They also have a good free site security eval: https://www.sqreen.com/scan It wa... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		paulddraper on May 30, 2019 \| parent \| context \| favorite \| on: SaaS CTO Security Checklist They also have a good free site security eval: https://www.sqreen.com/scan It was after that I found out the only way to have HSTS for Cloudfront/S3 is creating your own Lambda@Edge function [1] :/ [1] https://aws.amazon.com/blogs/networking-and-content-delivery...

s_gourichon on May 31, 2019 [–]

The correct entry URL appears to be https://www.sqreen.com/scanner .

sk5t on May 31, 2019 | [–]

This is... not a useful general-purpose scan tool for web APIs. A warning because port 443 is open, no kidding? And a lot of carping about HTTP headers relevant to frontend apps.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact