Merch is now 20% off in the Easter sale
Resources/Stopping Account Takeover at the Recovery Layer

Stopping Account Takeover at the Recovery Layer

Recovery as privileged access: account enumeration, reset token lifecycle, leakage paths, MFA reset, email change, session shutdown, and monitoring.

Talk slides (Google Slides)

Link

View or download the BSides Exeter deck from Google Slides.

Link • Updated 2026-04-25

Open

Account Recovery Hardening Checklist

Checklist

Practical checklist for recovery chains, signaling, token lifecycle, leakage paths, shutdown, notifications, and monitoring.

Checklist • Updated 2026-04-25 • TBC

Download

Interested in updates on new npm releases?

Sign up with your email and get fresh updates as soon as they drop.