Mitigating Supply Chain Attacks Through Fine-Grained Privilege Enforcement
This post introduces Lucien, a framework for fine-grained library-level privilege control in NodeJS applications. Lucien enables developers to restrict privileges on a per-library basis, reducing the impact of compromised libraries. We explain its unique features, including dynamic privilege tracking and enforcement, and how it can improve application security.
Aarno Labs at Black Hat 2024 – Showcasing the CodeHawk Binary Patcher
This August, Aarno Labs was privileged to present at Black Hat USA 2024 in Las Vegas. During the Arsenal session, our team showcased the CodeHawk Binary Patcher (CBP), an innovative platform designed to drastically reduce the cost and complexity of patching stripped binaries, while delivering unmatched assurance in the security and correctness of the patches. This post summarizes and provides a video of the presentation.