detectify

↗ HN profile [ 689 ms ] full profile
Karma
1,581
Created
May 1, 2012 (14y ago)
Submissions
0
Detectify is a SaaS based website security scanner that will help you stay safe. We audit your site's security so you can focus on web development.
  1. LastPass autofill exploit (labs.detectify.com)
  2. tl;dr: How we got $10.000. We were able to upload an XML file to Google. The XML parser was vulnerable to XXE. We got full read access to their production servers, including the /etc/passwd.

  3. XSS where you least expect it (blog.detectify.com)
  4. Today there is a lot of excitement at the office as we just launched early access at the Slush conference. We have been in private beta for about 4 months and this is one of the bigger releases so far during product…

  5. When vulnerability disclosure fails (jannefi.wordpress.com)
  6. Universal XSS (UXSS) in Opera (blog.detectify.com)
  7. Reflected XSS browser test! (xss.detectify.com)

    Test your browser against Reflected XSS

  8. SQL injection in one minute (blog.detectify.com)

    A short 101 tutorial on how SQL-injections work

  9. The google Zerg Rush Easter Egg has not surpassed anyone on HN. However, was Google inspired by our Detectify game? You be the judge – you'll need to sign up for our beta of course to get to the game (well worth it).