2021 OWASP Global AppSec talk on open source for anti-bot

2021-11-11 — Written by Randy Gingeleski — 2 min read

Information on my 2021 OWASP Global AppSec US talk ‘How to Thwart Malicious Automation and Kick Bot Butt for $0’.

Read more →

Towards a general anti-automation and botting program

2021-07-31 — Written by Randy Gingeleski — 40 min read

#appsec #botting #initiatives #papers

Despite what vendors will tell you, defending against malicious automation and ‘bots’ takes a multi-pronged approach.

Read more →

Defeating Parler’s proprietary CAPTCHA

2021-01-11 — Written by Randy Gingeleski — 3 min read

#appsec #botting #hacks

Before the now-infamous Parler social network’s disappearance, we assessed their ‘roll-your-own’ CAPTCHA.

Read more →

How to identify in-client bot detection

2020-09-19 — Written by Randy Gingeleski — 4 min read

#appsec #botting #hacks

Walking through how to clock 4 in-client bot detectors like Google reCAPTCHA and Akamai Bot Management SDK.

Read more →

HOPE 2020 ‘Stop Botting My Baby’ talk on thwarting malicious automation

2020-08-30 — Written by Randy Gingeleski — 1 min read

#appsec #botting #talks

Information on my 2020 Hackers on Planet Earth (HOPE) talk ‘Stop Botting My Baby: How to Protect Your New Streaming Platform from Malicious Automation’.

Read more →