Security

Joel Hans

Battle against search and AI bots on your ngrok endpoints

Are search and AI bots invading your ngrok endpoints? Fight back with three developer-friendly traffic policies you can deploy in minutes.
Joel Hans

How to implement mutual TLS (mTLS) with ngrok’s API gateway

Mutual TLS (mTLS) with an API gateway can help you meet compliance requirements in industries that demand high security for data transmission.
August 13, 2024
8
min read
Arianna Willett

Data at ngrok: A primer

Understand how ngrok handles your data with advanced security measures, offering clarity and control over your traffic flows and storage.
August 5, 2024
5
min read
Mandy Hubbard

Ingress controller vs. API gateway: A comparison

Ingress controllers and API gateways have some overlapping functionality, and this post helps you know when to use one over the other—or both!
Joel Hans

AI meets privacy: ngrok's secure bridge to customer data

Explore how ngrok enhances AI development by enabling secure, direct access to customer data, ensuring data integrity and privacy.
March 13, 2024
13
min read
Team ngrok

What is a site-to-site VPN?

Check out this comprehensive site-to-site VPN guide. Site-to-site VPN provides secure connections for distant offices and networks.
March 4, 2024
3
min read
Team ngrok

Vulnerability management for customer-controlled environments

Explore vulnerability management in cloud apps, focusing on SaaS accessing customer databases in BYOC environments, with security and compliance insights.
February 29, 2024
5
min read
Mandy Hubbard

Introducing JWT validation for your API

ngrok's developer-defined API gateway introduces support for JWT validation. Learn about ngrok's implementation and how to add JWT validation to your API endpoints.
February 26, 2024
3
min read
Scott McAllister

Add OAuth 2.0 to a Node.js CRUD app

Secure a Node.js CRUD app using the ngrok JavaScript SDK for stable domain setup. Implement OAuth through Google for user authentication and authorization.
January 26, 2024
7
min read
Mason Johnson

Our next generation firewall project

Read about how we have improved our firewall and created an open-source Firewall Toolkit in the process.
December 7, 2023
5
min read
Matthew Karnowski

Bolster control and governance with ngrok Account Domain Controls

Introducing ngrok Account Domain Controls: Unify user accounts, enforce policies, and secure ngrok usage with ease.
November 8, 2023
5
min read
Josh Hertlein

MFA for your production infrastructure running on ngrok

Learn how ngrok secures your production infrastructure using MFA and Time-Based One Time Passwords (TOTP).
October 18, 2023
3
min read
Arianna Willett

Authentication at the network edge

Enhance network security with various authentication methods at the network edge. Thwart unauthorized access and minimize attack surfaces.
October 17, 2023
5
min read
Scott McAllister

A developer's guide to webhook security

Webhooks help applications stay up to date with system changes, but are they secure? We guide you through steps to ensure the webhooks you consume are valid.
October 3, 2023
3
min read
Frederico Hakamine

Add Auth0 Authentication and authorization to ngrok traffic

Securely add production-grade auth with self-service sign-ups, account recovery, and social auth for multiple platforms - integrate ngrok to Auth0.
June 21, 2023
15
min read
Mike Lloyd

Integrating OAuth into your Rust App

ngrok is useful to run alongside your app. What happens when you embed it and start activating OAuth, webhook verification, load balancing, and more?
April 11, 2023
10
min read
Sam Richard

Expanding ngrok's free plan with security in one line

We're adding our security features — OAuth and Webhook validation — to our free plan.
March 16, 2023
5
min read
Russ Savage

How ngrok Actively Combats Phishing Attacks

Phishing attacks are one of the most common attacks on the internet, and ngrok is committed to actively trying to stop them.
February 28, 2023
5
min read
Russ Savage

ngrok becomes Identity Aware with App Users

See your application users in the ngrok dashboard and view their identity details. This feature is a huge win for security and you can use it today.
November 17, 2022
5
min read
Frederico Hakamine

Webhook Security in the Real World

Webhooks enable us to react to changes like text messages, successful payments, or pull requests. Few pay attention to their design, security or controls.
November 14, 2022
30
min read
Keith Casey

There and Back Again: An OAuth Story

I've worked with OAuth 2.0 for over 6 years. It's always been a complex and challenging beast to fight until now.
July 26, 2022
10
min read
Arianna Willett

Announcing our SOC 2 Type 2 Report

We’re excited to announce that we have successfully completed the System and Organizational Controls (SOC) 2 Type 2 testing with no findings. Read more for more information.
July 20, 2022
3
min read
Keith Casey

ngrok: Defense in Depth

Securing your environment is challenging. With ngrok, you can centralize management to ensure policies are applied consistently, no matter the stack.
June 28, 2022
5
min read
Russ Savage

Fighting Abuse on the ngrok Platform

While ngrok has made it easy to launch your fantastic new app online in one line, bad actors have also used this capability to launch their own attacks. Blocking and eliminating this malicious behavior is key to what we do and we've taken another step to protect users without breaking legitimate applications.
June 21, 2022
3
min read
Keith Casey

Authentication with ngrok

In this post, I cover the different methods you can use for authenticating traffic with ngrok, including OAuth and OpenID Connect.
June 8, 2022
5
min read
Arianna Willett

Announcing the ngrok security and trust portal

The ngrok security and trust portal shares how we secure the ngrok service, our shared security model, how we handle data, and the steps we take to protect it.
May 24, 2022
4
min read
Frederico Hakamine

Securing your Apps with Cloud Edge

Use ngrok Cloud Edge for app observability, load balancing, compression, and security – without the burden of running and maintaining middleware infrastructure.
April 26, 2022
10
min read
Frederico Hakamine

Securing your Applications with OAuth 2.0 in seconds

ngrok Secure Tunnels. With one command share your apps, APIs, and systems with the world, without complex network configuration, reliability issues, and NAT.
April 19, 2022
5
min read
Ben Sabrin

Announcing our SOC 2 Type 1 Report

We have successfully completed the System and Organizational Controls (SOC) 2 Type 1 examination establishing controls and safeguards within ngrok.
March 29, 2022
3
min read