BLUE

Jason Danner

@jpdanner.com

Analytical chemist & techie Reluctant American & proud Kiwi Chief Beer Officer @ Aerorock Director of HOPS @ Usable Balance @jpdanner from Tweeter He/him Friendliest asshole you'll ever meet

408 followers459 following485 posts

Overview Posts Replies

Reposted by Jason Danner

Jjjengar.bsky.socialSep 6, 2024 12:24am

JDjpdanner.comSep 5, 2024 11:20pm

Some takeaways & thanks @karit.nz #OWASPNZ

JDjpdanner.comSep 5, 2024 11:18pm

We should always use MFA & SSO if you can. @karit.nz #OWASPNZ

JDjpdanner.comSep 5, 2024 11:17pm

Self service password resets can also be attacked @karit.nz #OWASPNZ

JDjpdanner.comSep 5, 2024 11:15pm

Don't treat corporate enrolled devices as a second factor @karit.nz #OWASPNZ

JDjpdanner.comSep 5, 2024 11:13pm

Uh... Also we need to make sure these apply to all cloud apps. Very easy to forget admin apps. @karit.nz #OWASPNZ

JDjpdanner.comSep 5, 2024 11:07pm

What if we have a CAP that disables MFA from the office IP? Well the guest network is probably also on that IP... @karit.nz #OWASPNZ

JDjpdanner.comSep 5, 2024 11:04pm

We can change the "user agent" to bypass a targeted CAP @karit.nz #OWASPNZ

JDjpdanner.comSep 5, 2024 11:02pm

Let's create a CAP @karit.nz #OWASPNZ

JDjpdanner.comSep 5, 2024 11:00pm

Nitty gritty of CAPs @karit.nz #OWASPNZ

Jason Danner

@jpdanner.com

Analytical chemist & techie Reluctant American & proud Kiwi Chief Beer Officer @ Aerorock Director of HOPS @ Usable Balance @jpdanner from Tweeter He/him Friendliest asshole you'll ever meet

408 followers459 following485 posts