Detections

We have a special guest who helps to check Exiled on his comments about working in the Government space. Peter Franklin joins us after recently have been freed after many years in the Government to discuss security in that space. Peter has recently returned to Twitter and can be found @ITSecCyclist and yes he does indeed love toast too!Support the show (https://www.patreon.com/bePatron?u=28069055)

This week we have a lot to discuss from news, to sudo hacks, understudy's new sudo song, to bsdbandit's obession with throwing curve balls when discussing the Attack Surface.https://www.bleepingcomputer.com/news/security/latest-macos-big-sur-also-has-sudo-root-privilege-escalation-flaw/https://flip.it/ImKHDnhttps://threatpost.com/microsoft-office-365-attacks-google-firebase/163666/https://threatpost.com/sudo-bug-root-access-linux-2/163395/https://www.bleepingcomputer.com/news/security/latest-macos-big-sur-also-has-sudo-root-privilege-escalation-flaw/Support the show (https://www.patreon.com/bePatron?u=28069055)

In this episode we have the pleasure to talk to the one and only MG, maker of the OMG cables about all things hardware hacking. It's a great one!https://twitter.com/_MG_https://o.mg.lolhttps://mg.lol/blog/Support the show (https://www.patreon.com/bePatron?u=28069055)

Tonight we catch up, share some deep and some fun news, and talk about the sys admins role in the infosec pipeline. Support the show (https://www.patreon.com/bePatron?u=28069055)

It is our first guest of season 4 and we had the honor of chatting with Tanya Janca or @shehackspurple on Twitter. We discuss application security, training, mentoring, and a few other fun things. We hope you enjoy this episode as much as we had fun with the conversation.Find out guest here:https://twitter.com/shehackspurple https://wehackpurple.com/ https://www.buzzsprout.com/1308235 https://www.amazon.com/Alice-Bob-Learn-Application-Security/dp/1119687357Support the show (https://www.patreon.com/bePatron?u=28069055)

In Season 4 episode 1 we mostly catch up from being off air for awhile and talk about threat modeling in the context of what happened at the capital in 2021. Support the show (https://www.patreon.com/bePatron?u=28069055)

Its time to Share the Mic!The Takeover: live in living color with The CyberReverend and Flannel Sec. Bringing their thoughts on starting out in Cybersecurity and how to get into the field regardless of your background by leveraging the experiences you already have. We also touch on the mindset necessary to make it through large scale crises such as the SolarWinds hacks and make sure your experiences make you better after the process. There are many shameless plugs and much gratitude for the opportunity. One last shameless plug, connect with us:@ComandanteBowieCyberReverend LinkedIn (https://www.linkedin.com/in/marcus-bowie-383a21b1)@Chad_Fryer21Flannel Sec LinkedIn (https://www.linkedin.com/in/c-fryer/)Help out with the Detections GitHub project - https://itpropaul/Detections-Podcast-DetectionsSupport the show (https://www.patreon.com/bePatron?u=28069055)

Tune in tonight when we talk with Masha Arbisman and Allie Hansen about this crazy voodoo know as Behavioral Engineering and how you can use it to get the results you need from users to make real significant changes to a security program and culture. Covering everything from the human element to diving into psychology this is a great episode with two wonderful special guests who can be found at the links below:@heyalliehansen@marbisman/in/marbismanSome links from the show:https://www.amazon.com/Talking-Strangers-Should-about-People/dp/0316478520https://www.amazon.com/Nudge-Improving-Decisions-Health-Happiness/dp/014311526Xhttps://www.amazon.com/Thinking-Fast-Slow-Daniel-Kahneman/dp/0374533555/ref=sr_1_2?dchild=1&keywords=thinking+fast+and+slow&qid=1608262624&s=books&sr=1-2Support the show (https://www.patreon.com/bePatron?u=28069055)

