CyberSpeaksLIVE is a weekly InfoSec podcast series hosted by Duncan McAlynn (@infosecwar) and his special guest co-hosts, where YOU get to participate in the discussions with full video and audio. Following the live recording, we add the audio-only stream into our podcast feed for our awesome subscribers. CyberSpeaksLIVE gives YOU, the InfoSec community, a voice that can be heard around the world! Follow us on Twitter for upcoming guests announcements and live recording invites, @cyberspeakslive.
All things AppSec and Purple Teaming with Tanya Janca, founder of the We Hack Purple community platform.
--- Send in a voice message: https://podcasters.spotify.com/pod/show/cyberspeakslive/messageIn this lively episode we speak with several contributing authors of the wildly popular TRIBE OF HACKERS - BLUE TEAM EDITION book.
--- Send in a voice message: https://podcasters.spotify.com/pod/show/cyberspeakslive/messageLesley Carhart (@hacks4pancakes) joins us for the reboot of CyberSpeaksLIVE featuring Alethe Denis (@alethedenis) as our new co-host.
Lesley is a Principal Industrial Incident Responder at the industrial cybersecurity company Dragos, Inc. She has spent more than a decade of her 20+ year IT career specializing in information security, with a heavy focus on response to nation-state adversary attacks. She is also the founder of the PancakesCon virtual conference occurring on Sunday 3/21/21. Details about events, villages, talks, and miscellany are available on the website: pancakescon.com or by following the event on Twitter (@PancakesCon).
In her free time (when she has it), she enjoys various martial art forms an quite skilled with a blade. She also teaches the discipline of martial arts to the younger generations.
Joe Gray is a passionate Information Security professional, mentor, and public speaker on the topics of OSINT and Social Engineering techniques and methodology. During this episode, Joe shares his insights with our listeners on the tools and techniques to become a social engineering professional using OSINT-powered methods.
Please note, this episode has a special intro featuring Adrian Korn from TraceLabs (https://tracelabs.org), a non-profit organization that assists law enforcement agencies locate missing persons through crowd sourced OSINT research and capture-the-flag style online events.
Joe's Upcoming Book:
Practical Social Engineering
https://www.amazon.com/Practical-Social-Engineering-Joe-Gray-ebook/dp/B085BW1P6R/
Social Connections:
Twitter:
https://twitter.com/C_3PJoe
https://twitter.com/TheOSINTion
LinkedIn:
https://www.linkedin.com/in/joegrayinfosec/
CyberSpeaksLIVE with Jim O'Gorman of Offensive Security (@offsectraining) and our panel of #OSCP certified experts discuss everything you need to know to prepare yourself for the exam. Our panel includes:
Learn about the OffSec Giving Program: https://www.offensive-security.com/offsec/offsec-giving-program/
Join the Dead Pixel Sec community: https://deadpixelsec.com/
Follow the OffSec Community Lead, @TJ_Null, on Twitter
Connect with NOVA region hackers: https://novahackers.com/
Help support the @DianaInitiative and their events: https://dianainitiative.org
::TALKING POINTS::
Alethe Denis is a social engineer who specializes in open-source intelligence (OSINT) and phishing, specifically voice elicitation or phishing over the phone. Awarded a DEF CON Black Badge at DEFCON 27 for Winning the Social Engineering Capture the Flag (SECTF) contest, she is the VP of Dragonfly Security, CFO of PENGUIN, Voice & Data Services and a Founding Member of the DC209 DEFCON Group.
She's presented at BSides San Francisco, the Layer 8 Conference, and WHackzCon as well as joined panels at DerbyCon and the Human Firewall Event. Most recently, she and her team 'Password Inspection Agency' placed Second in the TraceLabs Global Missing Persons OSINT CTF V. She also volunteers as a TraceLabs content contributor and judge (when she’s not competing) and is an Innocent Lives Foundation Advocate creating awareness of the Innocent Lives Foundation Mission.
::LINKS::
In this episode, we're joined by the distinguished SANS Institute fellow Dr. Johannes Ullrich, expert red teamer, author and university instructor, Phillip Wylie, and veteran recruiter extraordinaire, Juliana Riahi.
Together, along with our live online audience, we discuss the various perspectives of what matters most when considering one’s career paths, salary ranges and challenges they may face along the way.
Connect with our special guests co-hosts:
Juliana - https://sttjobs.com/
Johannes - @johullrich
Phillip - @PhillipWylie
Mentions:
Internet Storm Center Daily Stormcast
SANS Institute
Pwn School Project
Tribe of Hackers
ISSA
ISACA
ISC(2)
FBI InfraGard
Meetup
This week we are joined by Jared Folkins (@JF0LKINS) as he introduces us to his open source honeypot sensor system, Kushtaka, that helps you detect cyber attackers before they become entrenched.
Jared will be joined by Nathan McNulty (@nathanmcnulty), to give his firsthand account of using Kushtaka in production.
This week we also introduce a new segment where we'll be highlighting a non-profit charity or upcoming conference each episode. This week we'll be talking with wirefall, founder of @Dallas_Hackers and board member @BSidesDFW.
About Jared:
After surviving the dot-com crash of the late 90s, Jared Folkins went on to have a long career in systems and programming. In 2013 he turned a hobby into a career and has never looked back. Known for having technical chops and a high emotional IQ, he enjoys working with those who prioritize goals and people, while placing egos last.
He currently Red Teams for ThreatHound.com, Blue Teams for Bend La Pine Schools, and breaks down software while building up people at OpsecEdu.com.
If you want his help or you just need a new InfoSec friend, contact him at JaredFolkins.com.
Connect with Jared:
LinkedIn - https://www.linkedin.com/in/jared-folkins-b18783179/
Twitter - @JF0LKINS
In this episode, we are joined by the legendary Yuri Diogenes, Sr. Program Manager for Microsoft's Azure Security Center (ASC) product. Yuri has literally written the book on the subject and shares with us his keen insights into the platform, as well as CSPM and CWPP scenarios.
Here are some important links that Yuri has also shared with us:
Also be sure to grab a copy of Yuri's print or electronic book, Microsoft Azure Security Center 2nd Edition, from MS Press for 30% off during checkout using the special Cyber Speaks LIVE discount code, AZURESEC:
https://www.microsoftpressstore.com/store/microsoft-azure-security-center-9780135752036. (Valid thru Nov. 28, 2019 only.)
PLEASE, also listen to and share the Ryen Macababbad episode on Vets in Cyber. It is probably the most important episode we've recorded to-date.
The Azure product updates website mentioned during the show is available at: https://azurecharts.com. Enjoy!
And, thank you to Nick Espinosa for providing data regarding the breaches of the week. Be sure to follow him on Twitter: @NickAEsp
Your feedback is valuable to us. Should you encounter any bugs, glitches, lack of functionality or other problems, please email us on [email protected] or join Moon.FM Telegram Group where you can talk directly to the dev team who are happy to answer any queries.