BrakeSec Education Podcast
Канал маалыматтары
BrakeSec Education Podcast
A podcast about the world of Cybersecurity, Privacy, Compliance, and Regulatory issues that arise in today's workplace. Co-hosts Bryan Brake, Brian Boettcher, and Amanda Berlin teach concepts that aspiring Information Security professionals need to know, or refresh the memories of seasoned veterans...
Жаңы эпизоддор
472 эпизодYoutube exclusive! Mick Douglas discussing Sensible AI use poilcy, RAGs, and how to get up to speed for your business' sake
Youtube Video: https://www.youtube.com/watch?v=hcbj94kMCJE
Questions and topics: (please feel free to update or make comments for clari...
Jay Beale discusses his K8s class at BlackHat, Kubernetes developments, and mental health
Youtube Video at: https://www.youtube.com/watch?v=yHPvGVfPgjI
Jay Beale is a principal security consultant and CEO/CTO for InGua...
Socvel intel threat quiz, Pearson Breached, nintendo bricking stuff, and kevintel.com
socvel.com/quiz if you want to play along!
Check out the BrakeSecEd Twitch at https://twitch.tv/brakesec
join the Discord: https:...
Bronwen Aker - harnessing AI for improving your workflows
Guest Info:
Name: Bronwen Aker
Contact Information (N/A): https://br0nw3n.com/
Time Zone(s): Pacific, Central, Eastern
...
post-bsides SD discussion, EPSS, the answer I should have given, and 'Lord Brake'
Check out the BrakeSecEd Twitch at https://twitch.tv/brakesec or Youtube: https://youtube.com/c/BDSPodcast
join the Discord: https://bit.ly/br...
March23: buy browser extensions, attackers don't need exploits, socvel CTI quiz
Check out the BrakeSecEd Twitch at https://twitch.tv/brakesec
Join the Discord! https://bit.ly/brakesecDiscord
Questions and topics: (...
steam distributes malware in game form, RDP open from DOGE servers, hacking a supply chain for 50K
Youtube VOD: https://www.youtube.com/watch?v=zu_smyQGvG4
https://lcamtuf.substack.com/p/how-security-teams-fail
https://cyberintel.subst...
Tanya Janca Talks secure coding, Semgrep Academy, and community building, and more!
Check out the BrakeSecEd Twitch at https://twitch.tv/brakesec
Join the Discord! https://discord.gg/brakesec
#youtube VOD (in 1440p): https...
Josh Grossman - building Appsec programs, bridging security and developer gaps
Youtube VOD: https://youtu.be/G3PxZFmDyj4
#appsec, #owasp, #ASVS, #joshGrossman, #informationsecurity, #SBOM, #supplychain, #podcast, #t...
Managing messaging with management, becoming a CISO with Mary Gardner from Goldiknox
Disclaimer: The views, information, or opinions expressed on this program are solely the views of the individuals involved and by no means represent a...
p2-accidentalCISO, building trust in new places
Full Youtube VOD: https://www.youtube.com/watch?v=uX7odQTBkyQ
Questions and topics:
Let’s talk about Mindful B...
AccidentalCISO on BrakeSecEd, talking Leadership, SaaS development, and Appsec
Disclaimer: The views, information, or opinions expressed on this program are solely the views of the individuals involved and by no means represent a...
1st show of 2024! Our 10th Anniversary...
It's our 10th anniversary and the first show of our 2024 season!
Amanda was on "7 minute security"
https://7minsec.com/projects/podcast
Brakesec Call to Action 2023
Youtube Video: https://youtu.be/IUDPlQaQg8M
https://forms.gle/rf145MoN7cskwMjf8
is the link to the survey. Your information (should y...
How to get more headcount, BLUFFs Vulnerability, and Ranty Clause debuts!
Show Topic Summary:
Ms. Berlin proposes a question of how to gather more headcount with metrics, we discuss the BLUFFS bluetooth vulnerability...
25Oct - okta breached (again), Energy company hit by supply chain attack, and you can help hire the best people
Subscribe on Twitch using Amazon Prime and watch us live: https://twitch.tv/brakesec
Check out our VODs on Youtube: https://www.youtube.com/@Bra...
Nicole Sundin - CPO at Axio - SEC compliance, usable security, setting up risk mgmt programs
Disclaimer: The views, information, or opinions expressed on this program are solely the views of the individuals involved and by no means represent a...
John Aron, letters of marque, what does a "junior" job look like with AI?
Disclaimer: The views, information, or opinions expressed on this program are solely the views of the individuals involved and by no means represent a...