Welcome back to the podcast as we take some time to reflect on how working from home under COVID has been for us. We had an episode right at the beginning of the stay-at-home orders and thought it was time to see how well we did. Thank you for listening.Support the show (https://www.patreon.com/bePatron?u=28069055)

Deep Dive with Stephanie Lewis on the topic of DevSecOps@SECon202Support the show (https://www.patreon.com/bePatron?u=28069055)

Tonight we make some puns, discuss what to do when unemployed, and talk about training.https://www.reconinfosec.com/training/https://www.sans.org/cyber-security-courses/building-and-leading-security-operations-centers/https://corelight.com/support/training/Support the show (https://www.patreon.com/bePatron?u=28069055)

We are super excited to have @SecItUp as our guest this week. We dig into the deep stuff around leadership in InfoSec, how to embrace diversity, and the hosts ask the question; how can we be better allies? Support the show (https://www.patreon.com/bePatron?u=28069055)Support the show (https://www.patreon.com/bePatron?u=28069055)

Tonight we spend a little time on current events, a bit more on the news, and a lot of time joking around. For our topic we discuss if you need to code to be effective in infosec. Support the show (https://www.patreon.com/bePatron?u=28069055)

In this episode we talk to the wonderful John Hubbard about all things SOC, SANS, Podcasting, and wherever else the conversation goes. Be sure to tune it, its a great episode!Check out John here:SEC450: Blue Team Fundamentals - http://sans.org/sec450MGT551: Building and Leading Security Operations Centers - http://sans.org/mgt551Blueprint Podcast - https://www.sans.org/blueprint-podcast@SecHubb on Twitterhttp://sechubb.comSupport the show (https://www.patreon.com/bePatron?u=28069055)

Come along with us as we take a walk down memory lane, have a surprise segment with Recon Infosec about SocX, discuss just how intelligent one must be to be a hacker, and appreciate all of our supporters over the first year. Its a bit long, but many sentiments were shared.https://www.socx.ioRecon Infosec Episode: https://www.buzzsprout.com/667750/3167122 https://www.reconinfosec.com/Support the show (https://www.patreon.com/bePatron?u=28069055)

Tonight BSD and Understudy have a chat with Katelyn Bowden about advocacy, cyber policy, and defending victims of abuse. Its a great one so be sure to check it out. Make sure to follow @medus4_cdc for more!Support the show (https://www.patreon.com/bePatron?u=28069055)

This week Understudy has to prepare for a trip and that leaves BSDBandit and Exiled alone; watch out world. While Exiled is still training BSDBandit on how to stay in segment with the information, we cover some newer exploit techniques involving compiling on the system, how to detect this, and when dealing with legacy systems, how to give that sexy yes. Stay safe, go forth and find badness.Support the show (https://www.patreon.com/bePatron?u=28069055)

Tonight we have Mark Orlando join us and talk all things SOC, training, and infosec.Check him out: @markaorlando, https://www.bioniccyber.comSupport the show (https://www.patreon.com/bePatron?u=28069055)

Tonight on Detections, we trademark funny phrases, talk smack on Microsoft, discuss the revival of flash, and BSD forgets what segment we are in.Support the show (https://www.patreon.com/bePatron?u=28069055)

We continue our job series this week Ali on Insecurity as he discusses his role as an Incident Manager in the education space. We do deviate a bit to cover the event that happened recently in Dusseldorf with a hospital that was hit with ransomware. We do recommend that one listens through the end when Ali drops some wisdom on us.Support the show (https://www.patreon.com/bePatron?u=28069055)

Welcome to our new season of Detections where we keep true to our words and make this up as we go. We have a new member to the Detections family, BSDBandit! We are trying out some format changes and look forward to your response about the changes.Support the show (https://www.patreon.com/bePatron?u=28069055)

