Security News
NVD Quietly Sweeps 100K+ CVEs Into a “Deferred” Black Hole
NVD now marks all pre-2018 CVEs as "Deferred," signaling it will no longer enrich older vulnerabilities, further eroding trust in its data.
By Sarah Gooding - Apr 04, 2025
New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More →
- Maintainers
- 2
New Features Coming Soon to Quark Agent
We are currently focused on:
- The next step of the detection process for auto-suggestion.
- Effortlessly create detection workflows with natural language—no coding required.
- Easily adjust and refine workflows through an intuitive drag-and-drop interface.
- Instantly update and integrate changes as Quark Agent understands and adapts to workflow modifications.
We are committed to providing an intuitive and user-friendly experience, enabling users to design detection workflows seamlessly through both textual and visual methods.
Many features are still under development and fine-tuning, and we will roll them out step by step as they become ready.
If you have any suggestions, please don’t hesitate to share them with us!
To stay updated with the latest news, make sure to watch our GitHub repository and follow us on X (Twitter).
Quark Agent - Your AI-powered Android APK Analyst
With Quark Agent, you can perform analyses using only natural language. It creates Quark Script code following your ideas and adjusts the code promptly as you provide feedback.
Showcase:
Here’s a demonstration of using Quark Agent to detect the CWE-798 vulnerability in the ovaa.apk file.
Step 1: Environments Requirements
- Make sure your Python version is 3.10 or above.
Step 2: Install Quark Agent
- Install Quark Agent by running:
git clone https://github.com/quark-engine/quark-engine.git && cd quark-engine
pip install .[QuarkAgent]
Step 3: Prepare the Detection Rule and the Sample File
.
├── ...
├── quark
├── ...
├── agent # Put rule file and sample file here
├── ...
You can download the rule file here and the sample file here.
Step 4: Add your OpenAI API key
Add your OpenAI API key in quarkAgentWeb.py
os.environ["OPENAI_API_KEY"] = 'your-api-key-here'
Step 5: Run Quark Agent
$ cd quark/agent
$ python3 quarkAgentWeb.py
# You can now chat with Quark Agent in your browser.
# The default URL is http://127.0.0.1:5000
Open a browser and navigate to 127.0.0.1:5000 to start using Quark Agent
See more CWE detections using quark scripts and play them with Quark Agent !
Acknowledgments
The Honeynet Project
Google Summer Of Code
Quark-Engine has been participating in the GSoC under the Honeynet Project!
- 2021:
Stay tuned for the upcoming GSoC! Join the Honeynet Slack chat for more info.
Core Values of Quark Engine Team
- We love battle fields. We embrace uncertainties. We challenge impossibles. We rethink everything. We change the way people think. And the most important of all, we benefit ourselves by benefit others first.
FAQs
An Obfuscation-Neglect Android Malware Scoring System
We found that quark-engine demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
Security News
Lazarus Expands Malicious npm Campaign: 11 New Packages Add Malware Loaders and Bitbucket Payloads
Lazarus-linked threat actors expand their npm malware campaign with new RAT loaders, hex obfuscation, and over 5,600 downloads across 11 packages.
By Kirill Boychenko - Apr 04, 2025
Security News
Safari 18.4 Ships 3 New JavaScript Features from the TC39 Pipeline
Safari 18.4 adds support for Iterator Helpers and two other TC39 JavaScript features, bringing full cross-browser coverage to key parts of the ECMAScript spec.
By Sarah Gooding - Apr 03, 2025