Social engineering

“Under the Hoodie:” Rapid7’s 2020 Pen Testing Report – Kwan Lin – ESW #196

Penetration testing is the practice of simulating a criminal breach of a sensitive area in order to uncover and fix defensive failures. Rapid7 just released it's 2020 "Under the Hoodie" report which looks at the last 12 months of data exploring the hows and whys of penetration testing, covering mainly internal and external network compromises, with some supplementary data on social engineering and red team simulations. During this podcast we'll talk about some of the key findings and ways you can better secure yourself in the following areas: -Internal network configuration and patch management -Password management and secondary controls - VPNs and internet-based applications This segment is sponsored by Rapid7. Visit to learn more about them!

Sponsored By

Full episode and show notes


  • Don't miss any of your favorite Security Weekly content! Visit to subscribe to any of our podcast feeds and have all new episodes downloaded right to your phone! You can also join our mailing list, Discord server, and follow us on social media & our streaming platforms!


Kwan Lin
Kwan Lin
Principal Data Scientist at Rapid7

Kwan is a Senior Data Scientist on the Rapid7 Labs team. His day to day activities often involve analyzing large-scale honeypot or Internet-scan data, applying statistical and machine learning methods to address research or operational challenges, and producing data visualizations to communicate findings to broad audiences. Kwan is a former Certified Public Accountant and holds degrees in International Security and Economics from the Fletcher School of Law and Diplomacy and Brown University.


Paul Asadoorian
Paul Asadoorian
Founder at Security Weekly
Matt Alderman
Matt Alderman
VP, Product at Living Security
prestitial ad