Backup and Recovery forIdentity Infrastructure
Butterfly leads with backup, restore, rollback, and audit history for Okta, Okta Workflows, and Auth0.
Around that recovery workflow, the platform adds automation recovery, AI guidance, compliance remediation, Chrome extension operator tooling, and SSF event streaming.
One recovery workflow, five supporting surfaces
The feature set should read as one product: backup and restore first, then the automation, AI, compliance, extension, and signal surfaces that help teams investigate and respond.
Recovery core
Backups, restore previews, rollback planning, and audit history.
Automation recovery
Protect Okta Workflows so broken provisioning or approval logic can be restored quickly.
AI guidance
Give operators product-aware assistance, analysis, and support context inside the platform.
Compliance remediation
Turn checks, evidence, and remediation steps into one continuous operating flow.
Operator surfaces
Use the Chrome extension and SSF event stream to work inside the admin console and the broader security stack.
Backup, Restore, and Recovery Controls
The SaaS platform backs up Okta, Okta Workflows, and Auth0, previews restore plans before changes are applied, and keeps the history teams need for recovery and audit response.
Multi-Provider Backup
Back up Okta, Okta Workflows, and Auth0 from a single dashboard.
Terraform HCL Export
Generate Terraform configuration from your backups. Infrastructure as Code for Okta, Okta Workflows, and Auth0.
Dry-Run Restore
Terraform-style plan/apply restore. Preview exactly what will be created, updated, or skipped before making any changes.
Compliance Scanning
Automated checks across SOC 2, HIPAA, PCI DSS, NIST 800-53, ISO 27001, and CIS Controls. Checks per provider across 6 frameworks.
Drift Detection
Monitor your identity configuration for unauthorized changes. Get alerts and GitHub-style line-by-line diffs when something changes.
Scheduled Backups
Automated backups on your schedule - hourly, daily, weekly, or monthly. Never miss a backup.
Git Integration
Export backups to GitHub, GitLab, Bitbucket, Azure DevOps, or AWS CodeCommit. Version control your identity configuration.
Relationship Explorer
Interactive topology graph showing users, groups, apps, policies, and their connections. Drag-and-drop with natural language descriptions and contextual hints.
Resilience Score
Quantifies your disaster recovery readiness. How quickly can you restore? How complete is your backup coverage?
AES-256 Encryption
Backups encrypted at rest with AES-256. Credentials stored separately with additional encryption. Isolated storage per account.
Complete Workflows Backup
Full backup of Okta Workflows including flow definitions, folders, table data, connectors, and Connector Builder projects.
Non-Human Identity Management
Track and manage service accounts, API tokens, OAuth clients, and machine identities across all providers.
Power Tools for Okta Admins
A Manifest V3 Chrome extension that overlays directly on the Okta admin console. Snapshot before you change, trace access paths, get AI security advice, bulk operate, and export anything.
Snapshot Before Change
Capture 40+ Okta resource types before making any edit. Your safety net, one click away. Snapshots stored locally with full history.
Identity X-Ray
Trace every access path from a user to a resource. See risk scores, blast radius analysis, and detect redundant access paths.
AI Security Advisor
Context-aware security recommendations grounded in official Okta documentation. Get actionable advice based on your current page.
HealthInsight++
Numeric security score (0–100) for your Okta org. Scores MFA coverage, policy strength, admin hygiene, and more with actionable recommendations.
Cmd+K Command Palette
Quick-jump to any Okta admin page, resource, or action from anywhere in the console. Fuzzy search across the entire admin experience.
Bulk Operations
Batch deactivate, suspend, unsuspend, reset MFA, and manage group membership. Select users from any list page and act on all at once.
Export Everything
One-click CSV or JSON export from any Okta admin page. Users, groups, apps, policies -- export what you see.
API Explorer
Browse and test 727 Okta API endpoints from the Okta Postman collection. Pop-out window for side-by-side work.
Live Change Watcher
Real-time monitoring for configuration changes across your Okta org. Get notified when something changes while you work.
Resource Annotations
Pin colored notes to any Okta resource -- users, groups, apps, policies. Persisted locally in chrome.storage.local for privacy.
Real-Time Security Signals (SSF)
Standards-compliant OpenID SSF 1.0 implementation. Receive security events from Okta and transmit structured events to your SIEM/SOAR in real time.
OpenID SSF 1.0 Compliant
Full implementation of the Shared Signals Framework standard with 5 API endpoints. Standards-based interoperability with any SSF-compatible receiver.
10 Event Types
Full CAEP (session revoked, token revoked, credential changed, compliance violation) + RISC (account compromised, credential compromised) + Butterfly custom events.
Transmitter with Retry
Reliable event delivery to your SIEM/SOAR with automatic retry logic. Never miss a security event.
Dual Authentication
Bearer token + Supabase authentication for SSF endpoints. Defense in depth for your security event stream.
Bi-Directional
Receive security events from Okta (user compromised triggers auto-snapshot) and transmit events to your SIEM (config changed, backup completed, compliance violation).
Dashboard Management
Configure and monitor SSF streams from the Butterfly dashboard. View event history, manage receivers, and test connectivity.
Public Provider Coverage Today
Butterfly publicly markets backup and recovery workflows for Okta, Okta Workflows, and Auth0 today.
Okta
55+- Users, Groups & Memberships
- Applications & OAuth Clients
- Sign-On, MFA & Password Policies
- Auth Servers & Authorization Rules
- Branding, Schemas & Templates
- Governance (OIG) & Device Assurance
Okta Workflows
Full- Flows & Flow Versions
- Folders & Tables
- Connections & Configurations
- Delegated Flows & Schedules
Auth0
25+- Users & Database Connections
- Clients & Resource Servers (APIs)
- Roles, Organizations & Grants
- Actions, Rules & Attack Protection
- Email Templates & Tenant Settings
Okta Workflows Backup
Full backup of Okta Workflows including flow definitions, folders, table data (CSV export), connectors, and Connector Builder projects. No other backup platform covers Okta Workflows.
6 Compliance Frameworks
Automated compliance checks across every provider. 12 checks per provider, with pass/warning/fail statuses and remediation steps.
SOC 2
Trust services criteria checks: access controls, availability, processing integrity, confidentiality, and privacy.
HIPAA
Health data protection: access management, audit trails, emergency access procedures, and data integrity.
PCI DSS
Payment card security: strong access control, MFA enforcement, network segmentation, and monitoring.
NIST 800-53
Federal security controls: identification and authentication, access control, audit and accountability.
ISO 27001
Information security management: asset management, access control, operations security, and compliance.
CIS Controls
Critical security controls: asset inventory, software inventory, administrative privilege management, and account monitoring.
Ready to secure your identity infrastructure?
Recovery-first SaaS backup, plus automation recovery, AI guidance, compliance remediation, Chrome extension tooling, and SSF signals.
Questions? hello@butterflysecurity.org