Paul's Security Weekly Subscribe

It Compiled & It Ran – Paul’s Security Weekly #595

February 22, 2019

Full Audio

View Show Index

Segments

1. SILENTRINITY Updates, BHIS –

Marcello Salvati, Security Analyst at our sponsor Black Hills Information Security, to give some updates on his Post Exploitation Tool SILENTRINITY!

Sign up for the BHIS Mailing List to receive updates about upcoming webcasts, blogs, and open-source tools from our testers at: https://securityweekly.com/bhis

Full Show Notes: https://wiki.securityweekly.com/Episode595

Hosts

Paul Asadoorian

Principal Security Researcher at Eclypsium

https://securitypodcaster.com

Security Researcher

https://jasonwood.io/

Security Analyst at Black Hills Information Security

https://www.blackhillsinfosec.com/team/joff-thyer/

Product Security Research and Analysis Director at Finite State

@haxorthematrix

https://www.finitestate.io/

https://breakstuffforfun.com/

Retired Senior Cyber Advisor at Lawrence Livermore National Laboratory

Chief Product Officer at CyberSaint

2. Steve Brown, SecureWorld Keynote –

Steve Brown, Keynote Speaker at SecureWorld Boston 2019 to discuss his talk about Building Your Strategic Roadmap for the Next Wave of Digital Transformation!

Full Show Notes: https://wiki.securityweekly.com/Episode595

Hosts

Paul Asadoorian

Principal Security Researcher at Eclypsium

https://securitypodcaster.com

Security Researcher

https://jasonwood.io/

Product Security Research and Analysis Director at Finite State

@haxorthematrix

https://www.finitestate.io/

https://breakstuffforfun.com/

Retired Senior Cyber Advisor at Lawrence Livermore National Laboratory

Chief Product Officer at CyberSaint

3. Passwords, Splunk, & Nest Microphones –

In the Security News, password managers leaking data in memory, security analysts are only human, Splunk changes position of Russian customers, Google admits error over hidden microphone, and a nasty code-execution bug in WinRAR threatened millions of users for 14 years!

Full Show Notes: https://wiki.securityweekly.com/Episode595

Hosts

Paul Asadoorian

Principal Security Researcher at Eclypsium

https://securitypodcaster.com

Security Researcher

https://jasonwood.io/

Security Analyst at Black Hills Information Security

https://www.blackhillsinfosec.com/team/joff-thyer/

Product Security Research and Analysis Director at Finite State

@haxorthematrix

https://www.finitestate.io/

https://breakstuffforfun.com/

Retired Senior Cyber Advisor at Lawrence Livermore National Laboratory

Chief Product Officer at CyberSaint

4. Passwords, Splunk, & Nest Microphones – Paul’s Security Weekly #595

In the Security News, password managers leaking data in memory, security analysts are only human, Splunk changes position of Russian customers, Google admits error over hidden microphone, and a nasty code-execution bug in WinRAR threatened millions of users for 14 years! Full Show Notes: https://wiki.securityweekly.com/Episode595 Follow us on Twitter: https://www.twitter.com/securityweekly

5. Steve Brown, SecureWorld Keynote – Paul’s Security Weekly #595

Steve Brown, Keynote Speaker at SecureWorld Boston 2019 to discuss his talk about Building Your Strategic Roadmap for the Next Wave of Digital Transformation! Full Show Notes: https://wiki.securityweekly.com/Episode595 Follow us on Twitter: https://www.twitter.com/securityweekly

6. SILENTRINITY Updates, BHIS – Paul’s Security Weekly #595

Marcello Salvati, Security Analyst at our sponsor Black Hills Information Security, to give some updates on his Post Exploitation Tool SILENTRINITY! Sign up for the BHIS Mailing List to receive updates about upcoming webcasts, blogs, and open-source tools from our testers at: https://securityweekly.com/bhis Full Show Notes: https://wiki.securityweekly.com/Episode595 Follow us on Twitter: https://www.twitter.com/securityweekly

Related

Vulnerability Management

Dysentery, TP-Link, Piracy, Calendar Scams, Tencent, TikTok, Aaran Leyland and More.. – SWN #439

December 20, 2024

Dysentery, TP-Link, Piracy, Calendar Scams, Tencent, TikTok, Aaran Leyland, and More, on this edition of the Security Weekly News.

Final fundings for 2024, Blackberry sells Cylance cheap, Product Testing Drama – ESW #388

December 19, 2024

In the enterprise security news, a final few fundings before the year closes out Arctic Wolf buys Cylance from Blackberry for cheap, a sentence that feels very weird to say the quiet HTTPS revolution passkeys are REALLY catching on resilience keeps showing up in the titles of news items Apple Intelligence insults the BBC’s intelligence MITRE ATT...

Risk Assessments/Management

D3FEND 1.0: A Milestone in Cyber Ontology – Peter Kaloroumakis – ESW #388

December 19, 2024

Since D3FEND was founded to fill a gap created by the MITRE ATT&CK Matrix, it has come a long way. We discuss the details of the 1.0 release of D3FEND with Peter in this episode, along with some of the new tools they've built to go along with this milestone. To use MITRE's own words to describe the gap this project fills: "it is necessary tha...