Red Team & Offensive Security

Penetration testing frameworks, exploit tools, and offensive security tooling.

All Breaking Security Features

Important Recent

← Releases

Review required

Prowler 5.29.2 Security relevant 12h

Dependencies

Vitest upgrade + UI fixes

Open

Review required

caddy v2.11.4 Security relevant 21h

Auth RBAC

Security patches + deps upgrade

Open

Upgrade now

UPinar/contrastapi v1.33.21 Security relevant 4d

Dependencies

CVE patches

Open

Upgrade now

flytohub/flyto-core v2.26.3 Security relevant 4d

RCE / SSRF

SSRF guard fix

Open

Upgrade now

authentik version/2026.5.2 Security relevant 6d

Auth Breaking upgrade

Security patches + bugfixes

Open

version/2026.2.4 (6d) Security fixes + core updates

Upgrade now

UUSEC WAF v7.2.2 Security relevant 8d

Dependencies

CVE-2026-9256 fix

Open

Upgrade now

authelia v4.39.20 Security relevant 8d

Auth RBAC

Security fixes + contributors + Docker update

Open

Upgrade now

bunkerweb v1.6.11 Security relevant 9d

RCE / SSRF Breaking upgrade

nginx security fix

Open

Upgrade now

NGINX release-1.30.2 Security relevant 12d

RCE / SSRF

Buffer overflow fix

Open

vrelease-1.31.1 (12d) CVE‑2026‑9256 buffer overflow fix

Upgrade now

kanidm v1.10.3 Security relevant 13d

Auth RBAC

Privilege escalation fix

Open

No immediate action

Tanstack Compromise Checker v1.2.0 Security relevant 16d

Security fix GHSA-g7cv-rxg3-hmpx

Open

v1.1.2 (16d) GHSA‑g7cv‑rxv3‑hmpx fix

v1 (18d) GHSA‑g7cv‑rxg3‑hmpx

v1.1.1 (18d) Security fix GHSA-g7cv-rxg3-hmpx

v1.1.0 (18d) GHSA‑g7cv‑rxg3‑hmpx fix

Review required

goklab/guardvibe v3.1.25 Security relevant 18d

Dependencies Breaking upgrade

Malicious node-ipc detection + CI npm hardening

Open

Upgrade now

UUSEC WAF v7.2.1 Security relevant 18d

Dependencies

nginx vulnerability fixes

Open

Review required

GlobaLeaks v5.0.93 Security relevant 20d

Auth RBAC

Cross‑tenant security hardening

Open

Upgrade now

kanidm v1.10.2 Security relevant 20d

Auth RBAC

Privilege escalation

Open

v1.9.4 (20d) Privilege escalation

Upgrade now

NGINX release-1.30.1 Security relevant 21d

RCE / SSRF Breaking upgrade

HTTP/2 request injection fix

Open

vrelease-1.31.0 (21d) CVE fixes + forward proxy

Upgrade now

authentik version/2025.12.5 Security relevant 22d

Auth Breaking upgrade

Security patches

Open

Upgrade now

Zeek v8.0.8 Security relevant 22d

MIME header DoS fix

Open

Upgrade now

caddy v2.11.3 Security relevant 22d

Auth RCE / SSRF

Security patches

Open

Upgrade now

qwexvf/aegis-cli v0.17.1 Security relevant 22d

Dependencies

Go 1.26.3 upgrade + retract detection

Open

Prowler 5.26.0 Security relevant 23d

Security fixes

CVE-2026-39892 — parser‑mismatch SSRF in image provider registry auth fixed (PR #10945)
dep: CVE-2026-33186 — cryptography upgraded from 46.0.6 to 46.0.7
dep: CVE-2026-39892 — trivy upgraded from 0.69.2 to 0.70.0

Notable features

ASD Essential Eight Maturity Model compliance framework for AWS
Eight new Gmail attachment safety and spoofing protection checks for Google Workspace

Splunk Security Content v5.27.0 Security relevant 28d

⚠ Upgrade required

Final release for ESCU v5.x; starting with ESCU v6.0, content will be validated, packaged, and published using new internal tooling instead of contentctl.

Security fixes

CVE-2026-31431 – Linux Auditd Copy Fail Privilege Escalation detection added to identify unprivileged users writing controlled data to page cache and escalating to root.

Notable features

Cisco Secure Access Analytics analytic story using firewall telemetry
Expanded Windows threat detection analytics covering PowerShell abuse, process injection, privilege escalation, cloud/Azure activity, RMM tools, and C2 frameworks