Update: Credential_Stuffing_Prevention_Cheat_Sheet - Issue #1315

OWASP / CheatSheetSeries

The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.

https://cheatsheetseries.owasp.org

Creative Commons Attribution Share Alike 4.0 International

27.08k stars 3.79k forks source link

Closed SCFTW closed 3 months ago

SCFTW commented 3 months ago

Added link to MFA Cheat sheet
Updated MFA statement to include FIDO2 Passkey info
Added risk-based step-up MFA bullets
Added definition of CAPTCHA and commentary including "or similar puzzle" to include modern Captcha replacements, also mentioned risk-based conditional use for improved usability
Added minor commentary in IP Mitigation section

This PR covers issue #1315

been a long time since I did anything in GitHub so LMK if I did anything wrong 😄

SCFTW commented 3 months ago

committed the suggested change and resolved the linter spacing issue