Going Way Beyond 2FA
The OWASP Podcast Series
00:00
Using Name Based and IP Bas Loggings
I was always blown away at how i could let these things run for hours with zero am like, i never got banned. It was shocking, right? Such an easy, loud occurrence. Now, are attacks in between automated easy and nation state infinite resources? Do they exist? Yes. But are they our biggest threat? Not. When people can easily retry prudential dumps without much we can do really, yes, they' really. I'm grand i was doing tis as part of a pentas, so i was supposed to be doing it, but it still surprised me how easy it was to do that and just have it go unnoticed. Back to Mail Online home. Back
Transcript
Play full episode
