Why CyStack
Products
CyStack Intelligent Products
Explore our all-in-one security suite for robust digital protection, covering web app scans, device management, and secret safeguarding.
CyStack VulnScan
Popular
Web app security scanning & monitoring with external firewall methods. Detect vulnerabilities, manage lists & certificates easily.
Locker Secrets Manager
New
Securely manage tokens, passwords, certificates, and keys with an intuitive UI, CLI, or SDK.
SafeChain Blockchain Security
Smart-contract scanner & blockchain monitor. Identify vulnerabilities & get token anomaly alerts.
Locker Password Manager
Securely store passwords, manage sensitive data, & enable one-click logins.
CyStack Endpoint
New
Advanced device tracking, remote management & access controls for all-sized businesses.
WhiteHub Bug Bounty
Elevate cybersecurity. Engage 3000+ hackers, tailor rewards.
CyStack Trust Center
Simplify showcasing cybersecurity commitment. Auto-generate dedicated security page integrated with domains.
CyStack Data Leak Detection
Secure your brand, ideas, and customer information by quickly detecting data leaks to steer clear of costly breaches.
Services
Security Assessment
- Penetration Testing
- Red Team
- Infrastructure Audit
- Performance Testing
Security Operations
- Vulnerability Management
- Security Monitoring
- Managed Bug Bounty
Security Consulting
- Security Policy Development
- Incident Response
- Security Training
Blockchain Security
- Blockchain Protocol Audit
- Smart Contract Audit
Solutions
By Use Case
For Startup
For Degree 13 Compliance
Anti-Ransomware
By Industry
For Public Sector
For Financial Services
For Ecommerce
For Healthcare
For Blockchain Companies
Looking for something?
We provide you with the latest news, trends, and insights in the fast-paced world of tech. Join us on this exciting journey and discover the transformative power of technology today.
Company
- About Us
- Brand Kit
- Press
- CareersHiring
- Contact Us
Resources
- Blog
- Case Study
- Research
- Help Center
- Projects

ONEFIN

OneFin engaged CyStack to perform a Penetration Test of their web and mobile applications. The purpose of this project is to identify security weaknesses, determine the impact to OneFin, document all findings in a clear and repeatable manner, and provide remediation recommendations. The project commenced on 04/05/2020 requiring five (5) security researchers. On 05/06/2020, CyStack performed a retesting that confirmed the effectiveness of the applied mitigations. All issues with direct security impact have been addressed by OneFin.

Overview

Products	Completion date	Status
Penetration Testing	June 5 2020	Completed

Total finding

N/AIssues

N/A Resolved

Critical

Resolved

N/A

High

Resolved

N/A

Medium

Resolved

N/A

Low

Resolved

N/A

Info

Resolved

N/A

Assessment Checklist

Application-Level Denial-of-Service (DoS)

Automotive Security Misconfiguration

Smart Contract Security

Blockchain Protocol Security

Broken Access Control (BAC)

Broken Authentication and Session Management

Broken Cryptography

Client-Side Injection

Cross-Site Request Forgery (CSRF)

Cross-Site Scripting (XSS)

External Behavior

Indicators of Compromise

Insecure Data Storage

Insecure Data Transport

Insecure OS/Firmware

Insufficient Security Configurability

Lack of Binary Hardening

Mobile Security Misconfiguration

Network Security Misconfiguration

Privacy Concerns

Sensitive Data Exposure

Server Security Misconfiguration

Server-Side Injection

Unvalidated Redirects and Forwards

Using Components with Known Vulnerabilities

Organization

Banking finance

OneFin is the leading technology service platform for electronic payments in Vietnam. With technologies: AI, blockchain, big data. OneFin provides "Fast - Smart - Safe" features for customers and partners

Deliverables

Final Report

Completion Certificate

You are looking for a similar cybersecurity solution?

CyStack offers top-tier cybersecurity protection for your operations, data, and blockchain. We help you to reduce cyber risks, streamline security processes, and accelerate return on investment for your IT team.

CyStack Intelligent Products

CyStack VulnScan

Locker Secrets Manager

SafeChain Blockchain Security

Locker Password Manager

CyStack Endpoint

WhiteHub Bug Bounty

CyStack Trust Center

CyStack Data Leak Detection

By Use Case

By Industry

Looking for something?

ONEFIN

Overview

Assessment Checklist

Organization

Deliverables

You are looking for a similar cybersecurity solution?

Protect your system,

protect the future of your business

CyStack and Cookies

Audit

Security Operations

Data Security

Security Compliance

Blockchain Security

Company

Resources