ImmuniWeb® Discovery reduces the complexity and costs of web security and compliance management with continuous asset discovery equipped with actionable risk scoring. Its seamless integration into DevSecOps, data leaks, and Dark Web monitoring enables proactive threat mitigation.
ImmuniWeb® Discovery simply requires your company name and main website URL to rapidly build a holistic inventory of your external digital assets. It quickly detects your:
The discovered assets are equipped with actionable security ratings of “hackability” (chance to be hacked) and “attractiveness” (of your assets for hackers) to prioritize and classify the findings in a risk-based manner. The assets are continuously monitored with a production-safe scanning for OWASP Top 10, PCI DSS and GDPR compliance.
ImmuniWeb Discovery likewise detects source code leaks in public code repositories, enabling you to track inattentive or careless developers. Importantly, you will get a piece of mind with their continuous monitoring of data leaks and Dark Web surveillance. All these breath-taking features are consolidated at a single, user-friendly dashboard.
Plans start with as low as $99 per month for all your security and compliance needs.
No features have been listed yet.
No ImmuniWeb Discovery videos yet. You could help us improve this page by suggesting one.
ImmuniWeb Discovery's answer:
Based on our record, Keycloak seems to be more popular. It has been mentiond 4 times since March 2021. We are tracking product recommendations and mentions on various public social media platforms and blogs. They can help you identify which product is more popular and what people think of it.
Most of the time nowadays, I prefer offloading this to an identity provider, using OpenID Connect or soon Federated Credential Management (FedCM), even if that means shipping an identity provider as part of the deliverables (I generally go with Keycloak, with keycloak-config-cli to provision its configuration). I'm obviously biased though as I work in IT services, developping software mainly for... - Source: dev.to / 7 months ago
Yet another breach of Okta... Why are companies not running something like keycloak [1] themselves? Are administrative/maintenance costs too high or is it plausible deniability? [1] https://keycloak.org. - Source: Hacker News / 7 months ago
I'd stick with a solution like https://keycloak.org in that instance. Source: over 1 year ago
A few more projects in this space: - Keycloak (you won't get fired for picking this)[0] - CloudFoundry's UAA[1] - Gluu [2] - Keratin [3] - OpenUnison [4] - Dex[5] - Netlify's GoTrue[6] All of these solutions are a bit different but here are some of the axes: - Whether or not they function as an OAuth provider - Whether they're centered around application-user-login (email + password) or application auth (OAuth) or... - Source: Hacker News / over 3 years ago
Auth0 - Auth0 is a program for people to get authentication and authorization services for their own business use.
Mozilla Observatory - The Mozilla Observatory is a project designed to help developers, system administrators, and security professionals configure their sites safely and securely.
Okta - Enterprise-grade identity management for all your apps, users & devices
BitSight - BitSight is transforming how companies manage information security risk with objective, verifiable and actionable Security Ratings.
OneLogin - On-demand SSO, directory integration, user provisioning and more
Hardenize - Hardenize provides a comprehensive and free assessment of web site network and security configuration.