Podcasts

Our content is now available for download so you can listen offline. Check back as we add more episodes.

5 year

, , , , ,

PODCAST: John Strand’s 5 Year Plan into InfoSec Part 2

John Strand shares some of his own journey into information security and also his ideas and tips for those wanting to get into the industry from the start, or those looking to change career paths mid stream. He’s joined by special guests Randy Marchany, CISO of Virginia Tech & Director of the VA Tech IT […]

Podcast: Play in new window | Download

Read the entire post here

beacon analysis small

, , , , , , , ,

PODCAST: Beacon Analysis

Join special guest Chris Brenton, COO of Active Countermeasures, as he discusses the anatomy of beacons and why you need to be looking for them during a threat hunt. He also talks through the challenges of detecting beacons, and some tricks you can use. Slides from the full webcast can be found here: www.activecountermeasures.com/threat-hunting-beacon-analysis-september-11-2018/

Podcast: Play in new window | Download

Read the entire post here

What is a Red Team

, , , , , ,

PODCAST: What Is a Red Team, Anyway?

Dakota Nelson // Dakota talks about the pentester pyramid of pain and the different types of tests available from an information security firm. See his slides here: https://blackhillsinformationsecurity.shootproof.com/gallery/7404264/ Extra links & notes: From guest blog post by Scott Worden: Having the penetration tester reach your crown jewels, get root, own you, pwn you, own3d, 0wn3d, pwned, […]

Podcast: Play in new window | Download

Read the entire post here

Attack Tactics 4

, , ,

PODCAST: From Active Countermeasures – Attack Tactics 4

Join John Strand as he continues his Attack Tactic series this time with the defense ideas for the attacks mentioned in episode 3 (see more here) To see the entire webcast visit the Active Countermeasures YouTube channel Blogs mentioned in this episode: Mike Felch’s Stealing 2FA Tokens on Red Teams with CredSniper Carrie Roberts’ Gathering […]

Podcast: Play in new window | Download

Read the entire post here

ad

, , ,

PODCAST: Active Directory Best Practices that Frustrate Pentesters

// Jordan Drysdale and Kent Ickler talk about Best Practices for setting up Active Directory. Bre joins as fake Sierra to host and ask questions from the audience since real Sierra was on vacation. See the webcast and Kent’s show notes here.  

Podcast: Play in new window | Download

Read the entire post here

Security Poli

, , , ,

PODCAST: Security Policy: Fact Fiction or Implement the Marquis de Management

CJ Cox talks about the highs, lows, hows and why’s of security policy. // Show Notes Why are we doing this? Do you hate your audience? GDPR was bad enough. My Methodology The Rant Cross between Bob Cat Goldthwaite and Dennis Miller Policy is the foundation to the foundation Don’t we all just love Policy […]

Podcast: Play in new window | Download

Read the entire post here

AT 3

, , ,

PODCAST: Attack Tactics Part 3: No Active Directory? No Problem!

John Strand talks about how BHIS pen tests companies who use the cloud. Want to know how you can defend against attacks in your cloud infrastructure? Keep your eyes peeled for part 4! Links: Slides for this webcast can be found here, along with the full video Chris Truncer’s GitHut: EyeWitness Chris’s user guide to EyeWitness […]

Podcast: Play in new window | Download

Read the entire post here

1 2