Podcasts about No Starch Press

Patrick Wardle's a busy guy, and 2025 is no exception! No Starch Press just published volume two of the Art of Mac Malware on Detection, including a free PDF version. Objective by the Sea is back in October in the Balearics. iOS Security Research is a new area of focus, but there's plenty to talk about. Welcome back, Patrick! Hosts: Tom Bridge - @tbridge@theinternet.social Marcus Ransom - @marcusransom Guests: Patrick Wardle - LinkedIn Links: The Art of Mac Malware Volume 2 Sponsors: Kandji 1Password Nudge Security Watchman Monitoring If you're interested in sponsoring the Mac Admins Podcast, please email podcast@macadmins.org for more information. Get the latest about the Mac Admins Podcast, follow us on Twitter! We're @MacAdmPodcast! The Mac Admins Podcast has launched a Patreon Campaign! Our named patrons this month include Weldon Dodd, Damien Barrett, Justin Holt, Chad Swarthout, William Smith, Stephen Weinstein, Seb Nash, Dan McLaughlin, Joe Sfarra, Nate Cinal, Jon Brown, Dan Barker, Tim Perfitt, Ashley MacKinlay, Tobias Linder Philippe Daoust, AJ Potrebka, Adam Burg, & Hamlin Krewson  

“As software engineers, only a fraction of your time is spent coding. A lot of your time is spent thinking. And I'm not seeing LLMs taking that away from us anytime soon, at least, for now." Can AI help you learn to code? Will AI take your developer job? Join me discussing these topics with Leo Porter and Daniel Zingaro, the co-authors of “Learning AI-Assisted Python Programming”. In this episode, we discuss the impact of AI assistants on how we learn and approach programming, particularly for students and educators. We examine the shifting skillset of developers, emphasizing the importance of code reading, specification, testing, and problem decomposition over syntax and library semantics. We also confront critical questions like the ethical implications of AI, the potential impact on developers' job, and whether it can help lead us to a more equitable society.   Listen out for: Career Journey - [00:01:11] AI Assistant - [00:07:55] How AI Assistant Affect Student - [00:11:04] Problem Decomposition Skill - [00:16:46] How LLM Works - [00:19:47] Prompt Engineering - [00:23:36] Automating Tedious Tasks - [00:29:29] AI Ethical Issues - [00:33:30] AI Replacing Developers - [00:40:08] A More Equitable Society - [00:47:34] 3 Tech Lead Wisdom - [00:55:58] _____ Leo Porter's BioLeo Porter is a Teaching Professor in the Computer Science and Engineering Department at UC San Diego. He is best known for his award-winning research on the impact of Peer Instruction in computing courses, the use of clicker data to predict student outcomes, and the development of the Basic Data Structures Concept Inventory. He co-wrote the first book on integrating LLMs into the instruction of programming with Daniel Zingaro, entitled “Learn AI-Assisted Python Programming: With GitHub Copilot and ChatGPT”. He also co-teaches popular Coursera and edX courses with over 500,000 enrolled learners. He is a Distinguished Member of the ACM. Daniel Zingaro's BioDr. Daniel Zingaro is an award-winning Associate Teaching Professor of Mathematical and Computational Sciences at the University of Toronto Mississauga. He is well known for his uniquely interactive approach to teaching and internationally recognized for his expertise in active learning. He is the co-author of “Learn AI-Assisted Python Programming” (Manning Publications, 2023), author of “Algorithmic Thinking” 2/e (No Starch Press, 2024), co-author of “Start Competitive Programming!” (self-published, 2024), and author of Learn to Code by Solving Problems (No Starch Press, 2021). Follow Leo & Daniel: Leo's LinkedIn – linkedin.com/in/leoporter/ Daniel's LinkedIn – linkedin.com/in/danielzingaro _____ Our Sponsors Manning Publications is a premier publisher of technical books on computer and software development topics for both experienced developers and new learners alike. Manning prides itself on being independently owned and operated, and for paving the way for innovative initiatives, such as early access book content and protection-free PDF formats that are now industry standard.Get a 45% discount for Tech Lead Journal listeners by using the code techlead45 for all products in all formats. Like this episode? Show notes & transcript: techleadjournal.dev/episodes/165. Follow @techleadjournal on LinkedIn, Twitter, and Instagram. Buy me a coffee or become a patron.

On this episode of The Cybersecurity Defenders Podcast we take a look into the cybercriminal underworld with Jon DiMaggio, Chief Security Strategist at Analyst1.Jon DiMaggio is the chief security strategist at Analyst1 and has over 15 years of experience hunting, researching, and writing about advanced cyber threats. As a specialist in enterprise ransomware attacks and nation-state intrusions, such as”Ransom Mafia:Analysis of the World's first Ransomware Cartel”,“Nation State Ransomware” and a “History of REvil”. He has exposed the criminal cartels behind major ransomware attacks, aided law enforcement agencies in federal indictments of nation-state attacks, and discussed his work with The New York Times, Bloomberg, Fox, CNN, Reuters, and Wired. You can find Jon speaking about his research at conferences such as RSA. Additionally, in 2022, Jon authored the book “The Art of Cyberwarfare: An Investigator's Guide to Espionage, Ransomware, and Organized Cybercrime” published by No Starch Press.You can buy “The Art of Cyberwarfare: An Investigator's Guide to Espionage, Ransomware, and Organized Cybercrime” here.The Ransomware Diaries: Volume1 & Volume2Jon DiMaggio on LinkedInJon DiMaggio on Twitter

The podcast episode features Jeff Friesen, an award-winning photographer, author, LEGO artist, and creator of miniature worlds.Jeff's work has received recognition in the photography world, including an Award of Excellence from Communication Arts, and his LEGO art has garnered international attention.The interview explores Jeff's journey into the world of LEGO art, his creative process, and his book, "The LEGO Engineer."Key Topics and QuotesInspiration for LEGO EngineeringJeff's interest in LEGO engineering stemmed from his desire to understand complex engineering concepts and make them accessible to a general audience.Jeff: "If someone could explain to me how an airplane flies in a way that I, as a layperson with no engineering background, could understand, then it would be valuable to others too."Balancing Aesthetics with EngineeringJeff's LEGO creations not only focus on aesthetics but also delve into the engineering principles behind each model.Jeff emphasizes the importance of combining beauty with functionality in LEGO creations, mirroring real-world engineering challenges.Iterative Process and Problem-SolvingBuilding with LEGO is akin to solving a puzzle, and the process involves constant problem-solving.Jeff describes the iterative nature of LEGO building and the satisfaction of overcoming challenges: "You're always limited by the shape of the bricks, so you have to think creatively to deal with these limitations."Publishing "The LEGO Engineer"Jeff's book, "The LEGO Engineer," focuses on explaining engineering concepts through LEGO creations.He highlights the collaborative process with his publisher, No Starch Press, and the importance of proving oneself through previous publications.Jeff mentions the challenge of combining technical and aesthetic aspects in the book's design.Advice for Creative PractitionersJeff advises creatives to continually refine their work, even when they believe it's complete, and to focus on personal projects.He emphasizes the potential of personal projects as gateways to larger opportunities, highlighting that his LEGO journey began with playing with his daughter.ConclusionThe interview with Jeff Friesen showcases the intersection of art and engineering in LEGO creations. Jeff's dedication to making complex engineering concepts accessible to a broader audience offers valuable insights for creative practitioners. His iterative process and commitment to personal projects underscore the importance of persistence and continuous improvement in creative endeavors.Jeff's Website @jeff_works on Instagram Book: The LEGO EngineerCopyright 2023 Mark Stinson Thanks to the folks at HEADFONE for their support. On HEADFONE, you can listen to Premium Audio dramas - like Romance, Thriller, and Horror. For a 10% discount, use coupon code - MARKCREATIVITY10Go to - https://headfone.page.link/MARKCREATIVITY10

