For a change, this time it's not news from Malizen but rather something new in the field of cybersecurity.
The ANSSI has developed a security messaging application containing encryption vulnerabilities for learning purposes, because in cybersecurity you have to practise again and again to be effective. The vulnerabilities in the CRY.ME application have been deliberately created so that they can be exploited by analysts for training in vulnerability identification and exploitation. This application therefore provides a practical and effective security challenge under real conditions for professionals, a novelty in the field of cybersecurity.
This application is available as open source on Github and under the Apache 2.0 licence, so that it can be used by a large number of IT security professionals. The application has been developed using source code from several projects: Android Element, Matrix SDK and Android YubiKit, each of which has a specific interest in how the application works (secure messaging, software development kit and security key integration).
This application is a great innovation in the field of cybersecurity, as training is a very important aspect of the IT security profession. Professionals will be able to train as they wish with an application that has been made available and designed specifically for this purpose.
Our technical team will be out testing it soon, so if you're interested, you can have a go too!
Commenti