Trustlab is Secure by Design
We think that your vulnerability data deserve the best protection available.
Store nothing design
We do not store scan results, they are kept in memory and sent to your end-point as soon as possible.
Dockerized scanning engines
Your scan job runs inside a private, non-shared, non-persistent, Docker container or Virtual Machine.
Encrypted communications
We only send scan results to HTTPS end-points with valid certificates and TLS 1.1 or above.
Your Privacy
Temeletry stats are kept as minimal and anonymous possible (we still want to build a profitable business so access logs, error logs and payment logs are kept).
Authentication
We use an external IAM (Auth0) that supports 2FA and avoid the storage of credentials on our systems.
Hacker friendly
Our systems are designed to keep your data safe also in case of an hack. We also have a public bug bounty program!