A variety of issues this week, DOM Clobbering, argument injection, a filesystem race condition, cross-site scripting, and a normalization-based auth bypass. Links and vulnerability summaries for this episode are available at: https://dayzerosec.com/podcast/173.html [00:00:00] Introduction [00:00:41] Humble Tech Book Bundle: The Art of Hacking by No Starch Press [00:03:23] Hijacking service workers via DOM Clobbering [00:11:14] Grafana RCE via SMTP server parameter injection [00:16:33] Race condition in snap-confine's must_mkdir_and_open_with_perms() [CVE-2022-3328] [00:23:56] XSS on account.leagueoflegends.com via easyXDM [00:32:41] [Hyundai] Remotely control the locks, engine, horn, headlights, and trunk of vehicles made after 2012. The DAY[0] Podcast episodes are streamed live on Twitch twice a week: -- Mondays at 3:00pm Eastern (Boston) we focus on web and more bug bounty style vulnerabilities -- Tuesdays at 7:00pm Eastern (Boston) we focus on lower-level vulnerabilities and exploits. We are also available on the usual podcast platforms: -- Apple Podcasts: https://podcasts.apple.com/us/podcast/id1484046063 -- Spotify: https://open.spotify.com/show/4NKCxk8aPEuEFuHsEQ9Tdt -- Google Podcasts: https://www.google.com/podcasts?feed=aHR0cHM6Ly9hbmNob3IuZm0vcy9hMTIxYTI0L3BvZGNhc3QvcnNz -- Other audio platforms can be found at https://anchor.fm/dayzerosec You can also join our discord: https://discord.gg/daTxTK9

The end of kASLR bypasses? Probably just click-bait, but the patch gap is real and we discuss that a bit before getting into a couple AI-based corruptions. Links and vulnerability summaries for this episode are available at: https://dayzerosec.com/podcast/172.html [00:00:00] Introduction [00:01:15] Spot the Vuln - Escape [00:06:00] Humble Tech Book Bundle: The Art of Hacking by No Starch Press [00:11:00] An End to KASLR Bypasses? [00:15:59] Mind the Gap [00:24:36] ANE_ProgramCreate() multiple kernel memory corruption [CVE-2022-32898] [00:34:29] Chat Question: Guides/Techniques to Help With C++ Reverse Engineering [00:36:35] ZinComputeProgramUpdateMutables() OOB write due to double fetch issue [CVE-2022-32932] The DAY[0] Podcast episodes are streamed live on Twitch twice a week: -- Mondays at 3:00pm Eastern (Boston) we focus on web and more bug bounty style vulnerabilities -- Tuesdays at 7:00pm Eastern (Boston) we focus on lower-level vulnerabilities and exploits. We are also available on the usual podcast platforms: -- Apple Podcasts: https://podcasts.apple.com/us/podcast/id1484046063 -- Spotify: https://open.spotify.com/show/4NKCxk8aPEuEFuHsEQ9Tdt -- Google Podcasts: https://www.google.com/podcasts?feed=aHR0cHM6Ly9hbmNob3IuZm0vcy9hMTIxYTI0L3BvZGNhc3QvcnNz -- Other audio platforms can be found at https://anchor.fm/dayzerosec You can also join our discord: https://discord.gg/daTxTK9

I interview Al Sweigart, the author of Automate the Boring Stuff with Python and other fantastic Python books. You can get all of his books for free using the links below. Or you can buy the physical books. Learn about Python, Minecraft, Ciphers, Recursion, Python Gaming and a lot more with Al's fantastic books. And you can read them online for free :) // FREE Books // Free Python books: https://inventwithpython.com/ Automate the boring stuff free book: https://automatetheboringstuff.com/ // Physical Books // Buy books from Amazon: Automate the boring stuff with Python: https://amzn.to/3N2QuYu The big book of small Python projects: https://amzn.to/3xFJevS Coding with Minecraft: https://amzn.to/3Hx6bGh Cracking codes with Python: https://amzn.to/3zNhWXl The recursive book of recursion: https://amzn.to/3n0bJiV Invent your own computer games with Python: https://amzn.to/3bbGZZQ Beyond the basic stuff with Python: https://amzn.to/3badlUy Buy physical books from No Starch Press: https://nostarch.com/automatestuff2 // Al's SOCIAL // Twitter: https://twitter.com/AlSweigart YouTube: https://www.youtube.com/user/Albert10110 Udemy: https://www.udemy.com/course/automate/ // David's SOCIAL // Discord: https://discord.com/invite/usKSyzb Twitter: https://www.twitter.com/davidbombal Instagram: https://www.instagram.com/davidbombal LinkedIn: https://www.linkedin.com/in/davidbombal Facebook: https://www.facebook.com/davidbombal.co TikTok: http://tiktok.com/@davidbombal YouTube Main Channel: https://www.youtube.com/davidbombal YouTube Tech Channel: https://youtube.com/channel/UCZTIRrEN... YouTube Clips Channel: https://www.youtube.com/channel/UCbY5... YouTube Shorts Channel: https://www.youtube.com/channel/UCEyC... Apple Podcast: https://davidbombal.wiki/applepodcast Spotify Podcast: https://open.spotify.com/show/3f6k6gE... // MY STUFF // https://www.amazon.com/shop/davidbombal // SPONSORS // Interested in sponsoring my videos? Reach out to my team here: sponsors@davidbombal.com python minecraft python books best python books automate the boring stuff with python automate the boring stuff with python playlist the recursive book of recursion the big book of small python projects beyond the basic stuff with python coding with minecraft cracking cods with python invent your own computer games with python scratch 3 programming playground making games with python and pygame python for beginners python full course python tutorial python programming python projects python tutorial for beginners python interview questions python course python basics python for data science artificial intelligence machine learning python machine learning tutorial deep learning machine learning automate the boring stuff no starch press no starch press python Disclaimer: This video is for educational purposes only. Please note that the links listed may be affiliate links and provide me with a small percentage/kickback should you use them to purchase any of the items listed or recommended. Thank you for supporting me and this channel! #python #minecraft #hacking

“If you believe in yourself and you're willing to put in that work, it WILL happen.” - Jon DiMaggio In this episode, Ron and Chris are joined by author and Chief Security Strategist, Jon DiMaggio, to talk about the power of believing in yourself and following through on your dreams. Jon shares the story behind writing his book, The Art of Cyber Warfare, and how he learned to overcome rejection.   Sponsor Links:  Thank you to our sponsors Axonius and Uptycs for bringing this episode to life! Life is complex. But it's not about avoiding challenges or fearing failure. Just ask Simone Biles — the greatest gymnast of all time. Want to learn more about how Simone controls complexity? Watch her video at axonius.com/simone With Uptycs, modern defenders can prioritize, investigate and respond to threats across the entire attack surface—all from a common solution. Check them out at Uptycs.com and be sure to stop by their booth #435 at RSA 2022   Guest Bio: Jon DiMaggio is the chief security strategist at Analyst1 and has over 15 years of experience hunting, researching, and writing about advanced cyber threats. As a specialist in enterprise ransomware attacks and nation-state intrusions, such as”Ransom Mafia: Analysis of the World's first Ransomware Cartel”,“Nation State Ransomware” and a “History of REvil”. He has exposed the criminal cartels behind major ransomware attacks, aided law enforcement agencies in federal indictments of nation-state attacks, and discussed his work with The New York Times, Bloomberg, Fox, CNN, Reuters, and Wired. You can find Jon speaking about his research at conferences such as RSA. Additionally, in 2022, Jon authored the book “The Art of Cyberwarfare: An Investigator's Guide to Espionage, Ransomware, and Organized Cybercrime” published by No Starch Press.   Links: Stay in touch with Jon DiMaggio on LinkedIn and Twitter Connect with Ron Eddings on LinkedIn and Twitter Connect with Chris Cochran on LinkedIn and Twitter Purchase a HVS t-shirt at our shop Continue the conversation by joining our Discord Check out  Hacker Valley Media and Hacker Valley Studio

