Ever wondered how a routine pen test can spiral into a showdown with AWS and the FBI? This episode dives straight into the technical missteps and lessons learned when password spraying Okta gets the wrong kind of attention.
- The basics of external pen testing and initial access techniques
- Why using AWS proxies for password spraying can get you kicked off the platform
- How Okta, AWS, and the FBI respond to suspicious activity
- Building better password spray tools after getting caught
- Key lessons for staying responsible (and out of trouble) during offensive security engagements
Blog:Â https://offsec.blog/
Youtube:Â https://www.youtube.com/@cyberthreatpov
Twitter:Â https://x.com/cyberthreatpov
Work with Us: https://securit360.com | Find vulnerabilities that matter, learn about how we do internal pentesting here.
Follow Spencer on social ⬇
Spencer’s Links:Â https://go.spenceralessi.com/links