By- June 11, 2012
Summer's coming up and things are also heating up at Tinfoil! We wanted to quickly give an update of some of the bigger things we've been hard at work on.
Request Rate: We now allow you to specify the target request rate we'll hit your website at during a scan. Before we were defaulting to a max of 40 requests per second, but some of you wanted us to be a bit more gentle when starting off the scan. Just like before, we still slow down the rate if your website looks to be under strain but now you choose where we max out at. You can even update it mid-scan if your engineers are yelling at you :) And if you think you can handle it, Thor is ready to take things up a notch and make your scans even faster!
Efficient Scans: To help make scans even shorter we've been hard at work making the scanning infrastructure super smooth and efficient. Our scanner is an intelligent beast, learning about your website as it goes to find all of the various vulnerabilities. It now also learns about the various templates for your webpages and once positive it's safe will skip new copies of the template. We've seen this speed up the scan by up to 80% for highly repetitive websites!
Dismissing Issues: Once your scan is done you can view and interact with your report to learn about what we found and exactly how to fix it. Some of the issues we bring up are merely best practices rather than explicit security vulnerabilities. We now allow you to dismiss them if you'd rather not be bothered again!
New Office: We're moving! The new Temple of Tinfoil is located at 828 Bryant St, Palo Alto CA 94301. Feel free to stop by sometime to say hello or BBQ with us! We've had a great time at Dogpatch Labs Palo Alto (run by the awesome folks at Polaris Ventures) but now it's time to move and grow into our own space. By the way, we're still hiring.
Tinfoil Security provides the simplest security solution. With Tinfoil Security, your site is routinely monitored and checked for vulnerabilities using a scanner that's constantly updated. Using the same techniques as malicious hackers, we systematically test all the access points, instantly notifying you when there's a threat and giving you step-by-step instructions, tailored to your software stack, to eliminate it. You have a lot to manage; let us manage your website's security.