Hoy en día resulta difícil pensar en un mundo sin Internet, al menos a la fecha de estreno de este podcast... ¡de hecho, quien esté leyendo esta descripción muy probablemente lo hace gracias a una conexión a la red! Así, como podemos imaginar, existen muchas aristas desde las que podemos conversar sobre Internet. En esta edición, publicada en el Día del Internet 2022, nos acompaña Édgar Huaranga, licenciado en ciencia de la computación y director de tecnología en hiperderecho.org, con quien hablaremos sobre el origen, implicancias, claroscuros y perspectivas que podemos tener de Internet y su uso en la actualidad. ¡Gracias a nuestros Patreons que hacen posible llegar semana a semana con los episodios de Por las Rutas! Para ser parte de nuestro Patreon, visita: https://www.patreon.com/porlasrutasdelacuriosidad; también puedes apoyarnos mediante Yape o Plin: https://bit.ly/2WVpqGc. Gracias por la portada a JB Design - Diseño, Diagramación y Publicidad REFERENCIAS: https://www.acta.es/medios/articulos/comunicacion_e_informacion/033021.pdf https://verne.elpais.com/verne/2019/10/25/articulo/1571995560_440874.html https://www.submarinecablemap.com/ How the Internet really works: An illustrated guide to protocols, privacy, censorship, and governance, Article 19, Ulrike Uhlig, Mallory Knodel, Niels ten Oever y Corinne Cath; No Starch Press, edición digital, 2021 MÚSICA UTILIZADA EN ESTE PROGRAMA (TODOS LOS DERECHOS PERTENECEN A LOS AUTORES, COMPOSITORES Y/O INTÉRPRETES) Danza de tijeras, Wayanay / Autor: Danza folklórica de los departamentos de Apurímac, Ayacucho y Huancavelica School days, Infraction / Autor: Ivan Malkov Enchanting adventures, Jay Man / Autor: Jay Man

An educational approach that is based on the idea that kids are competent and can be in charge of their own learning opens opportunities for creative activities that support exploration, problem-solving, and teamwork. In this conversation, Barbara Bratzel, shares her reflections and practical advice about supporting students' learning and progress through a project-based learning model and development of positive mindset thinking.  Bio:Barbara Bratzel is a K-8 STEM teacher who teaches at the Shady Hill School in Cambridge Massachusetts. She also consults at the Center for Engineering and Education Outreach at Tufts University. She is the author of several robotics books, including Getting Started with LEGO Robotics: a User's Guide written with Rob Torok, to be published by No Starch Press in Spring 2022. 

Vickie Li – Developer Evangelist at ShiftLeft, Inc. – is a web security researcher and the author of "Bug Bounty Bootcamp," published by No Starch Press. In this episode of Cybercrime Radio, Vickie joins host Zack Hack to talk about her experience being a woman in cyber, how she got involved in bug bounty hunting, what inspired her to author a book on the topic, and more. To learn more about Vickie, visit her blog at https://vickieli.dev/ • For more on cybersecurity, visit us at https://cybersecurityventures.com/

Some readily understood vulnerabilities, but with some interesting impacts, from escalating self-XSS to cross-account CSRF, data exfiltration with CSS, web-cache poisoning and MFA bypassing. Links and vulnerability summaries for this episode are available at: https://dayzerosec.com/podcast/bypassing-mfa-webcache-poisoning-and-aws-sagemaker.html [00:00:00] Introduction [00:00:34] Humble Book Bundle: Hacking by No Starch Press [00:05:50] AWS SageMaker Jupyter Notebook Instance Takeover [00:16:39] [Glassdoor] CSS injection via link tag whitelisted-domain bypass [00:21:15] [Symfony] Webcache Poisoning via X-Forwarded-Prefix and sub-request [00:25:47] Bypassing Box's Time-based One-Time Password MFA [00:31:26] Exploring Container Security: A Storage Vulnerability Deep Dive [00:36:28] Hakluke: Creating the Perfect Bug Bounty Automation [00:37:10] Data Exfiltration via CSS + SVG Font The DAY[0] Podcast episodes are streamed live on Twitch twice a week: - Mondays at 3:00pm Eastern (Boston) we focus on web and more bug bounty style vulnerabilities - Tuesdays at 7:00pm Eastern (Boston) we focus on lower-level vulnerabilities and exploits. The audio-only version of the podcast is available on: -- Apple Podcasts: https://podcasts.apple.com/us/podcast/id1484046063 -- Spotify: https://open.spotify.com/show/4NKCxk8aPEuEFuHsEQ9Tdt -- Google Podcasts: https://www.google.com/podcasts?feed=aHR0cHM6Ly9hbmNob3IuZm0vcy9hMTIxYTI0L3BvZGNhc3QvcnNz -- Other audio platforms can be found at https://anchor.fm/dayzerosec You can also join our discord: https://discord.gg/daTxTK9 Or follow us on Twitter (@dayzerosec) to know when new releases are coming. #BugBounty #EthicalHacking #InfoSec #Podcast

Links and vulnerability summaries for this episode are available at: https://dayzerosec.com/podcast/kvm-bugs-and-an-ios-iomfb-kernel-exploit.html Starting off this week with the new humble bundle and some discussion about hacking books. Then onto the vulns, some OOB access, uninitalized memory, and iOS exploit strategy. [00:00:17] Spot the Vuln - Counting Widgets [00:02:36] Humble Book Bundle: Hacking by No Starch Press [00:17:14] KVM: SVM: out-of-bounds read/write in sev_es_string_io [00:23:42] Anker Eufy Homebase 2 home_security CMD_DEVICE_GET_SERVER_LIST_REQUEST out-of-bounds write vulnerability [00:34:14] Apple ColorSync: use of uninitialized memory in CMMNDimLinear::Interpolate [00:40:16] Popping iOS

For this episode, we talk with Joe Gray, also known as @C_3PJoe on Twitter. His web site is https://www.theosintion.com, a destination for OSINT and social engineering training. Joe is an accomplished conference speaker and won the social engineering capture the flag competition at DerbyCon. Joe tells us about a couple of his favorite presentations and projects he has worked on, how to get started in the OSINT industry and tells us about his book Practical Social Engineering, available from No Starch Press. There is even a free chapter available for download!

Al Sweigart (@AlSweigart) spoke with us about getting better at Python programming.  Al’s book site is InventWithPython.com. You can find his books there as well as No Starch Press and Amazon.  Automate the Boring Stuff with Python Beyond the Basic Stuff with Python Cracking Codes with Python Invent Your Own Computer Games with Python Al’s personal site (alsweigart.com) has talks, videos, and a lot of code to look at. Or check out his github repo including the small text based games: https://github.com/asweigart/pythonstdiogames Al’s YouTube Channel, including his Calm Programming series. We also talked about: scratch.mit.edu - a fun way to learn to program where you are almost never wrong Fluent Python: Clear, Concise, and Effective Programming by Luciano Ramalho. PyCon and their talk videos  Online origami simulator (origamisimulator.org)

https://www.humblebundle.com/books/learn-to-code-the-fun-way-no-starch-press-books?partner=thetalkinggeekThink like a programmer: an introduction to creative problem solvingPerl one-liners: 130 programs that get things doneThe book of f#: break free with managed to functional programmingLearn Java the easy way: a hands-on introduction to programmingCode craft: The practice of writing excellent codeLearn you a Haskell for great good!: A beginner's guideClojure for the brave and true: learn the ultimate language and become a better programmerLand of lisp: learn to program and lisp, one game at a time!Learn you some erlang for great good!: Hey beginner's guidePractical SQL: a beginner's guide to store telling with dataThe book of r: a first course in programming and statisticsThe art of R programming: a tour of statistical software designImpractical Python projects: play full programming activities to make you smarterThe secret Life of programs: understand computers -- craft better codeThe rust programming language (covers rust 2018)C++ crash course: a fast-paced introductionThe art of Assembly language second editionEloquent JavaScript, third edition: a modern introduction to programmingIf Hemingway wrote JavaScriptPlease leave a rating/review for this podcast!Become a podcaster and get one month free! Sign up for a Spreaker pro plan with this link to save: https://www.spreaker.com/plans?coupon_code=thetalkinggeek (that is an affiliate link)I love Humble Bundle (especially the book deals), check them out: https://www.humblebundle.com/?partner=thetalkinggeek (that is also an affiliate link)If (for some reason) you want more of me, my blog is https://thetalkinggeek.com. And you can find me on social media at:Facebook: https://www.facebook.com/KyleTheTalkingGeek/Linkedin: https://www.linkedin.com/in/kylesouzaTwitter: https://twitter.com/thekylesouzaInstagram: http://instagram.com/thekylesouza

https://www.humblebundle.com/books/learn-to-code-the-fun-way-no-starch-press-books?partner=thetalkinggeekThink like a programmer: an introduction to creative problem solvingPerl one-liners: 130 programs that get things doneThe book of f#: break free with managed to functional programmingLearn Java the easy way: a hands-on introduction to programmingCode craft: The practice of writing excellent codeLearn you a Haskell for great good!: A beginner's guideClojure for the brave and true: learn the ultimate language and become a better programmerLand of lisp: learn to program and lisp, one game at a time!Learn you some erlang for great good!: Hey beginner's guidePractical SQL: a beginner's guide to store telling with dataThe book of r: a first course in programming and statisticsThe art of R programming: a tour of statistical software designImpractical Python projects: play full programming activities to make you smarterThe secret Life of programs: understand computers -- craft better codeThe rust programming language (covers rust 2018)C++ crash course: a fast-paced introductionThe art of Assembly language second editionEloquent JavaScript, third edition: a modern introduction to programmingIf Hemingway wrote JavaScriptPlease leave a rating/review for this podcast!Become a podcaster and get one month free! Sign up for a Spreaker pro plan with this link to save: https://www.spreaker.com/plans?coupon_code=thetalkinggeek (that is an affiliate link)I love Humble Bundle (especially the book deals), check them out: https://www.humblebundle.com/?partner=thetalkinggeek (that is also an affiliate link)If (for some reason) you want more of me, my blog is https://thetalkinggeek.com. And you can find me on social media at:Facebook: https://www.facebook.com/KyleTheTalkingGeek/Linkedin: https://www.linkedin.com/in/kylesouzaTwitter: https://twitter.com/thekylesouzaInstagram: http://instagram.com/thekylesouza

Dans cet épisode de 3d8plus4 - enregistré sous les auspices d'une pluie abondante et d'une grêle surprenante - nous commençons par parler de Xbox Game Pass Ultimate (beta) et du 'Big Room Switch' chez Luis pour ensuite jaser du SIDEQUEST de Dan cette semaine (Gods!) et de la fin d'une Époque avec la première expansion de World of Warcraft que Luis ne jouera (probablement) pas (Shadowlands). Côté jeux de table, on parle de Nécrons... De Space Marines (Blood Angels), de Jaws of the Lion (Gloomhaven)... Et du vieil adage de ne jamais aller à l'épicerie le ventre vide... En revenant de la pause, nous parlons avec grands éloges du livre 'The Linux Command Line' de chez No Starch Press; avec beaucoup moins d'éloges de l'insatisfaisante deuxième saison de 'Umbrella Academy' et avec une certaine intrigue de Perry Mason. Interrompus par une malheureuse panne informatique, nous finissons sur un review sentimental de Dan sur la joie et le bonheur du Pineboook Pro et la distribution Manjaro Linux.Nouvelles:Xbox Game Pass Ultimate (Beta)Big Switch at Luis'Jeux Video:SIDEQUEST : Gods (1992)WoW Shadowlands - beta invite... Meh?Jeux de Table:Necrons, Blood Angels (Indomitus)Jaws of the Lion (A Gloomhaven game)Livres:The Linux Command Line - William ShottsThe Way of Kings - Brandon SandersonTV/Cinéma:Umbrella Academy S2Perry Mason S1 (HBO)Tech:Pinebook ProQuestions, commentaires: 3d8plus4@gmail.comSuivez-nous sur Twitter: @3d8plus4

Vuelve nuestro amigo Antonio Pérez al podcast para otro episodio compartido con su programa Full Stack Podcast. Antonio ya nos acompañó allá por el episodio 78 en un programa titulado Ruby on Rails frente a Python. En ese episodio Antonio nos estuvo contando cosas muy interesantes sobre Ruby on Rails y para este episodio hemos preparado el contenido alrededor del perfil de backend. ¿Qué habilidades clave debería tener un profesional del backend? Para Antonio Pérez, un desarrollador de backend debe tener un perfil muy completo con unas habilidades muy distintas: Una capacidad alta de abstracción, conocimientos de arquitectura web y un conocimiento amplio de bases de datos. Para Andros un backend debe tener la capacidad de leer y entender el contexto de lo que está realizando. Por eso es importante acudir a la documentación y a los manuales. Otro aspecto es entender que es normal que no se pueda saber de todo. Por último, Andros también coincide sobre la importancia de conocer de manera sólida las bases de datos. David Vaquero coincide en la necesidad de tener una base muy sólida del protocolo HTTP. También que el backend entienda bien los datos que está manejando y cómo se mueven. Y también vuelve a coincidir con la gestión de datos, caché y optimización. Por último David hace mención al conocimiento de API y al Server Side Rendering. Para finalizar Javier comenta que a menudo el perfil de backend se asocia al conocimiento de un lenguaje de programación. Otro aspecto a destacar es el conocimiento de la computación y los bases del sistema operativo, procesos, memoria y red. Gran parte de los proyectos backend que se están ejecutando implican tareas de mantenimiento, monitorización y mejora. Con independencia del lenguaje, el backend necesita mucha investigación y aprendizaje. La importancia de la gestión de las bases de datos y la memoria caché Como comenta Antonio, el backend un última instancia es servir datos: cuando mayor conocimiento y eficacia en la capa de base de datos, mejor funciona la parte de backend. Conocer los motores de bases de datos, profundo conocimiento de SQL y conocer los ORM. Andros habla sobre lo básico de entender la gestión de bases de datos y pone como ejemplo la aplicación de Notion y lo fundamental que es optimizar en la capa de datos. También incidimos en el conocimiento de los básicos como programación orientada a objetos, computación y redes. Una recomendación que hacemos es el libro The Secret Life of Programs publicado por No Starch Press. Por último David destaca que el mundo de las bases de datos también incluye las tecnologías NoSQL y que hay que separar la teoría de base de datos con la práctica. Escribir sentencias SQL vs ORM Otro de los temas que han surgido en la conversación son los ORM vs la escritura de sentencias SQL. Antonio explica cómo en ciertas ocasiones escribir directamente las sentencias SQL resulta más productivo o eficaz que depender de un ORM. Antonio destaca Active Record de Rails como una herramienta flexible para trabajar con el acceso a datos. También hablamos brevemente algunos de los ORM más habituales. El back end es la parte más cercana a la lógica de negocio y por tanto debes tener un conocimiento muy preciso y amplio de cómo funciona un negocio a El papel del cloud en el backend y el serverless Hay espacio para comentar cómo está evolucionando la computación en el lado de servidor con los servicios en la nube y más específicamente con el serverless tipo AWS Lambda. Con todo, son tecnologías que tienen un espacio determinado y que conviven con diferentes opciones en el lado de servidor. Antonio nos detalla algún ejemplo donde puede encajar este tipo de tecnologías. Otro aspecto a tener en cuenta es la optimización de esas funciones sin servidor porque pueden salir más caras que una arquitectura convencional cliente/servidor. Tecnologías de backend a tener en el radar Antonio nos cuenta algunas tecnologías a tener muy en cuenta como la contenerización, micro-servicios, serverless, entornos elásticos en la nube y la asincronía. También reserva un espacio para hablar sobre el papel de JavaScript en el lado servidor y sus reservas con respecto a sus ventajas en materia de asincronía. Por último Antonio nos ha contado sus proyectos futuros, como una web de cursos de desarrollo, estudiando tecnologías como Data Science y NoSQL.

In this episode of the Hack the Planet Podcast: We talk to Craig Smith, author of The Car Hacker’s Handbook, about DRM, car hacking, and the future of virtual conferences. https://github.com/zombieCraig/ICSim http://opengarages.org https://www.carhackingvillage.com https://www.cybertruckchallenge.org https://www.grimm-co.com/grimmcon Be a guest on the show! We want your hacker rants! Give us a call on the Hacker Helpline: PSTN … Continue reading "Interview with Craig Smith, author of The Car Hacker’s Handbook"

Rita Toomey and Al the engineer are wrapping up the mini-season when Al admits that he doesn't know the Four Questions. Rita and a friend from PJ Library (pjlibrary.org) help Al get seder-ready.Episode CreditsHave I Got a Story For You is a production of PJ LibraryExecutive producers: Meredith Lewis, Alli Thresher Director: Alli Thresher Additional production: Craig Rossein Website design: Christina Rizer Audio editing, mixing and mastering: Peter Moore Score: Peter Moore Recorded at Palace of Purpose Studios in Malden, MA. Cover art: Barb BastianThis episode was written by Alli Thresher“Dr. Seuss’ Four Questions” used with permission from Uncle Eli’s Passover Haggadah, by Eliezer Segal, available through No Starch Press in San Francisco.  Cast: Narrator, Rita Toomey: Madelaine Ripley Al: Rich Wentworth Four Question Narration: Lori Hoch Stiefel

