The Cloud Native Computing Foundation® (CNCF®), which builds sustainable ecosystems for cloud native software, is making significant updates to its certification offerings.
WhiteRabbitNeo Releases New Version
October 23, 2024
WhiteRabbitNeo released a major new version trained on new cybersecurity and threat intelligence data on the Qwen 2.5 family of models, a top performing software engineering model on HumEval.
The new release integrates critical real-world data sources for cybersecurity and infrastructure. These new sources, when deployed on Qwen, make WhiteRabbitNeo even more accurate when resolving prompts related to offensive cybersecurity, creating remediations for potential threats and integrating future threat intelligence and vulnerability data via techniques such as RAG.
“This new V2.5 series of WhiteRabbitNeo AI models represents a significant improvement over previous ones. The early models were fine-tuned using 100,000 samples of offensive and defensive cybersecurity data. The new models used an expanded dataset of 1.7 million samples. This improved WhiteRabbitNeo’s HumanEval score to 85.36, from 75 in our previous generation. And of course, they are still uncensored, so it’s a perfect fit for all cybersecurity use cases,” said Migel Tissera, creator of WhiteRabbitNeo.
“The new release of WhiteRabbitNeo is trained to act like the experienced, professional adversaries modern enterprise security teams face every day. By utilizing Qwen and training on new cybersecurity and DevOps infrastructure as code data sources, WhiteRabbitNeo helps DevSecOps teams expand their capability to combat modern threats by discovering, exploiting and remediating vulnerabilities and security issues in their infrastructure before their adversaries do,” said Andy Manoske, VP of Product at Kindo, the primary sponsor of open source project, WhiteRabbitNeo.
WhiteRabbitNeo is an open source GenAI model for offensive and defensive cybersecurity. While popular foundation models censor many security use cases, WhiteRabbitNeo is uncensored and trained to act like a modern adversary. It knows threat intelligence, understands software engineering and infrastructure as code, and can utilize its deep corpus of knowledge to craft novel attacks in more than 180 programming and scripting languages and provide immediate remediation for the threats it detects and compromises.
Popular use cases include:
- DevOps professionals are able to write and instrument secure and reliable infrastructure as code.
- Security red teams, known as offensive teams, are able to rapidly improve their efficiency in how they construct code proofs of concept, create sample attacks, remediate vulnerabilities and more
- Security blue teams, known as defensive teams, are able to automate previously manual aspects of runbooks for intrusion detection and response, remediate security events and more
WhiteRabbitNeo’s new release integrates critical real-world data sources from Indicator of Compromise (IoC) and threat actor data from open source threat intelligence networks, CVEs and technical vulnerability data from NVD and common enterprise infrastructure and security tool suite documentation.
Industry News
April 01, 2025
The Cloud Native Computing Foundation® (CNCF®), which builds sustainable ecosystems for cloud native software, announced the Golden Kubestronaut program, a distinguished recognition for professionals who have demonstrated the highest level of expertise in Kubernetes, cloud native technologies, and Linux administration.
April 01, 2025
Red Hat announced new capabilities and enhancements for Red Hat Developer Hub, Red Hat’s enterprise-grade internal developer portal based on the Backstage project.
April 01, 2025
Platform9 announced that Private Cloud Director Community Edition is generally available.
March 31, 2025
Sonatype expanded support for software development in Rust via the Cargo registry to the entire Sonatype product suite.
March 31, 2025
CloudBolt Software announced its acquisition of StormForge, a provider of machine learning-powered Kubernetes resource optimization.
March 31, 2025
Mirantis announced the k0rdent Application Catalog – with 19 validated infrastructure and software integrations that empower platform engineers to accelerate the delivery of cloud-native and AI workloads wherever the\y need to be deployed.
March 31, 2025
Traefik Labs announced its Kubernetes-native API Management product suite is now available on the Oracle Cloud Marketplace.
March 27, 2025
webAI and MacStadium(link is external) announced a strategic partnership that will revolutionize the deployment of large-scale artificial intelligence models using Apple's cutting-edge silicon technology.
March 27, 2025
Development work on the Linux kernel — the core software that underpins the open source Linux operating system — has a new infrastructure partner in Akamai. The company's cloud computing service and content delivery network (CDN) will support kernel.org, the main distribution system for Linux kernel source code and the primary coordination vehicle for its global developer network.
March 27, 2025
Komodor announced a new approach to full-cycle drift management for Kubernetes, with new capabilities to automate the detection, investigation, and remediation of configuration drift—the gradual divergence of Kubernetes clusters from their intended state—helping organizations enforce consistency across large-scale, multi-cluster environments.
March 26, 2025
Red Hat announced the latest updates to Red Hat AI, its portfolio of products and services designed to help accelerate the development and deployment of AI solutions across the hybrid cloud.
March 26, 2025
CloudCasa by Catalogic announced the availability of the latest version of its CloudCasa software.
March 26, 2025
BrowserStack announced the launch of Private Devices, expanding its enterprise portfolio to address the specialized testing needs of organizations with stringent security requirements.
March 25, 2025
Chainguard announced Chainguard Libraries, a catalog of guarded language libraries for Java built securely from source on SLSA L2 infrastructure.
