Episode435

From Security Weekly Wiki
Revision as of 23:47, 14 September 2015 by Kcrawford (talk | contribs)
Jump to navigationJump to search


Paul's Security Weekly - Episode 435 - 6:00PM

Episode Media

MP3 <-- Not yet published!

Intro, Sponsors & Announcements

Paul

This week the Security Weekly crew discusses how to convey the security message outside of the echo chamber, security news this week includes hacking satellites, lessons learned from cracking Ashley Madison web site passwords, and whole lot more so stay tuned!

Larry

Broadcasting live from G Unit Studios in Rhode Island, the show where exploits run wild, packets aren’t the only things getting sniffed, systems aren't the only things getting penetrated, functions are the only things getting wrapped, bits aren't the only things getting banged and the cocktails flow steady its Paul’s Security Weekly!

  • Brought to you by Pwnie Express - Check out the community edition and turn your Nexus 7 into a lean and mean pen testing machine. For all those hard to reach places, there's Pwnie Express, visit them on the web at http://pwnieexpress.com
  • And by Onapsis the leading provider of solutions to protect ERP systems from cyber-attacks. Customers can secure their SAP and Oracle business-critical platforms from espionage, sabotage and financial fraud risks. Visit them on the web at http://www.onapsis.com/
  • This segment is sponsored by The SANS institute the most trusted source for computer security training, certification and research. visit www.sans.org to learn more
  • Looking for a career change? Tenable Network Security is hiring! Everything from programmers to researchers, check out all of the available positions at http://securityweekly.com/tenablejobs. If you are listening to this show, check out the following two positions, both technical and both are work from home: Nessus Vulnerability Research Engineer and C Software Engineer

Larry

Now, fire up a packet capture, pour yourself an adult beverage, and give the intern control of your botnet...

Larry: Here's your host, a man that gives YouTube trolls the finger, Paul Asadoorian!"

Paul: Hello everyone and welcome to Paul's Security Weekly - Episode 435 for Thursday, September 17th 2015

Announcements

  • Purchase Hack Naked T-Shirts and stickers online at http://shop.securityweekly.com get yours today! For a limited time only use the discount code "HACKNAKEDSUMMER" and get 50% your order! Its a summer blow-out sale and ends on September 23, 2015 (The first official day of fall).
  • Tenable is looking for a Technical Director (http://jobvite.com/m?3sIczhwH), works from home in the US.

Interview: Josh Pyorre - 6:05PM-6:55PM

Bio

Josh Pyorre is a security analyst with OpenDNS. Previously, he was a threat analyst at NASA, where he was part of the team to initially help build the Security Operations Center. He has also done some time at Mandiant. His career in computer security has spanned 15 years, with interests involving network, computer and data security and a continuing goal to maintain and improve the security of as many systems, data and networks as possible. Josh has presented at Defcon, multiple Bsides across the USA and Source Boston.

He will be speaking at DerbyCon, Source Seattle, BSides LA and DeepSec in Vienna, all within the next two months.

Links

  1. OpenDNS Blog
  2. Twitter
  3. Bsides SF 2015


Questions/Topics

  1. How did you get your start in information security?
  2. Tell us about your time working for NASA.
  3. Can you tell us about your interaction with eBay and their responsible disclosure program?
  4. In a recent article, you showed which providers had the most phishing data, can you explain what steps you took to gather this?


  1. Three words to describe yourself.
  2. If you were a serial killer, what would be your weapon of choice?
  3. If you wrote a book about yourself, what would the title be?
  4. In the popular game of ass grabby-grabby, do you prefer to go first or second?
  5. Choose two celebrities to be your parents.


Stories of the Week - 7:00PM-8:00PM

Sponsors

  • And by Tenable Network Security, creators of Nessus, the world's best vulnerability scanner! Jumpstart your security program today and evaluate SecurityCenter CV, THE continuous monitoring solution. www.tenable.com
  • And by Netsparker, the developers of the ONLY false positive free web application security scanners, enabling you to automatically identify vulnerabilities and security flaws in all your websites, web applications and web services. Netsparker scanners are available in two editions, Netsparker Desktop and Netsparker Cloud, the enterprise level online scanning service. For more information visit their website on https//www.netsparker.com/securityweekly/
  • Brought to you by Black Hills Information Security, the leaders in penetration testing and active defense. Email consulting@blackhillsinfosec.com to request a quote today!

Announcements

  • Submit your B-Sides Tampa CFP here. This is a four night cruise, the conference is two full days at sea with a stop in Cozumel Mexico. Accepted talks receive a free cabin for two.
  • Larry teaching SANS 617 Wireless Ethical Hacking and Defense coming up in Las Vegas, NV, September 14-19, and the Pentest Hackfest in November in Washington, DC and lots more places so be certain to check the SANS web site for more course offerings!

Paul's Stories

Santa's Stories

Jack's Stories

Larry's Stories