Computer programming is an essential skill in the 21st century and new policies and frameworks are in place for preparing students for computer science. Today, the development of new interfaces and block-programming languages, facilitates the teaching of coding and computational thinking starting in kindergarten. However, as new programming languages that are developmentally appropriate emerge, it is not enough to copy models developed for older children, which mostly grew out of traditional STEM (Science, Technology, Engineering and Math) disciplines and instructional practices. In this talk, Prof. Marina Bers will describe current research on a pedagogical approach for early childhood computer science education called “Coding as Another Language” (CAL), grounded on the principle that learning to program involves learning how to use a new language (a symbolic system of representation) for communicative and expressive functions. Due to the critical foundational role of language and literacy in the early years, the teaching of computer science can be augmented by models of literacy instruction. Case studies of young children using either the KIBO robot or the ScratchJr app, designed by Prof Bers, to illustrate the instructional practices of CAL curriculum are presented, as well as novel approaches using fMRI to explore what regions of the brain activate when coding. Marina Umaschi Bers (tufts.edu/~mbers01) is a professor at the Eliot-Pearson Department of Child Study and Human Development and an adjunct professor in the Computer Science Department at Tufts University. She heads the interdisciplinary Developmental Technologies research group. Her research involves the design and study of innovative learning technologies to promote children’s positive development. She also developed and serves as director of the graduate certificate program on Early Childhood Technology at Tufts University. Prof. Bers is passionate about using the power of technology to promote positive development and learning for young children. Bers’ philosophy and theoretical approach as well as the curriculum and assessment methods can be found in her books “Coding as Playground: Programming and Computational Thinking in the Early Childhood Classroom” (Routledge, 2018); “The Official ScratchJr Book” (2015; No Starch Press); “Designing Digital Experiences for Positive Youth Development: From Playpen to Playground” (2012, Oxford University Press); and “Blocks to Robots: Learning with Technology in the Early Childhood Classroom” (2008; Teacher’s College Press). Prof. Bers loves teaching and in 2016 she received the Outstanding Faculty Contribution to Graduate Student Studies award at Tufts University which recognizes her mentorship.

In this episode, we interview Bill Pollock, publisher of No Starch Press, at 36c3, the Chaos Computer Club’s 36th annual congress in Leipzig, Germany.  We talk about the new No Starch Press Foundation, micro-grants for hackers, bourbon, and much more. Get involved at https://nostarchfoundation.org/ Give us a call on the Hacker Helpline: PSTN 206-486-NARC (6272), or … Continue reading "Interview with Bill Pollock of No Starch Press at 36c3"

https://www.humblebundle.com/books/coders-bookshelf-books?partner=thetalkinggeek&charity=1827413Get the rust programming language, the principles of object oriented JavaScript, python playground, and more!$1:1. Understanding ECMA script 6 - the definitive guide for JavaScript developers2. Learn Java the easy way - a hands-on introduction to programming3. Think like a programmer - an introduction to creative problem solving4. Python playground - geeky projects for the curious programmer$8:5. Doing math with python - use programming to explore algebra, statistics, calculus, and more!6. Wicked Cool shell scripts - 101 scripts for Linux, OS x, and Unix systems (2nd edition)7. Automate the boring stuff with python - practical programming for total beginners8. The art of r programming - a tour of statistical software design9. The principles of object oriented JavaScript$15:10. The rust programming language11. The book of r - a first course in programming and statistics12. Cracking code with python - an introduction to building and breaking ciphers13. Practical SQL - a beginner's guide to story telling with data$20:14. Linux programming interface - a Linux and Unix system programming handbookhttps://www.humblebundle.com/books/coders-bookshelf-books?partner=thetalkinggeek&charity=1827413

https://www.humblebundle.com/books/coders-bookshelf-books?partner=thetalkinggeek&charity=1827413Get the rust programming language, the principles of object oriented JavaScript, python playground, and more!$1:1. Understanding ECMA script 6 - the definitive guide for JavaScript developers2. Learn Java the easy way - a hands-on introduction to programming3. Think like a programmer - an introduction to creative problem solving4. Python playground - geeky projects for the curious programmer$8:5. Doing math with python - use programming to explore algebra, statistics, calculus, and more!6. Wicked Cool shell scripts - 101 scripts for Linux, OS x, and Unix systems (2nd edition)7. Automate the boring stuff with python - practical programming for total beginners8. The art of r programming - a tour of statistical software design9. The principles of object oriented JavaScript$15:10. The rust programming language11. The book of r - a first course in programming and statistics12. Cracking code with python - an introduction to building and breaking ciphers13. Practical SQL - a beginner's guide to story telling with data$20:14. Linux programming interface - a Linux and Unix system programming handbookhttps://www.humblebundle.com/books/coders-bookshelf-books?partner=thetalkinggeek&charity=1827413

https://www.humblebundle.com/books/hacking-for-the-holidays-books?phone=thetalkinggeek&charity=1827413no starch press is here with a bundle of books long over there back, Santa style. Get serious cryptography: a practical introduction to modern encryption, black hat python, Android security internals, and more. Happy hacking holidays to you!$1:The tangled web - a guide to securing modern web applicationsSilence on the wire - a field guide to passive reconnaissance and indirect attacksMetasploit - a penetration tester's guideThe car hacker's handbook - a guide for the penetration testerPractical forensic imaging - securing digital evidence with Linux toolsNo starch sampler$8:Android security internals - an in-depth guide to Android's security architectureGreyhat c# - a hacker's guide to creating and automating security toolsPractical malware analysis - the Hands-On guide to dissecting malicious softwareiOS application security - the definitive guide for hackers and developersBlack hat python - Python programming for hackers and pentesters$15:Pen testing as your applications - the definitive guide to testing and securing deploymentsHacking - the art of exploitation, 2nd editionSerious cryptography - a practical introduction to modern encryptionPenetration testing - a Hands-On introduction to hackingAttacking Network protocols - a hacker's guide to capture, analysis, and exploitationhttps://www.humblebundle.com/books/hacking-for-the-holidays-books?phone=thetalkinggeek&charity=1827413

https://www.humblebundle.com/books/hacking-for-the-holidays-books?phone=thetalkinggeek&charity=1827413no starch press is here with a bundle of books long over there back, Santa style. Get serious cryptography: a practical introduction to modern encryption, black hat python, Android security internals, and more. Happy hacking holidays to you!$1:The tangled web - a guide to securing modern web applicationsSilence on the wire - a field guide to passive reconnaissance and indirect attacksMetasploit - a penetration tester's guideThe car hacker's handbook - a guide for the penetration testerPractical forensic imaging - securing digital evidence with Linux toolsNo starch sampler$8:Android security internals - an in-depth guide to Android's security architectureGreyhat c# - a hacker's guide to creating and automating security toolsPractical malware analysis - the Hands-On guide to dissecting malicious softwareiOS application security - the definitive guide for hackers and developersBlack hat python - Python programming for hackers and pentesters$15:Pen testing as your applications - the definitive guide to testing and securing deploymentsHacking - the art of exploitation, 2nd editionSerious cryptography - a practical introduction to modern encryptionPenetration testing - a Hands-On introduction to hackingAttacking Network protocols - a hacker's guide to capture, analysis, and exploitationhttps://www.humblebundle.com/books/hacking-for-the-holidays-books?phone=thetalkinggeek&charity=1827413

Clay Wells ... Security Architect, Musician, Defcon Blue Team Village Co-Organizer, and organizer of the first annual WOPR Summit. Clay shares some really insightful tips on making it Information Security, as well as a really interesting war story from recently. WOPR Summit is March 1st, 2019 in Atlantic City! Bio: Living in kernel/userland since Red Hat 4.0 Colgate. Work life has primarily been in Academia and has included programming, system administration, and information security. He's a point of contact for the DC215 group and one of the coordinators for the Blue Team Village at DEF CON. He also creates unofficial CTF challenges for local hacker cons and is organizer for the first annual WOPR Summit this March 2019 in Atlantic City. Quotes: "My heart was racing... that was a huge rush and that's when I was like yea... Blue side F*** rocks!!" "Take a holistic approach to InfoSec, dive into the culture, different cons, music, people...volunteer, get out, get involved... learn a little about everything, then find what really interests you... and go for it!" "It's great to apt-get stuff... but try compiling a custom linux kernel." "I'm a strong believer in embracing that creative side." "It [Blue Team] certainly hasn't been the sexiest infosec job to have... yes defense is what people want... there's a lot defense work out there." Links: Clay Wells on Twitter: https://twitter.com/ttheveii0x Clay Wells on LinkedIN: https://www.linkedin.com/in/clayball/ Clay Wells Blog: http://www.cwells.org/ WOPR Summit 2019 WOPR Summit Sponsorhip Prospectus DEF CON Blue Team Village Opensoc by Recon Infosec BsidesDC Graylog Kibana H.O.P.E Conference No Starch Press Outro Music by Clay

It be time to learn you some stuff with us bundle from no starch press. Get ebooks like python crash course, learn you a Haskell for great good!, And more. Plus, your purchase will support you some charity!https://www.humblebundle.com/books/learn-you-some-code-books?partner=thetalkinggeek&charity=1827413$1:Automate the boring stuff with python: practical programming for total beginnersThe Linux command line: a complete introductionThe big book of F#: Breaking Free with managed functional programmingLearn Java the easy way: a Hands-On up introduction to programmingPerl one-liners: 130 programs that get things doneNo starch sampler$8:Ruby under a microscope: an illustrated guide to Ruby internalsLearn you some erlang for great good!: A beginner's guideLearn you a Haskell for great good!: A beginner's guideClojure for the Brave and true: learn the ultimate language and become a better programmerLand of lisp: learn to program is lisp, one-game-at-a-time!$15:Python crash course: a Hands-On, project-based introduction to programming Python playground: geeky projects for the Curious programmerThink like a programmer: introduction to creative problem solvingThe book of r: a first course in programming and statisticsWicked cool shell Scripts: 101 scripts for Linux, OS X, and Unix systems (2nd edition)https://www.humblebundle.com/books/learn-you-some-code-books?partner=thetalkinggeek&charity=1827413

It be time to learn you some stuff with us bundle from no starch press. Get ebooks like python crash course, learn you a Haskell for great good!, And more. Plus, your purchase will support you some charity!https://www.humblebundle.com/books/learn-you-some-code-books?partner=thetalkinggeek&charity=1827413$1:Automate the boring stuff with python: practical programming for total beginnersThe Linux command line: a complete introductionThe big book of F#: Breaking Free with managed functional programmingLearn Java the easy way: a Hands-On up introduction to programmingPerl one-liners: 130 programs that get things doneNo starch sampler$8:Ruby under a microscope: an illustrated guide to Ruby internalsLearn you some erlang for great good!: A beginner's guideLearn you a Haskell for great good!: A beginner's guideClojure for the Brave and true: learn the ultimate language and become a better programmerLand of lisp: learn to program is lisp, one-game-at-a-time!$15:Python crash course: a Hands-On, project-based introduction to programming Python playground: geeky projects for the Curious programmerThink like a programmer: introduction to creative problem solvingThe book of r: a first course in programming and statisticsWicked cool shell Scripts: 101 scripts for Linux, OS X, and Unix systems (2nd edition)https://www.humblebundle.com/books/learn-you-some-code-books?partner=thetalkinggeek&charity=1827413

Joe Bender, Decentralization Engineer - ConsenSys Born and raised in Pittsburgh, Joseph Bender is a decentralization engineer, solidity developer, blockchain evangelist, Ethereum aficionado, and all-around CryptoNerd. After graduating, he moved to New York to follow his passion for blockchain and began employment at ConsenSys. ConsenSys is a venture production studio building decentralized applications (dApps) and various developer and end-user tools for blockchain ecosystems, primarily focused on Ethereum. At ConsenSys, Joe is technical lead in the alignment circle working directly with Ethereum co-founder Joe Lubin. He oversees development of a full stack product including various decentralized applications, developer tools, and protocol layer frameworks.   Tom Marnik, Director, Worldwide Consulting - ANSYS Over 25 years experience in all aspects of the enterprise software business including product strategy and development, marketing, business development, pre and post sales support, and implementation.   Chris Wilmer, Founder & Co-Managing Editor - Ledger Christopher E. Wilmer is the co-founder and managing editor of Ledger, the first peer-reviewed journal for scholarly research on blockchain technologies. He is also a professor in the Chemical & Petroleum Engineering Department at the University of Pittsburgh, whose research group focuses on computational materials discovery. He has published 25 peer-reviewed articles has co-authored a book on Bitcoin called “Bitcoin for the Befuddled,” which is published by No Starch Press. Attend my one-day conference January 27th in Pittsburgh. Learn more here.   If you liked this interview, check out my other blockchain interviews. Subscribe on iTunes | Stitcher | Overcast | PodBay

Andrew Bunnie Huang '97, MNG '97, PhD '02 talks about The Hardware Hacker: Adventures in Making and Breaking Hardware, published in March 2017 by No Starch Press. Episode transcript: https://bit.ly/2JbhTI5.

In this highly anticipated interview, I have Bill Pollock who founded No Starch Press. We talk about his life growing up in New York and how he had really varied interest as a kid. He knew at a young age he wanted to be an entrepreneur and start a business for kids like him, and he did it! No Starch Press is one of the most significant names in technology publishing and through Bill’s story you’ll get a peek at why. He talks about his trials and tribulations through the publishing industry and exactly how those things shaped NSP. You can find Bill on Twitter @billpollock.

Practical Packet Analysis (with Chris Sanders) ADVANCED PERSISTENT SECURITY PODCAST EPISODE 32 GUEST:Chris Sanders January 9, 2017 If you enjoy this podcast, be sure to give us a 5 Star Review ...

Andrew "Bunnie" Huang spoke with us about manufacturing in China, writing books, and crowdfunding. Bunnie's new book is The Essential Guide to Electronics in Shenzhen. It is available via crowdsupply and the price goes from $30 to $35 when pre-ordering ends on March 17, 2016. Bunnie's blog is at www.bunniestudios.com, many of his professional projects can be found at www.kosagi.com including more information about the Novena open source laptop. Hacking the XBox is available for free from No Starch Press.  

On this episode of Eat Sleep Code, guest Dave Fancher talk about Functional Programming. We discuss how functional programming has made its way back into modern development, clean coding, and more. http://developer.telerik.com/content-types/podcast/better-code-with-functional-programming/ Ed Charbeneau** :** Hello and welcome to Eat Sleep Code, the official Telerik podcast. I'm your host, Ed Charbeneau, and with me today is Dave Fancher. Dave Fancher** :** Hello! EC: And today Dave and I will be talking about functional programming in .NET. Dave is author of, The book of F#, from No Starch Press and a Microsoft MVP for .NET and also the owner of Achiiv Solutions. Dave is a Pluralsight author, and he's done a course called, "Building F# Type Providers" and he's working on a new course about functional programming with C#. So Dave what is functional programming? DF: So ask ten different programmers what functional programming is, and you'll likely get ten different answers. But in general, they tend to boil down to three main characteristics. The first one is that functional programming is about controlling side effects, side effects are anything that changes the external state of the system. It could be as benign as writing to a log file, or it could be more nefarious like changing some shared data across the system. Under functional programming, we wanna control that as much as possible, also under functional programming, we tend to focus on expressions rather than statements, so C# tends to be statement-based. There are some expressions in there, but for the most part it's statement based, your if statements, your using statements, and so on, versus a functional language tends to be focused on expressions, rather than executing something for its effect we wanna execute something for its result. And then finally, functional programming is really centered on the idea of mathematical functions. And so functional languages want to treat functions as data. So you can pass around functions just as you would an integer or a string and that gives way to higher order functions, which is where most of the power of functional programming comes from. EC: So you're controlling the mutability of the data in the application. Find the full transcript on Telerik Developer Network http://developer.telerik.com/content-types/podcast/better-code-with-functional-programming/