Tonight we discuss product security and bug bounty programs with a top tier program director, Sean Poris. Come for the glory of bug bounty and stay for how it relates to the defensive side. If anyone is interested in attending the event we mentioned in this episode, visit the following url, https://docs.google.com/forms/d/e/1FAIpQLScIOcmCix6GvKDb5lTphU_IIY-MUSoBPA3UAncR5FGfoWDs1Q/viewform.Support the show (https://www.patreon.com/bePatron?u=28069055)

While we have a bit of news to work through this week, our topic and last piece of news we blend together. In light of the massive lay off at Mozilla recently we take some time to discuss what functions are actually essential for the business to operate. We hope you enjoy and are staying safe while masked up.Support the show (https://www.patreon.com/bePatron?u=28069055)

We bring the listeners a slight change with our special guests for the week. This week have two women that we have watched grow as members of DeadPixelSec; where we discuss why they chose infosec as a career path and how they are getting into the industry. We hope you enjoy this conversation with @JenF3rr_ and @K4tTr33 as we did.https://medium.com/@k4ttr33https://medium.com/@Jenf3rr_Support the show (https://www.patreon.com/bePatron?u=28069055)

Since we are now getting into the summer of the Capture the Flag (CTF) within InfoSec, we discuss our opinions on the effectiveness of the CTF. This does involve the shameless promotion of our favorite CTF, OpenSOC from Recon Infosec. Stay safe, wear a mask, and go forth to find badness.Support the show (https://www.patreon.com/bePatron?u=28069055)

Disclaimer: In this episode we have to do what we don’t like to do and edit the episode. In this episode we are honored to have Ray [REDACTED] interview us! He tells us a bit about his background, we spend a lot of time discussing some current topics, and mental health in InfoSec. Ray also gives us the term Twinfosec (Twitter InfoSec) and we believe this is the beginning of a new industry term.Support the show (https://www.patreon.com/bePatron?u=28069055)

We bring you our next in the SOC-in-a-box series where we discuss tools. The focus is on those tools that help to get a SOC going and those tools that allow for flexibility as the SOC matures. We hope everyone is staying safe and masked when around people.Support the show (https://www.patreon.com/bePatron?u=28069055)

Y’all enjoy this episode as we welcome our retro gamer pal, old school mechanical keyboard cowboy, the BSDBandit, Charles Shirer. We take some time to discuss his path in this wild industry and his thoughts about the Red to Blue interaction and transition. Stay happy and enjoy your adventure. Dun dun.@bsdbandithttps://secbsd.org/https://github.com/SecureAuthCorp/impacketSupport the show (https://www.patreon.com/bePatron?u=28069055)

We finally did it, we lose the topic in favor if a couple of conversations from recent news we felt was important to unpack. From anti-trust, to bossware/privacy in the home-workplace, and the trend of everyday items like cars or refrigerators going to a rental service scheme is what we cover in this episode.Support the show (https://www.patreon.com/bePatron?u=28069055)

We are excited to have Joshua Beaman on as our special guest to discuss a new certification. With the release of Blue Team Level 1 certification from Security Blue Team recently, with both of us hosts on the advisory board, we wanted Joshua on to discuss what this is and the process he went through in building the training. Listen through the episode for a special announcement.https://securityblue.team/why-btl1/Support the show (https://www.patreon.com/bePatron?u=28069055)

Tonight we catch up on the news, have another appearance of this week in ring, and talk about the cost of entry into infosec and just how hard it can really be to get the qualifications that can help you get a job. Support the show (https://www.patreon.com/bePatron?u=28069055)

Kim brings us our first guest and insight how one can be involved with information security in a non-technical capacity. We hear about investigative journalism, surveillance technology, election security, and some stories related to her book about Stuxnet. We hope you enjoy this episode as much as we did.@KimZetterhttps://www.techcongress.io/https://lifehacker.com/you-need-this-iphone-shortcut-if-youre-protesting-1843824931Support the show (https://www.patreon.com/bePatron?u=28069055)

