Offensive Operating Against SysMon, Carlos Perez – Paul’s Security Weekly #577

Carlos Perez delivers the Technical Segment on How to Operate Offensively Against Sysmon. He talks about how SysMon allows him to create rules, and track specific types of tradecraft, around process creation and process termination. He dives into network connection, driver loading, image loading, creation of remote threats, and more! Full Show NotesVisit our website: […]
The post Offensive Operating Against SysMon, Carlos Perez – Paul’s Security Weekly #577 appeared first on Security Weekly.

Link: http://feedproxy.google.com/~r/securityweekly/Lviv/~3/ZcUh9FtxQUc/

Mike Nichols, Keith McCammon, & Shawn Smith – Paul’s Security Weekly #577

Mike Nichols is the VP of Product Management at Endgame, and he manages the Endgame endpoint protection platform. Keith McCammon is the Chief Security Officer and Co-Founder of Red Canary, and he runs Red Canary’s Security Operation Center. Shawn Smith is the IT Security Manager at Panhandle Educators Federal Credit Union. They discuss the problems […]
The post Mike Nichols, Keith McCammon, & Shawn Smith – Paul’s Security Weekly #577 appeared first on Security Weekly.

Link: http://feedproxy.google.com/~r/securityweekly/Lviv/~3/ZfMMHVP8Jrk/

Linux Bugs, macOS Zero-Day, & Twitter Exposed – Paul’s Security Weekly #577

In the security news, Russian Hackers use Malware that can survive OS reinstalls, Facebook’s 2-Factor authentication With a phone number isn’t only for security, it’s used for ads ,FBI warns companies about hackers increasingly abusing RDP connections, NSA employee who brought hacking tools home sentenced to 66 months in prison, new Linux Kernel Bug affects […]
The post Linux Bugs, macOS Zero-Day, & Twitter Exposed – Paul’s Security Weekly #577 appeared first on Security Weekly.

Link: http://feedproxy.google.com/~r/securityweekly/Lviv/~3/OONKZg_MlAs/

Threat Hunting in the Cloud, Apollo Clark – Paul’s Security Weekly #576

Apollo Clark goes through inventory management, access management, config management, patch management, automated remediation, logging and monitoring, and deployment tools. Full Show NotesVisit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.com/securityweekly
The post Threat Hunting in the Cloud, Apollo Clark – Paul’s Security Weekly #576 appeared first on Security Weekly.

Link: http://feedproxy.google.com/~r/securityweekly/Lviv/~3/sGA3QkNIB58/

Mike Ahmadi, DigiCert – Paul’s Security Weekly #576

Mike Ahmadi oversees IoT security solutions and technical implementations for DigiCert customers across various verticals that include industrial, transportation, smart city, consumer devices and healthcare. Full Show NotesVisit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.com/securityweekly Hosts
The post Mike Ahmadi, DigiCert – Paul’s Security Weekly #576 appeared first on Security Weekly.

Link: http://feedproxy.google.com/~r/securityweekly/Lviv/~3/_iJJePkfDRk/

GovPayNow.com, AmazonBasics, and FBI – Paul’s Security Weekly #576

Senate can’t protect senators staff from Cyber Attacks, Equifax fined by ICO over data breach that hit Britons, US Military given the power to hack back and defend forward,and AmazonBasics Microwave works with Alexa! Larry’s Stories govpaynow leaks 14M records When It Comes To Cybersecurity Assessment Nothing Beats The Real Thing Microsoft managing your desktop… […]
The post GovPayNow.com, AmazonBasics, and FBI – Paul’s Security Weekly #576 appeared first on Security Weekly.

Link: http://feedproxy.google.com/~r/securityweekly/Lviv/~3/ercyyIcV-qE/

Microsoft, Elon Musk, Kernel and Powershell – Paul’s Security Weekly #575

Microsoft accidentally lets encrypted Windows 10 out the the world, Kernel exploit discovered in macOS, PowerShell obfuscation ups the anty on anti virus, Google outlines incident response process, BombGar buys BeyondTrust, and Neil DeGrasse Tyson speaks on Elon Musk saying: Let the man Get High! All that and more, on this episode of Paul’s Security […]
The post Microsoft, Elon Musk, Kernel and Powershell – Paul’s Security Weekly #575 appeared first on Security Weekly.

Link: http://feedproxy.google.com/~r/securityweekly/Lviv/~3/5xi_2xuShz4/

Brian Coulson, LogRhythm – Paul’s Security Weekly #575

Brian Coulson is a Senior Security Research Engineer in the Threat Research Group of LogRhythm Labs in Boulder, CO. His primary focus is the Threat Detection Modules such as UEBA, and NTBA. Full Show NotesVisit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.com/securityweekly
The post Brian Coulson, LogRhythm – Paul’s Security Weekly #575 appeared first on Security Weekly.

Link: http://feedproxy.google.com/~r/securityweekly/Lviv/~3/9Hm3cUeQiuk/

Bypassing PAM, Eyal Neemany – Paul’s Security Weekly #575

Eyal Neemany describes how to bypass Linux Pluggable Authentication Modules provide dynamic authentication support for applications and services in a Linux or GNU/kFreeBSD system. Eyal Neemany is the Senior Security Researcher for Javelin Networks. Full Show NotesVisit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.com/securityweekly
The post Bypassing PAM, Eyal Neemany – Paul’s Security Weekly #575 appeared first on Security Weekly.

Link: http://feedproxy.google.com/~r/securityweekly/Lviv/~3/8W9nvefavkg/

Wim Remes, Wire Security bvba – Paul’s Security Weekly #574

Wim Remes from Wire Security bvba comes on the show to talk about pentesting, SDLC, the state of security, life of a (virtual) CISO, and certifications. Full Show Notes Subscribe to YouTube Channel Hosts
The post Wim Remes, Wire Security bvba – Paul’s Security Weekly #574 appeared first on Security Weekly.

Link: http://feedproxy.google.com/~r/securityweekly/Lviv/~3/xGwulzYgP7k/