Materials Available here:https://media.defcon.org/DEF%20CON%2023/DEF%20CON%2023%20presentations/DEFCON-23-Michael-Schrenk-Applied-Intelligence-UPDATED.pdf Applied Intelligence: Using Information That's Not There Michael Schrenk Security Researcher Organizations continue to unknowingly leak trade secrets on the Internet. To those in the know, these leaks are a valuable source of competitive intelligence. This talk describes how the speaker collects competitive intelligence for his own online retail business. Specifically, you learn how he combines, trends, and analyzes information within specific contexts to manufacture useful data that is real, but technically doesn't exist on it's own. For example, you will learn about the trade secrets that are hidden within sequential numbers, how he uses collected intelligence to procure inventory, and how and why he gauges the ongoing health of his industry and that of his competitors. And on a related note, you'll also learn how the federal government nearly exposed an entire generation to identity fraud. Michael Schrenk has presented six DEF CON talks on intelligence and organizational privacy, including last year's talk "You're Leaking Trade Secrets". He has developed Internet-based intelligence campaigns since 1995 for organizations as diverse as: Fortune 500 Companies, Private Investigators, Asian Art Dealers, and Investigative Journalists. His adventures in intelligence have taken him around the world, with speaking opportunities in The Middle East, Eastern Europe, The UK, Silicon Valley, and most places in between. Mike is also the author of "Webbots, Spiders, and Screen Scrapers (2007 & 2012, No Starch Press, San Francisco)". He is again teaming with No Starch Press to write a non-technical Intelligence and Counterintelligence book scheduled for publication in Q1 2016. Twitter: @mgschrenk Facebook: facebook.com/webbots

Interview with Joseph Kong, Author of "Designing BSD Rootkits: An Introduction to Kernel Hacking" from No Starch Press. The interview was recorded at BSDCan in Ottawa.File Info: 15Min, 8MB.Ogg Link:https://archive.org/download/bsdtalk113/bsdtalk113.ogg

Intro: Some musings on the consistency and simplicity of BSD.A brief interview with Adam Wright from No Starch Press, recorded by Micheal Dexter on behalf of BSDTalk. They talk about recent and future BSD books.File Info: 8Min, 4MB.Ogg Link:https://archive.org/download/bsdtalk145/bsdtalk145.ogg

Slides Here: https://defcon.org/images/defcon-22/dc-22-presentations/Schrenk/DEFCON-22-Mike-Schrenk-Youre-Leaking-Trade-Secrets-UPDATED.pdf You're Leaking Trade Secrets Michael Schrenk BUSINESS INTELLIGENCE SPECIALIST Networks don't need to be hacked for information to be compromised. This is particularly true for organizations that are trying to keep trade secrets. While we hear a lot about personal privacy, little is said in regard to organizational privacy. Organizations, in fact, leak information at a much greater rate than individuals, and usually do so with little fanfare. There are greater consequences for organizations when information is leaked because the secrets often fall into the hands of competitors. This talk uses a variety of real world examples to show how trade secrets are leaked online, and how organizational privacy is compromised by seemingly innocent use of The Internet. Michael Schrenk is an online Business Intelligence Specialist, who has developed industrial webbots and botnets for the past twenty years. He is a five-time DEFCON speaker, including last year's talk, “How my Botnet Purchased Millions of Dollars in Cars and defeated the Russian Hackers”. Mike is also the author of “Webbots, Spiders, and Screen Scrapers”, 2nd Edition (2012, No Starch Press, San Francisco).

We're back again! On this week's packed show, we've got one of the biggest tutorials we've done in a while. It's an in-depth look at PF, OpenBSD's firewall, with some practical examples and different use cases. We'll also be talking to Peter Hansteen about the new edition of "The Book of PF." Of course, we've got news and answers to your emails too, on BSD Now - the place to B.. SD. This episode was brought to you by Headlines ALTQ removed from PF (http://undeadly.org/cgi?action=article&sid=20140419151959) Kicking off our big PF episode... The classic packet queueing system, ALTQ, was recently removed from OpenBSD -current There will be a transitional phase between 5.5 and 5.6 where you can still use it by replacing the "queue" keyword with "oldqueue" in your pf.conf As of 5.6, due about six months from now, you'll have to change your ruleset to the new syntax if you're using it for bandwidth shaping After more than ten years, bandwidth queueing has matured quite a bit and we can finally put ALTQ to rest, in favor of the new queueing subsystem This doesn't affect FreeBSD, PCBSD, NetBSD or DragonflyBSD since all of their PFs are older and maintained separately. *** FreeBSD Quarterly Status Report (https://www.freebsd.org/news/status/report-2014-01-2014-03.html) The quarterly status report from FreeBSD is out, detailing some of the project's ongoing tasks Some highlights include the first "stable" branch of ports, ARM improvements (including SMP), bhyve improvements, more work on the test suite, desktop improvements including the new vt console driver and UEFI booting support finally being added We've got some specific updates from the cluster admin team, core team, documentation team, portmgr team, email team and release engineering team LOTS of details and LOTS of topics to cover, give it a read *** OpenBSD's OpenSSL rewrite continues with m2k14 (http://undeadly.org/cgi?action=article&sid=20140417184158) A mini OpenBSD hackathon (http://www.openbsd.org/hackathons.html) begins in Morocco, Africa You can follow the changes in the -current CVS log (http://www.openbsd.org/cgi-bin/cvsweb/src/lib/libssl/src/ssl/), but a lot of work (http://undeadly.org/cgi?action=article&sid=20140418063443) is mainly going towards the OpenSSL cleaning We've got two trip (http://undeadly.org/cgi?action=article&sid=20140429121423) reports (http://undeadly.org/cgi?action=article&sid=20140425115340) so far, hopefully we'll have some more to show you in a future episode You can see some of the more interesting quotes (http://opensslrampage.org/) from the tear-down or see everything (http://freshbsd.org/commit/openbsd/e5136d69ece4682e6167c8f4a8122270236898bf) Apparently (http://undeadly.org/cgi?action=article&sid=20140423045847) they are going to call the fork "LibreSSL (https://news.ycombinator.com/item?id=7623789)" .... What were the OpenSSL developers thinking (http://freshbsd.org/commit/openbsd/e5136d69ece4682e6167c8f4a8122270236898bf)? The RSA private key was used to seed the entropy! We also got some mainstream news coverage (http://www.zdnet.com/openbsd-forks-prunes-fixes-openssl-7000028613/) and another post from Ted (http://www.tedunangst.com/flak/post/origins-of-libressl) about the history of the fork Definitely consider donating to the OpenBSD foundation (http://www.openbsdfoundation.org/donations.html), this fork will benefit all the other BSDs too *** NetBSD 6.1.4 and 6.0.5 released (https://blog.netbsd.org/tnf/entry/netbsd_6_1_4_and) New updates for the 6.1 and 6.0 branches of NetBSD, focusing on bugfixes The main update is - of course - the heartbleed vulnerability Also includes fixes for other security issues and even a kernel panic... on Atari Patch your Ataris right now, this is serious business *** Interview - Peter Hansteen - peter@bsdly.net (mailto:peter@bsdly.net) / @pitrh (https://twitter.com/pitrh) The Book of PF: 3rd edition Tutorial BSD Firewalls: PF (http://www.bsdnow.tv/tutorials/pf) News Roundup New Xorg now the default in FreeBSD (https://svnweb.freebsd.org/ports?view=revision&revision=351411) For quite a while now, FreeBSD has had two versions of X11 in ports The older, stable version was the default, but you could install a newer one by having "WITHNEWXORG" in /etc/make.conf They've finally made the switch for 10-STABLE and 9-STABLE Check this wiki page (https://wiki.freebsd.org/Graphics) for more info *** GSoC-accepted BSD projects (https://www.google-melange.com/gsoc/org2/google/gsoc2014/openbsdfoundation) The Google Summer of Code team has got the list of accepted project proposals uploaded so we can see what's planned OpenBSD's list includes DHCP configuration parsing improvements, systemd replacements, porting capsicum, GPT and UEFI support, and modernizing the DHCP daemon The FreeBSD list (https://www.google-melange.com/gsoc/org2/google/gsoc2014/freebsd) was also posted Theirs includes porting FreeBSD to the Android emulator, CTF in the kernel debugger, improved unicode support, converting firewall rules to a C module, pkgng improvements, MicroBlaze support, PXE fixes, bhyve caching, bootsplash and lots more Good luck to all the students participating, hopefully they become full time BSD users *** Complexity of FreeBSD VFS using ZFS as an example (http://www.hybridcluster.com/blog/complexity-freebsd-vfs-using-zfs-example-part-2/) HybridCluster posted the second part of their VFS and ZFS series This new post has lots of technical details once again, definitely worth reading if you're a ZFS guy Of course, also watch episode 24 (http://www.bsdnow.tv/episodes/2014_02_12-the_cluster_the_cloud) for our interview with HybridCluster - they do really interesting stuff *** PCBSD weekly digest (http://blog.pcbsd.org/2014/04/weekly-feature-digest-26-the-lumina-project-and-preload/) Preload has been ported over, it's a daemon that prefetches applications PCBSD is developing their own desktop environment, Lumina (there's also an FAQ (http://blog.pcbsd.org/2014/04/quick-lumina-desktop-faq/)) It's still in active development, but you can try it out by installing from ports We'll be showing a live demo of it in a few weeks (when development settles down a bit) Some kid in Australia subjects his poor mother to being on camera (https://www.youtube.com/watch?v=ETxhbf3-z18) while she tries out PCBSD and gives her impressions of it ***