We take some time in this episode to discuss current events including Trump’s Executive Order about social media, our support of Black Lives Matter, how K-Pop stans are supporting, and how ransomware has not slowed down one bit while the USA is roiling with emotion. Specifically within the information security realm we discuss in a pro and con format MSSPs both as a potential business partner and as a potential employer. Black Lives Matter.Support the show (https://www.patreon.com/bePatron?u=28069055)

In the of our job focused special guest series we welcome Mat Lyons of Optiv's Enterprise Incident Management practice to help us kick this off. He brings us insight into what it is like being in Incident Response consultant. Stay healthy, stay safe, and go forth to find badness.https://www.optiv.com/security-solutions/security-services/incident-management-and-responseSupport the show (https://www.patreon.com/bePatron?u=28069055)

We are all still mostly stuck indoors and businesses are adapting to a more work-from-home style. We take some time to catch up on news before we jump into our lessons learned on how to effectively work from home. Stay healthy, seek help if you are suffering, and go forth and find badness.Support the show (https://www.patreon.com/bePatron?u=28069055)

Tonight we have Tony Lambert from Red Canary come chat with us about how he got his start in infosec, how helpful it can be to spend some time as a sysadmin, and most importantly how to find badness on Linux systems and why that's becoming more important every day. Tune in and afterward go check out Tony here:@ForensicITGuyhttps://redcanary.com/blog/https://redcanary.com/blog/rocke-cryptominer/http://man7.org/linux/man-pages/man8/ld.so.8.htmlSupport the show (https://www.patreon.com/bePatron?u=28069055)

Welcome to the beginning of a series where we discussing building a SOC. This is also the beginning of season number two for us as we continue to attempt to #makeblueteamsexy. This episode is an overview of what is the the critical core of building a SOC from nothing.Support the show (https://www.patreon.com/bePatron?u=28069055)

We pop our Enterprise cherry on this episode of Detections as we have a special guest from Polarity. This company produces an augmented reality software for a computer that we believe is extremely useful to the SOC. We hope his episode is informative, intriguing, and encourage everyone to stay tuned until the end where we get surprised by an announcement from Ed.Polarity.ioVisit https://polarity.io/detections/ for a 30 day trial.Support the show (https://www.patreon.com/bePatron?u=28069055)

In this episode we take a break and we go behind the microphone and talk about how we make our podcast. We start with the news and then jump into out main topic covering everything from our hardware to recording, to hosting and how you too can start your own podcast. In these times while everyone is stuck at home why not make a podcast? hopefully we can talk through the tips and tricks we learned in the last 21 episodes and make that journey simpler on you.Support the show (https://www.patreon.com/bePatron?u=28069055)

We discuss everything from Animal Crossing to Veronica Mars and the tools that Jay Lagorio contributes to in his limited spare time in this episode. We invited Jay to join us as he is part of Opsec Edu along with a former guest, Jared Folkins, and has a really cool OSINT tool named Craal.https://twitter.com/jaylagoriohttps://github.com/jaylagorio/CraalSupport the show (https://www.patreon.com/bePatron?u=28069055)

Doctors, plumbers, mechanics, and all of the professions have a toolbox full of items they need to complete the job. This episode of Detections we cover what is in our toolbox as SOC analysts for conducting the investigation of alerts and events. The tools discussed in this episode are drawn from our experience in our careers and what we have found to be useful for us. We encourage everyone to pick the ones that work for them.Support the show (https://www.patreon.com/bePatron?u=28069055)

Tonight we talk with two of the brilliant minds behind the company Recon InfoSec and the OpenSOC challenge platform, Eric Capuano (@Eric_Capuano) and Whitney Champion (@shortxstack). We talk managed services at scale, running a company on open source technology, infosec training, and all about the OpenSOC CTF. This was one of the most fun discussions that we had and enjoyed talking with some people that truly #makeblueteamsexy. If you get on this one early you might find some surprises in store for you.https://reconinfosec.com/https://opensoc.iohttps://github.com/ReconInfoSechttps://blog.reconinfosec.com/analysis-of-exploitation-cve-2020-10189/https://forms.gle/cPB4wjGd6MsSvnib6Support the show (https://www.patreon.com/bePatron?u=28069055)

