ConsentFix (a.k.a. AuthCodeFix): Detecting OAuth2 Authorization Code Phishing

blog.nviso.eu

ConsentFix (a.k.a. AuthCodeFix): Detecting OAuth2 Authorization Code Phishing

blog.nviso.eu

digicat@infosec.pubM to

blueteamsec@infosec.pubEnglish · 1 day ago

Walkthrough the ConsentFix (a.k.a. AuthCodeFix) attack mechanics, and learn about mitigations and detections strategies.

You must log in or # to comment.

Chat

blueteamsec@infosec.pub

Create a post

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: [email protected]

For [Blue|Purple] Teams in Cyber Defence - covering discovery, detection, response, threat intelligence, malware, offensive tradecraft and tooling, deception, reverse engineering etc.

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

42 users / day
106 users / week
300 users / month
897 users / 6 months
13 local subscribers
605 subscribers
2.21K Posts
165 Comments
Modlog

mods:
digicat@infosec.pub