Session

15/10/2020 : 10:15 - 11:00 | Auditorium | Maxime Escourbiac, Maxence Schmitt

As defender or as attacker, when we are talking about security, one important thing is to know the attack surface. You will not be able to defend something that you don’t know.

In this talk, we will present you the different phases of reconnaissance, this will be useful if you want to do bug hunting or if you want to protect yourself.

We will go step by step, from company name to vulnerabilities: Subdomain enumeration, port scanning, service identification, technology identification, content discovery, screenshooting subdomain takeover.

We will also present you how you can automate it in order to be maintanable, scalable and also to be reactive when new vulnerabilities are presents.

Conférence
Archi, Perf et Sécu