We are two men cut from the agreement this time. Rarely do co-hosts come and then go on opinions like Understudy did with this topic. This topic was aglow soft but a strange view for this information security industry. We were the two our lives rearranged by COVID-19, yet we were feeling so good that day. Twisting and turning Your feelings are burning We're Breaking the InfoSec ColorwheelSupport the show (https://www.patreon.com/bePatron?u=28069055)

During this social isolation event brought to us by COVID-19 we managed to the get the man, myth, and legend Jeff Mann on as a special guest. Jeff brings us a little bit of history lessons, but also is dear to us at Detections as he was integral in building the initial connections to make the podcast a real thing. We hope you enjoy this episode with Jeff as he covers his background and how compliance helps make organizations secure.https://twitter.com/MrJeffManhttps://securityweekly.com/category-shows/security-and-compliance-weekly/Support the show (https://www.patreon.com/bePatron?u=28069055)

Tonight on Detections:Exiled talks about hills.Understudy gets timey wimey.We screw up the episode order on air.We go through a huge backlog of news and talk about home networks so Understudy can gush a little about his Dream Machine but also how you can build cool network tools on a budget. As always head over to Detections.org for all the news links.Support the show (https://www.patreon.com/bePatron?u=28069055)

Tonight on Detections Understudy is here while Exiled is off living it up in Mexico but never fear we have a special guest to fill in. A huge influence to both Understudy and Exiled we invite Chris Sanders on the show to talk about the mental and human aspects of analysis as well as his work with the Rural Tech Fund. If you enjoy this episode please go check out some of the works by Chris located here:https://chrissanders.org/https://ruraltechfund.org/https://twitter.com/chrissanders88Support the show (https://www.patreon.com/bePatron?u=28069055)

In another episode where we play with time once again to bring a discussion about the detections ownership of a SOC. Co-managing can be difficult as we humans tend to be difficult when interacting with one another. Be sure to check out The Diana Initiative Leap Day fundraiser stream, https://www.dianainitiative.org/leap-day-twitch-stream.Support the show (https://www.patreon.com/bePatron?u=28069055)

This episode of Detections podcast is sponsored by a tweet from Understudy. We changed our topic last minute due to the reactions of his tweet, https://twitter.com/Understudy77/status/1227697319644221440?s=20, about overly high requirements for entry level jobs in information security. Be sure to check out The Diana Initiative Leap Day fundraiser stream, https://www.dianainitiative.org/leap-day-twitch-stream.Support the show (https://www.patreon.com/bePatron?u=28069055)

In another of our Basically Speaking series we take the information back to the start of malware analysis. We cover tools to use, the virtual machine, and even a couple of malware evasion techniques. Our example shows that anyone can partake in malware analysis to learn where it brings tears and joys of discovery.Support the show (https://www.patreon.com/bePatron?u=28069055)

This episode continues along with another special guest. This guest has an exciting tool that he is developing for the community and part of an excellent organization, Opsec Edu. This episode we talk with Jared Folkins, who can also be found in the book Tribe of Hackers: Red Team, about Opsec Edu and his detection through deception tool Kushtaka.Support the show (https://www.patreon.com/bePatron?u=28069055)

In this first of many SOC focused topics we jump into what is the core passion for both hosts, that of the SOC. We discuss in this episode about what is and our opinion on a tiered versus a tierless SOC model. As Exiled recently attended the free threat hunting course from Black Hills Information Security and Active Countermeasures he also offers a brief review of that course. We hope each of you get more information to continue to find badness.Support the show (https://www.patreon.com/bePatron?u=28069055)