Okta

Summary

Okta seems to have a Bug Bounty or Vulnerability Disclosure program managed at Bugcrowd. Our bots had reported us they appear to be offering rewards 💸 💰 👀.

As this page is programmatically generated, we do not guarantee the accuracy or completeness of the data and cannot be held liable for any errors or omissions. Users are advised to verify the information directly from the official sources before taking any action based on the content found on this website.

References

https://bugcrowd.com/okta

In Scope

Advanced Server Access (ASA) / (ScaleFT)

Advanced Server Access Client / Agents

Desktop MFA for Windows

Desktop MFA for macOS

Okta Agent Windows

Okta Browser Plugin (IE / Firefox / Chrome)

Okta On-Prem Agents ( AD, LDAP, RDP, IWA )

Okta Verify (Android)

Okta Verify (Mac OS)

Okta Verify (Windows)

Okta Verify (iOS)

Okta Verify Fastpass

Password Sync for macOS

bugcrowd-oie-%username%-1.at.oktapreview.com

bugcrowd-oie-%username%-1.oktapreview.com

bugcrowd-oie-%username%-2.at.oktapreview.com

bugcrowd-oie-%username%-2.oktapreview.com

http://app.scaleft.com/

https://apps.apple.com/us/app/okta-verify/id490179405

https://bugcrowd-oie-%username%-1.workflows.oktapreview.com

https://bugcrowd-oie-%username%-2.workflows.oktapreview.com

https://help.okta.com/asa/en-us/Content/Topics/Adv_Server_Access/docs/client.htm

https://help.okta.com/en/prod/Content/Topics/Adv_Server_Access/docs/sftd-windows.htm

https://help.okta.com/en/prod/Content/Topics/Settings/download-browser-plugin.htm

https://play.google.com/store/apps/details?id=com.okta.android.auth&hl=en_US&gl=US

https://support.okta.com

https://www.okta.com/fastpass/

https://www.okta.com/products/advanced-server-access/

support.okta.com

Out of Scope

*.okta.com

*.trexcloud.com

Anything not explicitly called out above as in-scope

AtSpoke - Entitlement bundles as a resource in access requests

AtSpoke - Okta Workflows actions in access requests

Backend Okta non-app infrastructure

Network layer issues

bugcrowd-%username%-1.oktapreview.com

bugcrowd-%username%-2.oktapreview.com

developer.okta.com

https://app.scaleft.com/p/signup

https://bit.ly/3QUpJe5

https://github.com/oktadev

https://scaleft.com

https://securitytemplate-special.workflows.oktapreview.com/api/flo/c874b503774a57362e3619108d60b42c/invoke

pages.okta.com

trust.okta.com