| GitHub | https://github.com/qjerome |
Rust 1.94.0 has been released! š š¦ āØ
A few highlights are array_windows() and element_offset() on slices, Peekable::next_if_map(), LazyCell::get and friends, and the new `include` key in config.toml to include other toml files!
Check out the blog post for details: https://blog.rust-lang.org/2026/03/05/Rust-1.94.0/
Call for papers is now open for hack.lu 2026 (the 20th edition!)
The purpose of the hack.lu convention is to provide an open and free playground where people can discuss the implications of new technologies in society. hack.lu is a balanced mix convention where technical and non-technical people can meet and share all kinds of information freely. The convention will be held in the Grand-Duchy of Luxembourg in October (20-23.10.2026). The most significant new discoveries about computer network attacks and defenses, open-source security solutions, and pragmatic real-world security experiences will be presented in a four-day series of informative tutorials.
We are waiting for your great proposals!
https://2026.hack.lu/blog/hack.lu-2026-call-for-papers/
#cfp #luxembourg #conference #cybersecurity #callforpapers #hacklu
After months of quiet, Kunai is back with an update in the works!
Hereās whatās new:
- Sharper DNS traffic analysis for better threat detection
- File identification powered by magic-rs to unlock deeper detection scenarios
- Smarter event filtering and exclusion rules to cut false positives and boost performance
This release will be about making Kunai more precise, faster, and easier to useāwhether youāre monitoring workstations, servers, or IoT devices.
If you have specific a request, this is the perfect time to open an issue and get a chance to see it land in the next release š
Curious? Follow the progress here: https://github.com/kunai-project
For a quick test of #dioxus I implemented a web interface for #faup-rs, you can see the demo website (all running locally in webasm) https://faup.claudex.be/
cc @qjerome
Iāll be at @fosdem next Saturday and Sunday. If youād like to chat, feel free to find me to talk about:
#fosdem #infosec #cybersecurity #opensource #gvip
Iāll also be in Brussels on Wednesday for the GVIP Summit 01 too.
The last 5 days have been a bit wild for the GCVE.eu initiative.
What started as steady work suddenly picked up real momentum:
The public GCVE.eu database instance - https://db.gcve.eu/ - caught the attention of the media, sparking discussions well beyond our usual circles
We published updates to the GCVE KEV Assertion Standard Format (BCP-07), refining how known-exploited information can be asserted and shared
Vulnerability-Lookup 2.21.0 was released, bringing improvements aligned with the GCVE ecosystem
We received a lot of valuable feedback especially on the specs, the tooling, and the overall direction
New GNAs joined the GCVE directory, and new contributors stepped in to help shape both the specifications and the software
Seeing this level of engagement, critique, and contribution in such a short time is incredibly motivating. It reinforces why an open, decentralized, and collaborative approach to vulnerability identification and sharing matters.
Huge thanks to everyone who tested, commented, challenged assumptions, wrote code, improved text, or simply helped spread the word. This is very much a community effort and itās only getting started. š
#GCVE #OpenSource #VulnerabilityManagement #CyberSecurity #Standards #Community
Don't hesitate to follow us at GCVE-EU - @gcve
GCVE BCP - https://gcve.eu/bcp/
GCVE DB - https://db.gcve.eu/recent
Vulnerability-Lookup - https://github.com/vulnerability-lookup/vulnerability-lookup
New Security Vulnerability Database Launches In The EU
Just before the holidays, I ran a recorded Rust training at Luxembourg House of Cybersecurity ā designed to help developers with experience in other languages get up to speed faster.
š Watch the full session (broken English included!):
https://youtube.com/playlist?list=PLhSWiKucshm5vWvFCqtJePVVYgIXH6_6y&si=ffdPXpY52GPnd8DW
All training materials are open-source and available here: https://github.com/ngsoti/rust-training
Not about mastery, but about cutting through the noise and getting hands-on faster. Feedback welcomeāwhat worked (or didnāt) for you?
Interested in an internal training? You can get in touchāthis can be delivered in French or English.
A new patched release is out for both the Rust crate and Python package of magic-rsāthe memory-safe implementation of libmagic!
This fixes incorrect file identification (e.g., MS Office docs). If you use magic-rs, update now to avoid false positives:
š Rust: https://crates.io/crates/pure-magic
š Python: https://pypi.org/project/pure-magic-rs/
ā ļø Also, don't forget to update your command line file detection companion wiza (What is Zat?): https://crates.io/crates/wiza
Thanks to the @Rafiot for reporting this!
Why it matters to create and maintain open-source infrastructure for security monitoring including collection of forums and malicious communication channels.
This is a strong example (Google dark web report is discontinued) of the risks of relying solely on commercial vendors. If a capability does not align with their business interests or generate sufficient revenue, it can be discontinued at any time. Open-source infrastructure helps ensure continuity, transparency, and long-term access to critical monitoring capabilities that are essential for the security community.
If you want to run your own "darkweb" monitoring, we develop open source tooling supporting such monitoring
#darkweb #opensource #osint #cybersecurity
š https://support.google.com/websearch/answer/16767242?hl=en&ref_topic=7028834&co=GENIE.Platform%3DiOS
Rust Language
hack_lu
Kunai Project
claudex
Alexandre Dulaunoy
Cedric
