Penetration Testing Archives - 7ASecurity Blog

How Penetration Testing Spots Supply Chain Risks

Admin — Mon, 14 Apr 2025 06:17:38 +0000

Supply Chain Vulnerabilities Start Outside Your Network Supply chain vulnerabilities aren’t only missing patches or weak passwords inside your company. A lot of the time, the risk begins with someone else. It could be a vendor with poor password practices, an outdated integration you forgot about, or hardware with unpatched firmware. When these gaps exist …

The post How Penetration Testing Spots Supply Chain Risks appeared first on 7ASecurity Blog.

Círculo Security Audit by 7ASecurity

Admin — Tue, 18 Mar 2025 10:37:10 +0000

About Círculo Círculo is a safety app built on the Matrix protocol that enables users in authoritarian contexts to create a small “trusted circle” of six people with whom they can share location, safety, and wellness updates, as well as other messages in a secure environment. Audit Description OTF’s Security Lab partner 7ASecurity conducted penetration testing and a “whitebox” audit (a form …

The post Círculo Security Audit by 7ASecurity appeared first on 7ASecurity Blog.

LinkerD Security Audit by 7ASecurity

Admin — Wed, 19 Feb 2025 08:31:19 +0000

7ASecurity is proud to share the results of a recent security audit of Linkerd. Linkerd is an open source service mesh for Kubernetes which prioritizes reliability, security, and simplicity. Thanks to the help of the Open Source Technology Improvement Fund (OSTIF) and the Cloud Native Computing Foundation, this project can continue to provide a lightweight …

The post LinkerD Security Audit by 7ASecurity appeared first on 7ASecurity Blog.

AmneziaVPN Security Audit by 7ASecurity

Admin — Sat, 14 Dec 2024 14:40:48 +0000

Our team of senior security experts recently completed another comprehensive security audit of AmneziaVPN. Over a 16-day period, we rigorously examined their Android, iOS, and Desktop clients, as well as their AmneziaWG and XRay services. Our goal was to identify any potential vulnerabilities and assess the overall security posture of their VPN solution. Key Findings: …

The post AmneziaVPN Security Audit by 7ASecurity appeared first on 7ASecurity Blog.

50% Off Cybersecurity Courses This BFCM – Master Cybersecurity Now!

Admin — Tue, 19 Nov 2024 11:28:07 +0000

The biggest sale of the year is here! Take advantage of our 50% off BFCM cybersecurity courses this Black Friday, from November 21st to December 10th, you can take advantage of code BFCM50 to get 50% off on all 7ASecurity self-paced courses. Whether you’re a seasoned penetration tester or just starting out, this is the …

The post 50% Off Cybersecurity Courses This BFCM – Master Cybersecurity Now! appeared first on 7ASecurity Blog.

How Regular Pentesting Helps Maintain SOC 2 Compliance

Admin — Tue, 05 Nov 2024 09:45:55 +0000

Breaches that could have been prevented with pentesting. Achieving SOC 2 compliance is a big deal. It shows your clients that you take data security seriously. But getting certified is just the first step. Maintaining compliance and securing your systems requires ongoing effort, so SOC 2 pentesting is vital. Think of SOC 2 compliance as …

The post How Regular Pentesting Helps Maintain SOC 2 Compliance appeared first on 7ASecurity Blog.

SecureDrop Security Audit by 7ASecurity

Admin — Tue, 29 Oct 2024 08:29:07 +0000

About SecureDrop SecureDrop is an open source whistleblower submission system that media organizations and NGOs can install to accept anonymous, secure documents from sources. It receives documents via the Tor network (a distributed network of relays that help protect users’ privacy), records only the date and time of the transfer, and enables recipients to view submissions in its …

The post SecureDrop Security Audit by 7ASecurity appeared first on 7ASecurity Blog.

7ASecurity Completes LitmusChaos Audit

Admin — Mon, 26 Aug 2024 09:19:58 +0000

7ASecurity is proud to share the results of our security audit of LitmusChaos. LitmusChaos is an open source chaos engineering platform for a multitude of cloud platforms. With the help of the Open Source Technology Improvement Fund (OSTIF) and the Cloud Native Computing Foundation, this project can continue to provide secure chaos testing environments for …

The post 7ASecurity Completes LitmusChaos Audit appeared first on 7ASecurity Blog.

7ASecurity Completes V2Ray Security Audit

Admin — Mon, 29 Jul 2024 11:00:31 +0000

About V2Ray is a versatile network utility that provides a platform for building proxies to bypass network restrictions—enabling users to access the internet safely and privately in restricted contexts where surveillance and censorship are prevalent. In addition to being open source, V2Ray is designed with encryption and obfuscation functions that make it harder for surveillance forces …

The post 7ASecurity Completes V2Ray Security Audit appeared first on 7ASecurity Blog.

7asecurity Completes OpenTelemetry Audit

Admin — Sun, 21 Jul 2024 11:19:35 +0000

7ASecurity is proud to share the results of our security audit of OpenTelemetry. OpenTelemetry is an open source project for generating and collecting telemetry data for software analysis. With the help of the Open Source Technology Improvement Fund (OSTIF) and the Cloud Native Computing Foundation (CNCF), this project will experience strengthened security health as it moves to graduation status with the …

The post 7asecurity Completes OpenTelemetry Audit appeared first on 7ASecurity Blog.