Paul's Security Weekly Subscribe

Angry Floppy Birds – Paul’s Security Weekly #574

September 7, 2018

Full Audio

View Show Index

Segments

1. Wim Remes, Wire Security bvba –

Wim Remes from Wire Security bvba comes on the show to talk about pentesting, SDLC, the state of security, life of a (virtual) CISO, and certifications.

Full Show Notes: https://wiki.securityweekly.com/Episode574

Hosts

Paul Asadoorian

Principal Security Evangelist at Eclypsium

https://securitypodcaster.com

Principal Consultant, Team Lead for Research at TrustedSec

https://www.trustedsec.com/

Professor at Roger Williams University

https://securedigitallife.com/

Security Wizard at Co-Founder of Security BSides

http://www.securitybsides.com/w/page/12194156/frontpage

Security Analyst at Black Hills Information Security

https://www.blackhillsinfosec.com/team/joff-thyer/

Senior Sales Engineer at Barkly

Patrick Laverty

Security Consultant at Rapid 7

http://patricklaverty.com/

2. Beacon Analysis, Chris Brenton –

Beacon analysis is an integral part of threat hunting. If you are not looking for beacons you take the chance of missing compromised IoT devices or anything that does not have a threat mitigation agent installed. I'll talk about what makes beacon hunting so hard, and how the open source tool RITA can simplify the process.

Full Show Notes: https://wiki.securityweekly.com/Episode574

Hosts

Paul Asadoorian

Principal Security Evangelist at Eclypsium

https://securitypodcaster.com

Principal Consultant, Team Lead for Research at TrustedSec

https://www.trustedsec.com/

Professor at Roger Williams University

https://securedigitallife.com/

Security Wizard at Co-Founder of Security BSides

http://www.securitybsides.com/w/page/12194156/frontpage

Security Analyst at Black Hills Information Security

https://www.blackhillsinfosec.com/team/joff-thyer/

Senior Sales Engineer at Barkly

Patrick Laverty

Security Consultant at Rapid 7

http://patricklaverty.com/

3. Supermicro, Apache Struts, & HTTPS –

In the security news, Spanish driver tests positive for every drug test, vulnerabilities found in the remote management interface of Supermicro servers, Apache Struts 2 flaw in the wild, HTTPS crypto-shame, and how to manipulate Apple's podcast charts!

Full Show Notes: https://wiki.securityweekly.com/Episode574

Hosts

Paul Asadoorian

Principal Security Evangelist at Eclypsium

https://securitypodcaster.com

Principal Consultant, Team Lead for Research at TrustedSec

https://www.trustedsec.com/

Professor at Roger Williams University

https://securedigitallife.com/

Security Wizard at Co-Founder of Security BSides

http://www.securitybsides.com/w/page/12194156/frontpage

Security Analyst at Black Hills Information Security

https://www.blackhillsinfosec.com/team/joff-thyer/

Senior Sales Engineer at Barkly

Patrick Laverty

Security Consultant at Rapid 7

http://patricklaverty.com/

4. Beacon Analysis, Chris Brenton – Paul’s Security Weekly #574

Beacon analysis is an integral part of threat hunting. If you are not looking for beacons you take the chance of missing compromised IoT devices or anything that does not have a threat mitigation agent installed. I'll talk about what makes beacon hunting so hard, and how the open source tool RITA can simplify the process. Powerpoint Slides in Full Show Notes Full Show Notes: https://wiki.securityweekly.com/Episode574 Visit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.com/securityweekly

5. Wim Remes, Wire Security bvba – Paul’s Security Weekly #574

Wim Remes from Wire Security bvba comes on the show to talk about pentesting, SDLC, the state of security, life of a (virtual) CISO, and certifications. Full Show Notes: https://wiki.securityweekly.com/Episode574 Visit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.com/securityweekly

6. Supermicro, Apache Struts, & HTTPS – Paul’s Security Weekly #574

In the security news, Spanish driver tests positive for every drug test, vulnerabilities found in the remote management interface of Supermicro servers, Apache Struts 2 flaw in the wild, HTTPS crypto-shame, and how to manipulate Apple's podcast charts! Full Show Notes: https://wiki.securityweekly.com/Episode574 Visit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.com/securityweekly

Related

Vulnerability Management

Combadges, SISENSE, Microsoft, CISA, Lastpass, Palo Alto, Broadband, Aaran and More – SWN #377

April 12, 2024

Combadges, SISENSE, Microsoft, Malware Next-Gen, Lastpass, Palo Alto, Broadband, Aaran Leyland, and More, on this edition of the Security Weekly News.

Managed Services

Understanding KillNet and Recent Waves of DDoS Attacks – Michael Smith – ESW #357

April 11, 2024

In the days when Mirai emerged and took down DynDNS, along with what seemed like half the Internet, DDoS was as active a topic in the headlines as it was behind the scenes (check out Andy Greenberg's amazing story on Mirai on Wired). We don't hear about DDoS attacks as much anymore. What happened? Well, they didn't go away. DDoS attacks are a more...

The AI-est news segment ever, now with even more AI! – ESW #357

April 11, 2024

This week, Tyler and Adrian discuss Cyera's $300M Series C, which lands them a $1.4B valuation! But is that still a unicorn? Aileen Lee of Cowboy Ventures, who coined the term back in 2013, recently wrote a piece celebrating the 10th anniversary of the term, and revisiting what it means. We HIGHLY recommend checking it out: https://www.cowboy.vc/ne...