Difference between revisions of "Episode374"

From Security Weekly Wiki
Jump to navigationJump to search
Line 26: Line 26:
  
 
<!---<center>[[File:Jabra.jpg]]</center> --->
 
<!---<center>[[File:Jabra.jpg]]</center> --->
 +
 +
 +
#What was it like moving into infosec from a Developer background?
 +
#Tell us a little bit about what you did with meterpreter?
 +
#What exactly is the sub encoder you built?
 +
#What do you do in your spare time to brush up on your shellcode and exploit development skills? It looks like you do quite a bit based on your blog.
 +
 +
  
  

Revision as of 12:11, 22 May 2014


Episode Media

Announcements

Paul's Security Weekly - Episode 373 for Thursday May 22nd, 2014

And now, from the dark corners of the Internet, where exploits run wild, packets aren’t the only things getting sniffed, and the beer flows steady its Paul’s Security Weekly!

  • This segment is sponsored by Palo Alto Networks creators of THE next-generation firewalls, helping you enforce network security policies based on applications, users, and content. Visit them on the web at www.paloaltonetworks.com
  • and by Tenable Network Security, the creators of Nessus, the worlds best vulnerability scanner. Check out Tenable's other cool products such as the passive vulnerability scanner and SecurityCenter Continuous View. Visit them on the web at www.tenable.com

Guest Interview: Oj Reeves (@TheColonial)

Biography:

OJ also known as TheColonial, comes from a developer background. In 2013, he looked at changing paths and found the infosec community. He's worked with rapid7, improving meterpreter and a slew of other projects that are full of awesomeness including kiwi and the optimal sub encoder for metasploit.


  1. What was it like moving into infosec from a Developer background?
  2. Tell us a little bit about what you did with meterpreter?
  3. What exactly is the sub encoder you built?
  4. What do you do in your spare time to brush up on your shellcode and exploit development skills? It looks like you do quite a bit based on your blog.



Five Questions

  1. Three words to describe yourself
  2. If you were a serial killer, what would be your weapon of choice?
  3. If you wrote a book about yourself, what would the title be?
  4. In the popular game of Ass Grabby Grabby do you prefer to go first or second?
  5. If you could have dinner with one celebrity, who would it be?



Tech Segment: Steve Christey

Biography:

Steve Christey is a Principal Information Security Engineer in the Security and Information Operations Division at The MITRE Corporation. He is the editor of the Common Vulnerabilities and Exposures (CVE) list, Chair of the CVE Editorial Board, and technical lead for the Common Weakness Enumeration (CWE), CWSS, and the CWE/SANS Top 25 Software Most Dangerous Software Errors.



Stories

  • This segment is brought to you by http://www.blacksquirrel.io/ - Pentest Networks from Your Browser! Exploit the limits of network security through just a browser. Have a Chrome exploit in your toolkit? Good, but for the rest of us there's Black Squirrel. Visit blacksquirrel.io for more information.
  • and by Onapsis the leading provider of solutions to protect ERP systems from cyber-attacks. Customers can secure their SAP and Oracle business-critical platforms from espionage, sabotage and financial fraud risks. Visit them on the web at http://www.onapsis.com/
  • and by Pwnie Express - Check out the community edition and turn your Nexus 7 into a lean and mean pen testing machine. For all those hard to reach places, there's Pwnie Express, visit them on the web at pwnieexpress.com

Paul's Stories

Larry's Stories

Jack's Stories

Joff's Stories