Okta

We hope your testing is going well. Here is an update that should make things a bit more interesting!

There have been some recent updates to the Okta program. We highly recommend you take a look at this additional attack surface – which hopefully means more vulnerabilities! Here is what’s new: (list all updated scope below):

Name	URL	Description	Change
AtSpoke	bugcrowd-oie-%username%-#.at.oktapreview.com	Okta Access Requests	Added
Okta OIE	bugcrowd-oie-%username%-#.oktapreview.com	Okta Identity Engine, more features and capabilities added to Okta	Added

Make sure to follow the instructions under each of the target groups!

For Okta OIE registration, please make sure to claim your 5 security codes at the bottom of the Bugcrowd program brief by clicking "Get Credentials". These security codes can be used here, Okta OIE Signup

As always, please see the program brief for the full details around testing. If you have any questions, please reach out to support@bugcrowd.com.

Get out there and lay claim to those bugs!