Security Boulevard

JUNE 17, 2021

Ira Winkler, CISO at Skyline Technology Solutions, recounts his amazing journey from wannabe astronaut to NSA intelligence analyst, social engineer, systems hacker and author, and some of the crazy things that happened along the way - check it out. The post CISO Stories Podcast: So You Want to be a Cyber Spy?

CISO 94

CISO Social Engineering Engineering Technology 94

CyberSecurity Insiders

DECEMBER 4, 2021

Of the 13 engineers who commented for this publication, none felt that the marketing associated with the products they were working on was completely accurate with respect to advertised capabilities. The paper explores those areas as well as malicious uses of ML and DL, specifically in social engineering and phishing.

Cybersecurity 52

Cybersecurity Education Artificial Intelligence Engineering 52

eSecurity Planet

MAY 5, 2021

Breach and attack simulation (BAS) is a relatively new IT security technology that can automatically spot vulnerabilities in an organization’s cyber defenses, akin to continuous, automated penetration testing. AttackIQ’s Anatomic Engine is a differentiator, as it can test machine learning and AI-based cybersecurity components.

Penetration Testing 68

Penetration Testing Risk Technology Marketing 68

SC Magazine

MAY 20, 2021

About six years ago, Target began a comprehensive tech transformation that involved hiring 1,500 engineers and adopting a product model, where the security team would enable developers to build more secure products through a real-time partnership. In a world where infosec talent is hard to come by, that’s valuable,” she said.

Penetration Testing 65

Penetration Testing InfoSec Engineering Risk 65

Security Boulevard

OCTOBER 12, 2021

Last Wednesday, an anonymous individual published a file online containing the entirety of twitch.tv’s source code, information about twitch’s internal services and development tools, penetration testing reports and tools, and payouts to prominent Twitch streamers. Knowing how your adversaries might act can help you act accordingly.

Social Engineering 78

Social Engineering Penetration Testing Authentication Phishing 78

Security Boulevard

MARCH 23, 2025

In this special episode of the Shared Security Podcast, join Tom Eston and Dan DeCloss, CTO and founder of PlexTrac, as they discuss the challenges of data overload in vulnerability remediation. Discover how PlexTrac addresses these issues by integrating various data sources, providing customized risk scoring, and enhancing remediation workflows.

Risk 52

Risk Penetration Testing Social Engineering Data privacy 52

Security Boulevard

FEBRUARY 12, 2025

PEN-200: Penetration Testing Certification with Kali Linux | OffSec A Little Bit AboutMe I am an associate consultant in the offensive security consulting industry, having successfully transitioned from a career as a software engineer in information technology (IT).

Penetration Testing 52

Penetration Testing Hacking Cybersecurity Education 52

ForAllSecure

JUNE 2, 2021

With more than 600K followers on YouTube, LiveOverflow is one of infosec’s first social media influencers. In a moment you hear from someone who’s been publishing high quality infosec content on YouTube for the last six years and now has over half a million subscribers. How did he get started and what’s next?

Media 52

Media Hacking InfoSec Marketing 52

ForAllSecure

JUNE 2, 2021

With more than 600K followers on YouTube, LiveOverflow is one of infosec’s first social media influencers. In a moment you hear from someone who’s been publishing high quality infosec content on YouTube for the last six years and now has over half a million subscribers. How did he get started and what’s next?

Media 52

Media Hacking InfoSec Marketing 52

ForAllSecure

APRIL 7, 2021

You’d think that having an amazing resume, a couple of bug bounties, or a CTF win would land you that dream infosec job. There's a serious shortage of InfoSec professionals. Tennisha: I did my undergraduate at Carnegie Mellon University in electrical and computer engineering. For many, though, that isn’t true.

Hacking 40

Hacking InfoSec Cybersecurity Engineering 40

ForAllSecure

APRIL 7, 2021

You’d think that having an amazing resume, a couple of bug bounties, or a CTF win would land you that dream infosec job. There's a serious shortage of InfoSec professionals. Tennisha: I did my undergraduate at Carnegie Mellon University in electrical and computer engineering. For many, though, that isn’t true.

Hacking 40

Hacking InfoSec Cybersecurity Engineering 40

Kali Linux

MARCH 28, 2023

Longer history lesson Knoppix - Initial two weeks work Whoppix (White-Hat and knOPPIX) came about as the founder, @Muts, was doing an in-person air-gap network penetration test lasting for two weeks in 2004. In information security (infosec) there is the need to be on the latest version. A fresh start in March 2013.

InfoSec 52

InfoSec Penetration Testing Architecture Software 52

Security Boulevard

SEPTEMBER 3, 2023

In this episode Luke Jennings VP of Research & Development from Push Security joins us to discuss SaaS attacks and how its possible to compromise an organization without touching a single endpoint or network.