Megan Roddie - co-author of "Practical Threat Detecion Engineering"
Disclaimer: The views, information, or opinions expressed on this program are solely the views of the individuals involved and by no means represent a...
meeting new people, walking on your keyboard causes issues, even google gets phone numbers wrong.
Check out our sponsor (BLUMIRA) at https://blumira.com/brake
youtube channel link: https://youtube.com/c/BDSPodcast
Full video on our yout...
Bsides Seattle and Austin, SecureBoot patch, and more
BrakeSec Show Outline – No Guest
Show Topic Summary (less than 300 words)
Bsides Seattle and Bsides Austin
Yo...
lynsey wolf, conducting insider threat investigations, CASB and UEBA utlization to good use.
Show Topic Summary (less than 300 words)
Insider threat still exists, Lynsey Wolf talks with us about HR’s role in insider threat, how prevalen...
3CX supply chain attack, Mark Russinovich and Sysinternals, CISA ransomware notifications, and emotional intelligence
Show Topic Summary (less than 300 words)
3CX supply chain attack, Mark Russinovich and Sysinternals, ransomware notifications from CISA, and e...
Dish Network is still busted, John Deere avoiding OSS requests, Is DAST dead?
Show Topic Summary (less than 300 words)
Dish Network is still busted due to ransomware, your Pixel phone baseband RCE, Nothing runs like a De...
Nickolas Means talks about Security, Devops velocity, blameless orgs, and conferences infosec should attend
Guest info
Name and Title:
Nickolas Means, VP of Engineering at SYM
Email/Social Media Contact:
@nmeans on Twitte...
SPECIAL INTERVIEW: John Aron and Jerod Brennen
BrakeSec Show Outline (all links valid as of 27 Jan 2023, subject to change)
Is it scheduled?
Yes || No|| Completed
Date...
Layoff discussions, another TMO breach, OneNote Malware, and more!
Lots of Layoffs (meta, Microsoft, Amazon, Sophos, Alphabet, Google) talk about the future effects of that, did it affect security? Attack surface mana...
GPS car hacks, Google Threat report, notable topics of 2020, satellite threat modelling, twitter breach(?)
topics
Additional information / pertinent Links (would you like to know more?):
https://services.google.com/fh/files/blogs/gcat_t...
Josh-Whalen-risk-management-data_visualization-tools, value-creating activities -p2
Full stream video on Youtube: https://youtu.be/i1xpAfNFCvY
John's Youtube channel, to find more training/contact information: https://www.youtub...
John Whalen, data visualization tools, risk management, handling org risk-p1
Full stream video on Youtube: https://youtu.be/i1xpAfNFCvY
John's Youtube channel, to find more training/contact information: https://www.youtub...
Interview with Infrared - one of the Seattle Community Network organizers
https://youtu.be/iW39Mugj4OM -Full stream video (interview starts at 28m22s)
Broadcasted live on Twitch -- Watch live at https://www.tw...
JAMBOREE - an Android App testing platform from @operat0r -part2
introducing @operat0r talked a bit about mobile device hacking and rooting/jailbreaking phones for testing
Grab the powershell script here: http...
JAMBOREE - an Android App testing platform from @operat0r
introducing @operat0r talked a bit about mobile device hacking and rooting/jailbreaking phones for testing
Grab the powershell script here: http...
07-oct-news-twitch streaming
https://www.bnbchain.org/en/blog/bnb-chain-ecosystem-update/
https://medium.com/@johnblatt23/uber-hack-reveals-weakness-in-the-human-firewall-8...
Uber Breach, MFA fatigue, who can help communicate biz risk?
https://www.theverge.com/2022/9/16/23356213/uber-hack-teen-slack-google-cloud-credentials-powershell
https://www.zdnet.com/article/uber-securit...
Manual Code reviews/analysis, post-infosec Campout discussion
checkout our website: https://www.brakeingsecurity.com
Follow and subscribe with your Amazon Prime account to our Twitch stream: https://twitch....
Amanda's Sysmon Talk -p2
Part 2 of our discussion this week with Amanda, Brian, and Bryan on sysmon, We discuss use cases from her talk, and best ways to get sysmon integrated...
Amanda's Sysmon Talk -p1
This week Amanda, Brian, and Bryan discuss sysmon, how it works to detect IOCs in your org, and how it extends beyond regular Windows event monitoring...
Tanya Janca, Securing APIs, finding Security Champions, and accepting Risk
Tanya Janca, also known as @SheHacksPurple, is the best-selling author of ‘Alice and Bob Learn Application Security’. She is also the founder of We Ha...
Tanya Janca on secure coding practices, Swagger docs, and why documentation matters
Tanya Janca, also known as @SheHacksPurple, is the best-selling author of ‘Alice and Bob Learn Application Security’. She is also the founder of We Ha...