Hi folks,
Thought I’d drop a quick link to our blog about Deepsec, but more importantly, use this as a time to remind you to actually use it.
Why am I advising this all of a sudden? Well if you noticed Fable getting pulled in the blink of the eye, I have a sneaking suspicion the free token subsidization will go in the same way. So in other words, while we have tokens to burn, there’s never been a better time to run this, it’s effectively free (excluding your monthly Pro plans). It’s also much much cheaper than a pen-test.
Anyway, without going into too deeper rabbit hole, the Deepsec audit found some quite useful vulnerabilities about our own site and that’s only a couple hundred pages, I can’t even imagine imagine what it would pull for a full blown app audit.
We’ll be revisiting this soon with our own internal apps we built to tell you how that goes but in the meantime, rev this up in the background, go make a coffee, play some video games and tell your boss you’ve been “hard at work” on sec-testing the company site this afternoon.
Here’s a link to the original post
