DNS and Attack Surface Management

Explore DNS and attack surface management in this informative conference talk by Paul Guido at BSides SATX. Gain practical insights into securing your company's internet-facing systems and DNS records. Learn the importance of regularly examining externally exposed systems and ports, not just for vulnerabilities but also to determine if services are still necessary. Discover how to identify and manage outdated A or CNAME records in DNS that may point to non-existent resources or domains. Understand why DMARC is crucial for protection and how to implement it effectively. Delve into the significance of various DNS records, including CAA, SPF, DKIM, DMARC, CNAME, and TXT. Find out how to obtain free vulnerability and posture assessments to enhance your security posture. Additionally, learn about setting up BIMI to demonstrate your brand's protection. This 43-minute talk provides valuable knowledge for IT professionals looking to strengthen their organization's cybersecurity defenses and manage their attack surface effectively.