This week on the Major Spoilers Podcast: The Doctor is in the house, we take a six week look at DC’s 52, Xbox games are played, and comics are reviewed. Show your thanks to Major Spoilers for this episode by becoming a Major Spoilers VIP. It will help ensure The Major Spoilers Podcast continues far into the future! NEWS The Night of the Doctor Mini-Episode (with Spoilers) LINK REVIEWS STEPHEN LEGO Space Building the Future Writers: Peter Reid, Tim Goddard This stunning hardcover book features custom models of sleek starships, cool robots, creepy aliens, fearsome space pirates, and much more. The latest from No Starch Press (publisher of such best sellers as Beautiful LEGO and The LEGO Adventure Book) takes readers on a fantastic voyage from Sputnik to a spacefaring civilization hundreds of years in the future. Readers will immerse themselves in photos of planets, hangars, spaceports, and moon bases as they experience a story of exploration, first contact, and sabotage. [rating:3.5/5] MATTHEW Sex Criminals #3 Story By: Matt Fraction Art By: Chip Zdarsky Cover By: Chip Zdarsky Price: $3.50 How did these two end up in that bank, with those guns? Because they seemed like such nice kids, right? Well, THE SEX POLICE have the same questions and descend on Susie and Jon. And we get the rest of Jon’s gory story — if you read ONE weird sex and time comedy comic this year, make sure it’s “My Sexual Errors 1998 — Present!” [rating:5/5] RODRIGO Ascend: Hand of Kul for X-Box Live Arcade Wage war for your God as a brutal Caos warrior on a unique journey to Ascension. Destroy the spawn of the Titan, invade other players’ worlds, and tip the balance in the Crusade between the alliances. Ascend: Hand of Kul is a free-to-play third-person action RPG featuring innovative seamless single and multiplayer gameplay and multi-platform support. [rating:4/5] ZACH Cataclsym: The Ultimate Comics’ Spider-Man #1 Writer: Brian Michael Bendis Artist: David Marquez MILES MORALES learned the meaning of having great responsibility and put his costume back on after mourning the tragic death of his mother. • Now he stands to lose his entire world as a cosmic threat descends on earth. • Can SPIDER-MAN and his friends, CLOAK & DAGGER and SPIDER-WOMAN make a difference in the face of apocalypse? [rating:4/5] Major Spoilers Poll of the Week Doctor Who Villain Battle - Semi-Finals As we count down to the big Doctor Who episode this weekend, we continue our battle between the Doctor’s greatest villains. We know who won the first round of fighting, now it’s time to take those winners and have them fight it out Hunger Games style. [poll id="311"] Discussion: 52 Volume 1

This week on the Major Spoilers Podcast: The Doctor is in the house, we take a six week look at DC’s 52, Xbox games are played, and comics are reviewed. Show your thanks to Major Spoilers for this episode by becoming a Major Spoilers VIP. It will help ensure The Major Spoilers Podcast continues far into the future! NEWS The Night of the Doctor Mini-Episode (with Spoilers) LINK REVIEWS STEPHEN LEGO Space Building the Future Writers: Peter Reid, Tim Goddard This stunning hardcover book features custom models of sleek starships, cool robots, creepy aliens, fearsome space pirates, and much more. The latest from No Starch Press (publisher of such best sellers as Beautiful LEGO and The LEGO Adventure Book) takes readers on a fantastic voyage from Sputnik to a spacefaring civilization hundreds of years in the future. Readers will immerse themselves in photos of planets, hangars, spaceports, and moon bases as they experience a story of exploration, first contact, and sabotage. [rating:3.5/5] MATTHEW Sex Criminals #3 Story By: Matt Fraction Art By: Chip Zdarsky Cover By: Chip Zdarsky Price: $3.50 How did these two end up in that bank, with those guns? Because they seemed like such nice kids, right? Well, THE SEX POLICE have the same questions and descend on Susie and Jon. And we get the rest of Jon’s gory story — if you read ONE weird sex and time comedy comic this year, make sure it’s “My Sexual Errors 1998 — Present!” [rating:5/5] RODRIGO Ascend: Hand of Kul for X-Box Live Arcade Wage war for your God as a brutal Caos warrior on a unique journey to Ascension. Destroy the spawn of the Titan, invade other players’ worlds, and tip the balance in the Crusade between the alliances. Ascend: Hand of Kul is a free-to-play third-person action RPG featuring innovative seamless single and multiplayer gameplay and multi-platform support. [rating:4/5] ZACH Cataclsym: The Ultimate Comics’ Spider-Man #1 Writer: Brian Michael Bendis Artist: David Marquez MILES MORALES learned the meaning of having great responsibility and put his costume back on after mourning the tragic death of his mother. • Now he stands to lose his entire world as a cosmic threat descends on earth. • Can SPIDER-MAN and his friends, CLOAK & DAGGER and SPIDER-WOMAN make a difference in the face of apocalypse? [rating:4/5] Major Spoilers Poll of the Week Doctor Who Villain Battle - Semi-Finals As we count down to the big Doctor Who episode this weekend, we continue our battle between the Doctor’s greatest villains. We know who won the first round of fighting, now it’s time to take those winners and have them fight it out Hunger Games style. [poll id="311"] Discussion: 52 Volume 1

In Folge 65 reden Dirk, Axel und Venty übers Fachliteratur schreiben. Vorallem gehen wir auch auf die Rolle des Lektorats und der Verlage ein. Trackliste Buzzer – Compofiller Funk DAC – Black Sun Rises Nächste Sendung am Samstag, 2. März 2013, 19:00 Uhr Küchenstudio :: Axel und Dirk in der Küche samt dem neuen Equipment Lulu :: Self Publishing mit Lulu No Starch Press :: No Starch Press Medialinx AG :: Vormals bekannt als Linux New Media Autorenvertrag :: PDF des Autorenvertrags von Linux-User Autorenhinweis :: Autorenhinweis von Linux-User als Musterartikel Pragmatic Bookshelf :: How to write for us von Pragmatic Bookshelf Der Weg zum Buch :: Open Source Press' Weg zum Buch Kontaktformular :: Open Source Press Kontaktformular für Autoren Buchpreise :: Dirks Blogeintrag zum Thema Buchpreise Linux-Server :: Linux-Server - Das Administrationshandbuch unter Anderem von Dirk geschrieben Swiss Perl Workshop 2013 :: Swiss Perl Workshop 2013 CoSin :: Das CoSin-OK ist noch auf Raumsuche! DeimHart :: DeimHart Podcast von Dirk Deimeke und Roman Hanhart File Download (76:28 min / 132 MB)

In Folge 65 reden Dirk, Axel und Venty übers Fachliteratur schreiben. Vorallem gehen wir auch auf die Rolle des Lektorats und der Verlage ein. Trackliste Buzzer – Compofiller Funk DAC – Black Sun Rises Nächste Sendung am Samstag, 2. März 2013, 19:00 Uhr Küchenstudio :: Axel und Dirk in der Küche samt dem neuen Equipment Lulu :: Self Publishing mit Lulu No Starch Press :: No Starch Press Medialinx AG :: Vormals bekannt als Linux New Media Autorenvertrag :: PDF des Autorenvertrags von Linux-User Autorenhinweis :: Autorenhinweis von Linux-User als Musterartikel Pragmatic Bookshelf :: How to write for us von Pragmatic Bookshelf Der Weg zum Buch :: Open Source Press' Weg zum Buch Kontaktformular :: Open Source Press Kontaktformular für Autoren Buchpreise :: Dirks Blogeintrag zum Thema Buchpreise Linux-Server :: Linux-Server - Das Administrationshandbuch unter Anderem von Dirk geschrieben Swiss Perl Workshop 2013 :: Swiss Perl Workshop 2013 CoSin :: Das CoSin-OK ist noch auf Raumsuche! DeimHart :: DeimHart Podcast von Dirk Deimeke und Roman Hanhart File Download (76:28 min / 132 MB)