I speak with Haydn Johnson about the myth of the purple teamer, that is, an individual who does both red and blue team activities as part of their day job.
I speak with the legendary Jek Hyde about physical penetration testing.
Will Harmon from Trustwave’s Spider Labs comes to talk about Threat Hunting with me.
I take a look at the Treacherous Twelve from the CSA to see what threats exist for people moving to the cloud.
Joe Gray from the Advanced Persistent Security podcast and Through The Hacking Glass fame joins me to talk OSINT.
In this episode I complete my review of the OWASP Top 10 – 2017 looking at items A6 (Security Misconfiguration) through A10 (Insufficient Logging & Monitoring).
Taking a look at the first 5 vulnerabilities in the OWASP Top 10 – 2017 list.
I speak with Dr. Z. Cliffe Schreuders about a rather amazing project, the Security Scenario Generator (SecGen), which generates random vulnerable VMs!
I speak with security consultant Mark Kikta about red teams, their activities and all sorts of interesting aspects on how red teams help organizations build a stronger defence.
In the conclusion of my 2 part interview with Archie Agarwal from ThreatModeler, we look at threat modeling outside of early design and architecture.