Explore tweets tagged as #webhooksecurity
@ngrokHQ
ngrok
@ngrokHQ
2 years
πŸš€ Want to level up your #webhook security game? Learn how to use HTTPS, IP restrictions, and secret management to keep your systems safe and sound. Read our latest blog post: https://t.co/plTwrvoWyo #webhooksecurity #developers #secretmanagement
0
3
2
@rahul_i0h1
Rahul Maskare 
@rahul_i0h1
1 month
Webhook abuse: Payment gateway webhook uses only transaction ID, no signature. Attacker forges POST β†’ credits wallet without real payment. #BugBountyTips #WebhookSecurity #BugBounty
0
0
0
@elasticio
elastic.io
@elasticio
3 years
#Webhook security: Four risk scenarios & remedies Nr3: Implement mutual TLS (Transport Layer Security) to protect webhooks from being intercepted and sent to a wrong destination https://t.co/QZgsml8PVN #WebhookSecurity #elasticio #DataSecurity
0
0
0
@elasticio
elastic.io
@elasticio
3 years
#Webhook security: Four risk scenarios & remedies Nr1: Use #HMAC to prevent tampering attacks on requests to the endpoint to make it look like it came from, say, Salesforce or NetSuite, and send falsified data https://t.co/QZgsmkRexd #WebhookSecurity #elasticio #DataSecurity
0
0
0
@elasticio
elastic.io
@elasticio
3 years
#Webhook security: Deliver just the bare minimum with skinny payloads If you’re dealing with REALLY sensitive data, you can merely let the receiving application know that there is an update for a specific event. https://t.co/QZgsml8PVN #WebhookSecurity #elasticio #DataSecurity
0
0
0
@elasticio
elastic.io
@elasticio
3 years
#Webhook security: Four risk scenarios & remedies Nr2: Use timestamps to protect the receiver against replay attacks, when an attacker intercepts the request and re-sends it in its entirety multiple times https://t.co/QZgsml8PVN #WebhookSecurity #elasticio #DataSecurity
0
0
0
@elasticio
elastic.io
@elasticio
3 years
#Webhook security: Four risk scenarios & remedies Nr4: Implement authentication token or basic auth to verify sender and make sure for the provider of the endpoint that it receives only legitimate payload https://t.co/QZgsml8PVN #WebhookSecurity #elasticio #DataSecurity
0
0
0
@speakeasydev
Speakeasy
@speakeasydev
5 months
Link to blog: https://t.co/8SIdupkJQn #APISecurity #WebhookSecurity #APIdesign #HTTPSecurity
0
0
0
@elasticio
elastic.io
@elasticio
3 years
New blog post: #WebhookSecurity: Four risk scenarios & how to secure #webhooks Request tampering, replay attacks or client impersonation are examples of common risk scenarios. Here are our available webhook security options. https://t.co/QZgsml8PVN #applicationintegration
0
0
0
@WHSimulator
Webhook Simulator
@WHSimulator
1 year
πŸ”’ Ensure your webhooks are secure and efficient with Webhook Simulator. Test edge cases with ease! https://t.co/FV43g8pWax #WebhookSecurity #DevOps
0
0
0