmneziaWG and XRay services. Our goal was to identify any potential vulnerabilities and assess the overall security posture of their VPN solution. Key Findings: …
The biggest sale of the year is here! Take advantage of our 50% off BFCM cybersecurity courses this Black Friday, from November 21st to December 10th, you can take advantage of code BFCM50 to get 50% off on all 7ASecurity self-paced courses. Whether you're a seasoned penetration tester or just starting out, this is the …
Breaches that could have been prevented with pentesting. Achieving SOC 2 compliance is a big deal. It shows your clients that you take data security seriously. But getting certified is just the first step. Maintaining compliance and securing your systems requires ongoing effort, so SOC 2 pentesting is vital. Think of SOC 2 compliance as …
About SecureDrop SecureDrop is an open source whistleblower submission system that media organizations and NGOs can install to accept anonymous, secure documents from sources. It receives documents via the Tor network (a distributed network of relays that help protect users’ privacy), records only the date and time of the transfer, and enables recipients to view submissions in its …
