Security
Battle against search and AI bots on your ngrok endpoints
Are search and AI bots invading your ngrok endpoints? Fight back with three developer-friendly traffic policies you can deploy in minutes.
August 28, 2024
•
8
min read
How to implement mutual TLS (mTLS) with ngrok’s API gateway
Mutual TLS (mTLS) with an API gateway can help you meet compliance requirements in industries that demand high security for data transmission.
August 13, 2024
•
8
min read
Data at ngrok: A primer
Understand how ngrok handles your data with advanced security measures, offering clarity and control over your traffic flows and storage.
August 5, 2024
•
5
min read
Ingress controller vs. API gateway: A comparison
Ingress controllers and API gateways have some overlapping functionality, and this post helps you know when to use one over the other—or both!
June 20, 2024
•
5
min read
AI meets privacy: ngrok's secure bridge to customer data
Explore how ngrok enhances AI development by enabling secure, direct access to customer data, ensuring data integrity and privacy.
March 13, 2024
•
13
min read
What is a site-to-site VPN?
Check out this comprehensive site-to-site VPN guide. Site-to-site VPN provides secure connections for distant offices and networks.
March 4, 2024
•
3
min read
Vulnerability management for customer-controlled environments
Explore vulnerability management in cloud apps, focusing on SaaS accessing customer databases in BYOC environments, with security and compliance insights.
February 29, 2024
•
5
min read
Introducing JWT validation for your API
ngrok's developer-defined API gateway introduces support for JWT validation. Learn about ngrok's implementation and how to add JWT validation to your API endpoints.
February 26, 2024
•
3
min read
Add OAuth 2.0 to a Node.js CRUD app
Secure a Node.js CRUD app using the ngrok JavaScript SDK for stable domain setup. Implement OAuth through Google for user authentication and authorization.
January 26, 2024
•
7
min read
Our next generation firewall project
Read about how we have improved our firewall and created an open-source Firewall Toolkit in the process.
December 7, 2023
•
5
min read
Bolster control and governance with ngrok Account Domain Controls
Introducing ngrok Account Domain Controls: Unify user accounts, enforce policies, and secure ngrok usage with ease.
November 8, 2023
•
5
min read
MFA for your production infrastructure running on ngrok
Learn how ngrok secures your production infrastructure using MFA and Time-Based One Time Passwords (TOTP).
October 18, 2023
•
3
min read
Authentication at the network edge
Enhance network security with various authentication methods at the network edge. Thwart unauthorized access and minimize attack surfaces.
October 17, 2023
•
5
min read
A developer's guide to webhook security
Webhooks help applications stay up to date with system changes, but are they secure? We guide you through steps to ensure the webhooks you consume are valid.
October 3, 2023
•
3
min read
Add Auth0 Authentication and authorization to ngrok traffic
Securely add production-grade auth with self-service sign-ups, account recovery, and social auth for multiple platforms - integrate ngrok to Auth0.
June 21, 2023
•
15
min read
Integrating OAuth into your Rust App
ngrok is useful to run alongside your app. What happens when you embed it and start activating OAuth, webhook verification, load balancing, and more?
April 11, 2023
•
10
min read
Expanding ngrok's free plan with security in one line
We're adding our security features — OAuth and Webhook validation — to our free plan.
March 16, 2023
•
5
min read
How ngrok Actively Combats Phishing Attacks
Phishing attacks are one of the most common attacks on the internet, and ngrok is committed to actively trying to stop them.
February 28, 2023
•
5
min read
ngrok becomes Identity Aware with App Users
See your application users in the ngrok dashboard and view their identity details. This feature is a huge win for security and you can use it today.
November 17, 2022
•
5
min read
Webhook Security in the Real World
Webhooks enable us to react to changes like text messages, successful payments, or pull requests. Few pay attention to their design, security or controls.
November 14, 2022
•
30
min read
There and Back Again: An OAuth Story
I've worked with OAuth 2.0 for over 6 years. It's always been a complex and challenging beast to fight until now.
July 26, 2022
•
10
min read
Announcing our SOC 2 Type 2 Report
We’re excited to announce that we have successfully completed the System and Organizational Controls (SOC) 2 Type 2 testing with no findings. Read more for more information.
July 20, 2022
•
3
min read
ngrok: Defense in Depth
Securing your environment is challenging. With ngrok, you can centralize management to ensure policies are applied consistently, no matter the stack.
June 28, 2022
•
5
min read
Fighting Abuse on the ngrok Platform
While ngrok has made it easy to launch your fantastic new app online in one line, bad actors have also used this capability to launch their own attacks. Blocking and eliminating this malicious behavior is key to what we do and we've taken another step to protect users without breaking legitimate applications.
June 21, 2022
•
3
min read
Authentication with ngrok
In this post, I cover the different methods you can use for authenticating traffic with ngrok, including OAuth and OpenID Connect.
June 8, 2022
•
5
min read
Announcing the ngrok security and trust portal
The ngrok security and trust portal shares how we secure the ngrok service, our shared security model, how we handle data, and the steps we take to protect it.
May 24, 2022
•
4
min read
Securing your Apps with Cloud Edge
Use ngrok Cloud Edge for app observability, load balancing, compression, and security – without the burden of running and maintaining middleware infrastructure.
April 26, 2022
•
10
min read
Securing your Applications with OAuth 2.0 in seconds
ngrok Secure Tunnels. With one command share your apps, APIs, and systems with the world, without complex network configuration, reliability issues, and NAT.
April 19, 2022
•
5
min read
Announcing our SOC 2 Type 1 Report
We have successfully completed the System and Organizational Controls (SOC) 2 Type 1 examination establishing controls and safeguards within ngrok.
March 29, 2022
•
3
min read