In this episode, we discuss the blindspots of IP-centric approaches to asset discovery and the importance of understanding the full attack surface of an organization.

We unpack the challenges posed by modern cloud architectures, load balancers, and WAFs, and how these can create blind spots in reconnaissance efforts. We also highlight the significance of subdomain data and passive DNS in uncovering hidden attack surfaces that traditional scanning methods might miss.

We talk about:
The limitations of Internet Wide Scanning
The importance of breadth and depth in attack surface mapping
Real-world examples of blind spots in modern infrastructure
The role of DNS and path-based routing in security assessments
Insights into IPv6 and its implications for discovery

For more details about Assetnote's Attack Surface Management Platform, visit https://assetnote.io/