The Linux Basis has launched the Pink Crew Venture, which incubates open supply cybersecurity instruments to assist cyber vary automation, containerized pentesting utilities, binary danger quantification, and requirements validation and development.
The Pink Crew Venture’s predominant objective is to make open supply software program safer to make use of. They use the identical instruments, strategies, and procedures utilized by malicious actors, however in a constructive means to supply suggestions and assist make open supply initiatives safer.
We talked with Jason Callaway, Buyer Engineer at Google, to study extra in regards to the Pink Crew mission.
Linux Basis: Are you able to briefly describe the Pink Crew mission and its historical past with the Fedora Pink Crew SIG?
Jason Callaway: I based the Fedora Pink Crew SIG with some fellow Pink Hatters at Def Con 25. We had some exploit mapping instruments that we needed to construct, and I used to be impressed by Mudge and Sarah Zatko’s Cyber-ITL mission; I needed to make an open supply implementation of their methodologies. The Fedora Venture graciously hosted us and have been great advocates. Now that I’m at Google, I’m lucky to get to work on the Pink Crew as my 20% Venture, the place I hope to broaden its influence and construct a extra vendor impartial neighborhood. Fedora is collaborating with LF, helps our forking the initiatives, and could have a consultant on our technical steering committee.
LF: What are a few of the short- and long-term targets of the mission?
Jason: Our most rapid objective is to get again up and operating. Which means migrating GitHub repos, organising our net and social media presence, and most significantly, getting again to coding. We’re forming a technical steering committee that I feel might be an actual pressure multiplier in serving to us to remain targeted and impactful. We’re additionally beginning a meetup in Washington DC that may alternate between featured audio system and hands-on exploit curation hackathons on a two-week cadence.
LF: Why is open supply essential to the mission?
Jason: Open supply is essential to us in some ways, however primarily as a result of it’s the suitable factor to do. Cybersecurity is a worldwide drawback that impacts people, companies, governments, all people. So now we have to make open supply software program safer.
There are many of us engaged on that, and in traditional open supply trend, we’re standing on the shoulders of giants. However the Pink Crew Venture hopes to supply some distinctly offensive worth to open supply software program safety.
LF: How can the neighborhood study extra and become involved?
Jason: I used to have a supervisor who favored to say, “80% of the job is simply displaying up.” It was tongue-in-cheek for positive, nevertheless it undoubtedly applies to open supply initiatives. To study extra, you may attend our meetups both in individual or through Google Hangout, subscribe to our mailing checklist, and try our initiatives on GitHub or our web site.
This text initially appeared at The Linux Basis