Penetration Testing 64

Penetration Testing Social Engineering Data privacy InfoSec 64

Security Boulevard

MARCH 16, 2025

In part one of our three part series with PlexTrac, we address the challenges of data overload in vulnerability remediation. Tom hosts Dahvid Schloss, co-founder and course creator at Emulated Criminals, and Dan DeCloss, CTO and founder of PlexTrac.

Penetration Testing 52

Penetration Testing Social Engineering Data privacy CISO 52

eSecurity Planet

DECEMBER 3, 2021

Russian software engineer Eugene Kaspersky’s frustration with the malware of the 80s and 90s led to the founding of antivirus and cybersecurity vendor Kaspersky Lab. How to screen for natural infosec talent: Ask for a worst case scenario for any common situation. Matthew Green is a renowned expert in cryptographic engineering.

Accountability 139

Accountability Cybersecurity Penetration Testing InfoSec 139

Security Boulevard

MARCH 29, 2023

On our red team engagements and penetration tests, conditional access policies (CAP) often hinder our ability to directly authenticate as a target user. However, this is still a powerful addition to our Azure AD tradecraft and by the end of this post, I’ll have you convinced that TAPs are hella cool.

Authentication 64

Authentication VPN Passwords Social Engineering 64

The Last Watchdog

MARCH 15, 2021

Penetration tests are one way of mitigating the security risks that arise and make sure that we are not endangering users, their data, and the trust they inherently place in technology. Penetration tests can be defined as the testing of a system to find security flaws in it. Pen test types.

Penetration Testing 124

Penetration Testing Social Engineering Cybersecurity Technology 124

ForAllSecure

FEBRUARY 8, 2023

So basically, we deliver custom penetration tests. A lot of infosec’s knowledge is either tribal -- passed on from one person to another - or can be found in books. And that's something that our team, as, as far as we know, the first in the world did the full reverse engineering of the cryptographic API.

Software 40

Software Phishing Passwords Authentication 40

ForAllSecure

FEBRUARY 23, 2021

In a few minutes I’m going to talk to a pentester who’s written a book that can help take your current skills as a sys admin and security engineer and turn them into skills needed to become a great digital pentester. She is an impressive force within the infosec world. And, in the middle, grey box testing.

Penetration Testing 52

Penetration Testing InfoSec Cyber Attacks Education 52

ForAllSecure

FEBRUARY 23, 2021

In a few minutes I’m going to talk to a pentester who’s written a book that can help take your current skills as a sys admin and security engineer and turn them into skills needed to become a great digital pentester. She is an impressive force within the infosec world. And, in the middle, grey box testing.

Penetration Testing 52

Penetration Testing InfoSec Cyber Attacks Education 52

NetSpi Technical

AUGUST 16, 2024

Ethan Hobart, Senior Security Consultant While at DEF CON, I attended Social Engineering AI Like You’re Piccard by Jayson E. The talk was about how to better use AI tools such as ChatGPT, CoPilot, Gemini and others to enhance your social engineering engagements. Security testing via fuzzing, penetration tests, etc.

Social Engineering 49

Social Engineering Penetration Testing Engineering Ransomware 49

ForAllSecure

JANUARY 11, 2023

And yeah, we check us out at whiteoaksecurity.com to various ranges of pen tests, like web apps, internals, red teams, social engineering, etc. So that is another good thing about white oak is, you know, the first day they asked me, you know, which tests do you want to be on? I joined a Discord server called InfoSec prep.

DNS 40

DNS Hacking Penetration Testing InfoSec 40

Pentester Academy

MARCH 23, 2023

To exploit the shell injection vulnerability, the administrator sets a path to the legacy server-side spellcheck binary (aspellpath) containing a backtick shell injection and sets PSpellShell as the spellchecking engine. The spellchecker plugin does not have to be enabled. section=systempaths HTTP/1.1 Mobile/15E148 Safari/604.1

Authentication 52

Authentication Mobile Passwords Penetration Testing 52

ForAllSecure

APRIL 26, 2022

I know for the user, the engineer, the engineer or the technician that that's going to set these up and program them or even the operators and interface with them. We get the InfoSec people that were on enterprise systems, we get them that come because they want to learn more about security. It has basic cybersecurity in it.

Hacking 52

Hacking Manufacturing Energy and Utilities Firmware 52

ForAllSecure

APRIL 12, 2022

Should infosec now be considered vocational training just like becoming an electrician or a plumber? How else should we address the skills gap in infosec? My boss at the time didn't know much about infosec. And then I sat for six hours and took the test. Vamosi: The labor shortage in infosec has been ongoing for years.

Cybersecurity 52

Cybersecurity InfoSec Technology Marketing 52