Show HN: SaaS Security 1000 – Security overview of the top SaaS companies(sqreen.io)
sqreen.io
Show HN: SaaS Security 1000 – Security overview of the top SaaS companies
https://www.sqreen.io/opendoor/saas
3 comments
At Sqreen, we love SaaS! We especially love making SaaS companies more secure :-)
The SaaS Security 1000, is a security overview of the world's fastest growing SaaS companies. We run a few basic security checks to identify network and application security issues.
No SaaS business has been harmed during that experiment ;-) (information gathered with fully passive & non-intrusive tests)
Have feedback or question?
The SaaS Security 1000, is a security overview of the world's fastest growing SaaS companies. We run a few basic security checks to identify network and application security issues.
No SaaS business has been harmed during that experiment ;-) (information gathered with fully passive & non-intrusive tests)
Have feedback or question?
[deleted]
I see that you do port scanning as well, which IP addresses do you scan against? In my experience many SaaS providers sit behind proxies like Cloudflare these days, so of course you won't find any open ports when scanning against their HTTP services, that doesn't mean that their real servers don't have any though.
I'm not complaining because we're not on your list (we're not), I just think if you really want to help companies to be more secure you should strive to explain the trade-offs and benefits of each point you mentioned instead of grossly oversimplifying an extremely complex topic. I understand the marketing value of this page but honestly I think it might be harmful to your reputation as a serious security firm. Just my 2c.