The Dilemma of Attacking Okta, Red Team Operations

Introduction An ominous login page, mysterious isn’t it? This page is seen by hundreds of employees/customers of companies like Discord, Microsoft, Paypal, GoDaddy, Roblox, etc. This is an Okta login page, successfully authenticating yourself with one of these will usually redirect you to a companies internal services, such as: Jira, Confluence, Metrics systems, the whole shebang! Okta? Okta is “an American identity and access management company” that allows companies to easily manage and c

Red Team Operations: Attack and Think Like a Criminal

Okta's Investigation of the January 2022 Compromise

Phishing with SAML and SSO Providers – Jordan Potti – Security Things

Videos Archive - ReliaQuest

Presidio: managing migration risk

Okta Cyber Attack: Another Major Supply Chain Incident

Blog authentik

Okta provides new details on Lapsus$ attack

Guide to Red Team Operations - Hacking Articles

Threat Advisories Archive - ReliaQuest

Customer Spotlight: Identity Under Attack

Attack like a Red Team (not using Devops)— ep.1 : How Red Team