Tag
#Security
4 articles with this tag
Product Updates
Building a 34-Rule WAF: From 15 Signatures to Full OWASP Coverage
How we expanded our web application firewall from 15 basic signatures to 34 detection rules across 9 OWASP categories, with multi-layer URL decoding, anomaly scoring, IP reputation tracking, and honeypot traps that instantly ban scanners.
about 1 month ago8 min
00
Security
Security Update: React2Shell (CVE-2025-55182) Audit Complete
We completed a full security audit for the critical React2Shell vulnerability (CVE-2025-55182, CVSS 10.0). Boottify is confirmed NOT VULNERABLE — patched versions, no Server Actions, and verified by multiple scanners.
2 months ago3 min
21
Product Updates
Cross-Platform Biometric Auth: Migrating WebAuthn RP ID Across Subdomains
How we migrated our WebAuthn Relying Party ID from control.boottify.com to the apex domain boottify.com, enabling biometric credentials to work across all subdomains with a dual RP ID verification strategy.
about 1 month ago7 min
00
Product Updates
5-Tier Rate Limiting: Protecting 23 Auth Endpoints from Brute Force
How we implemented a 5-tier sliding window rate limiter across all 23 authentication endpoints, with IP-based tracking, standard response headers, and a custom ApiError.tooManyRequests() factory.
about 2 months ago6 min
00