You’re probably no stranger to data leaks. Twitter just confirmed a breach exposing 5.4M accounts. It happens too often.
One of the ways cybersecurity experts work to prevent this from happening is through penetration testing. Pentesting involves discovering vulnerabilities in an environment with the purpose of taking control of a system. Ethical hackers, also sometimes referred to as “white hats,” often play a role in this process. They employ the same techniques as a malicious hacker to exploit weaknesses in a system.
Makers Sebastian Brandes and Anders Skovsgaard noticed an opportunity in the market and worked for 6 months to launch Heyhack—a new, automated pentesting solution.
Cybersecurity consultants and ethical hackers can be inaccessible to companies with small budgets. Moreover, “automated vulnerability scanners test just a tiny part of your web app and these solutions won’t let you look into the process of how testing was conducted,” explains Heyhack in yesterday’s launch video.
“Realizing this, we set a goal to build a 100% transparent product with complete coverage and minimal configuration,” wrote Sebastien. Sebastien is an AI professional and former Tech Evangelist at Microsoft, while co-founder Anders is a pentester with 15 years of experience.
Heyhack spins up browser instances on virtual machines in the cloud and navigates your application like a real user, interacting with every element it finds on your web app. It captures screenshots of daily tests that “surpasses the level of hackers.”
Makers in the comments have shown excitement over the tool’s ease of use, clean UI, and accessibility for startups and bootstrapped teams. Heyhack says it “requires zero technical knowledge” — when a vulnerability is found, the tool sends a notification with technical details and “complete guidance” on how to fix it.
Think it looks easy enough to use too? If you give Heyhack a try, be sure to let makers know what you found in the comments.
-
Raise your hand if your camera roll is a mess? Swipewipe helps you clean up your images by swiping to delete or keep them.
-
Suggestic helps makers building food and health apps with a unified food, recipe, restaurant, and meal planning API.
-
Maker and community builder KP launched The Founder Hotline, a live call-in show where founders can call in to share their struggles, anonymously if they choose.
-
Clash of Clans is fun, but have you tried chilling out with some Cats & Soup?
AI builders: There's a new security standard in town and you'll need to find out what it is, if you need it, and how it works.
ISO 42001 was introduced by the International Standards Organization so that companies can demonstrate their security practices around AI in a verifiable way.Join Vanta and A-LIGN in a live webinar to learn about...
Chris Messina hunted Spotify’s new live events feed after noticing its silent release yesterday. The feed personalizes your discovery of live events and lets you buy tickets for them.
Spotify told TechCrunch that this is just a test, but tech pundits have been watching Spotify’s interest in this space. In June, The Information reported Spotify’s interest in entering the events business, noting that the move wouldn’t just be about revenue, but establishing better relationships with artists on the platform.
What do you think? Should Ticketmaster and event platforms be worried?