Information on my 2021 OWASP Global AppSec US talk ‘How to Thwart Malicious Automation and Kick Bot Butt for $0’.
Despite what vendors will tell you, defending against malicious automation and ‘bots’ takes a multi-pronged approach.
This time we try that funny Akamai ARL business across 5,000,000+ targets, with help from Apify.
Trying to load arbitrary content via abandoned Akamai on 2,259 plus 1 bounty targets.
Before the now-infamous Parler social network’s disappearance, we assessed their ‘roll-your-own’ CAPTCHA.