Detectify Reviews

Okta Reviews

Detectify mentions (4)

• What are the actual security implications of port forwarding?

  Detectify once made an offer of making free scans which I took them up on. There are plenty of free Content Security Policy (CSP) and other vulnerability checkers around such as Observatory or Pentest. Shields UP!! Will identify which ports you have open. Source: 8 months ago

• Ask HN: Who is hiring? (February 2022)

  Detectify | Community Manager, Crowdsource | REMOTE (Offices in Boston, US & Stockholm, Sweden. We help with relocation if wanted) https://detectify.com/ We are a cyber security company in the industry, and more specifically the EASM (External Attack Surface Monitoring) space by automating and scaling the knowledge of hundreds of ethical hackers through our SaaS platform. Currently through our unique to Detectify... - Source: Hacker News / over 2 years ago

• DAST in Gitlab

  A concept-level idea would be this: 1) For your staging/UAT environment pipeline stages, add a "DAST scan" step, eg. With Detectify (which also has an API accommodating this need) 2) I'd assume, independently from the DAST scan, you ran some tests on UAT. Allow the scan to complete during the time it takes to run your UAT tests. After that, you'll get a report (automated or not) from your scanner. 3) When... Source: about 3 years ago

• Subdomain Takeover: Ignore This Vulnerability at Your Peril

  Subdomain takeover was pioneered by ethical hacker Frans Rosén and popularized by Detectify in a seminal blogpost as early as 2014. However, it remains an underestimated (or outright overlooked) and widespread vulnerability. The rise of cloud solutions certainly hasn't helped curb the spread. - Source: dev.to / over 3 years ago

Okta mentions (6)

• How to use PassportJS for authentication in NodeJS

  The majority of the codebases I've worked on over the years have always favoured using JSON web-tokens (JWT) or Authentication-as-a-Service platforms (Auth0, Okta etc) for authentication logic. These are indeed excellent choices! however, on smaller projects I find these to always seem to be overkill. Recently I started working on a chrome extension that performs social sign-in using twitter OAuth API and... - Source: dev.to / over 1 year ago

• Millennials, what confuses you about Gen Z?

  This happened to me three days ago! A new employee had trouble logging into our intranet, which is at OurCompanyName.okta.com. He was going to okta.com. Source: over 1 year ago

• Access Control System (ACS) Architecture

  Maybe go to okta.com , they have some cool solutions, might give you some ideas. Source: over 2 years ago

• GameStop knows. DRS 💜

  Okta.com is being used by gamestop to power the login to the creator platform. their favicon is a dark blue circle. Source: over 2 years ago

• Login with email is now shown as an option?

  The email field is used for domains which have set up Okta, Onelogin, or other specialized identity providers. The login page has to redirect you not just to a single okta.com/onelogin.com/etc authenticator as it does with Google/Microsoft/GitHub, but to the specific OAuth endpoint set up for the specific domain. So it needs to know what domain you're trying to authenticate against so it can redirect you to the... Source: over 2 years ago