In AppSec, it's basically impossible to know for certain that you’ve found all the vulns in a given website. For similar reasons, the same is true in Asset Inventory. It’s impossible to know that you’ve found all a companies Internet-connected assets.
There is always a discomfort level in this understanding. But what I’ve found is that if you’re diligent and follow a process that accounts for all the known discovery techniques, the odds of an adversary exploiting a missed area and causing harm is exceedingly low.
And effectively every InfoSec industry report says the same thing. When bad things happen (ie breach, fraud, etc), it’s almost always the result of NOT doing something we already knew should have been done. Rare does the way a hack happened genuinely surprise us.
Another notable AppSec and Asset Inventory similarity. Counting.

How exactly do you go about counting the total number of vulnerabilities in a website? It’s harder than you think, and everyone has a different way of doing it.
How do you count Internet-connected asset? Think about CNAMES, wildcard DNS, redirects, vanity domains, intl TLDs, etc etc.
You can follow @jeremiahg.
Tip: mention @twtextapp on a Twitter thread with the keyword “unroll” to get a link to it.

Latest Threads Unrolled:
Those who think consciousness raising & movement building are disconnected, or even a distraction from electoral politics have not paid attention to the history of social change.In this thread, we
Read more
The 2020s will be known as the Remote Work decadeA few predictions of what is likely to emerge[ a thread ] Third Space: Office and Working from Home will
Read more
1/29: Have you ever had a concept explained to you that helps frame complex issues you’ve been wrestling with and opens your eyes to new possibilities? A concept that I
Read more
By continuing to use the site, you are consenting to the use of cookies as explained in our Cookie Policy to improve your experience.