pktrecon, Kory Findley – Paul’s Security Weekly #589

    Kory Findley talks about his Github project pktrecon. Internal network segment reconnaissance using packets captured from broadcast and service discovery protocol traffic. pktrecon is a tool for internal network segment reconnaissance using broadca… Continue reading pktrecon, Kory Findley – Paul’s Security Weekly #589

Breaches, Privacy, Compliance and More! – Paul’s Security Weekly #588

The Security Weekly crew has a lively topic discussion on the following: – Security Breaches – Privacy – Vulnerability Disclosure – Evaluating Security Solutions – Compliance Full Show NotesFollow us on Twitter: https://ww… Continue reading Breaches, Privacy, Compliance and More! – Paul’s Security Weekly #588

Detecting Attacker Behavior, LogRhythm – Paul’s Security Weekly #587

    Vaughn will discuss using freely available tools and logs you are already collecting to detect attacker behavior. Vaughn has a cookbook that will allow you to configure and analyze logs to detect attacks in your environment. You don’t need an… Continue reading Detecting Attacker Behavior, LogRhythm – Paul’s Security Weekly #587

SilentTrinity: Marcello Salvati, BHIS – Paul’s Security Weekly #585

Marcello Salvati is a security consultant at BHIS, and is giving a technical segment on SilentTrinity. Marcello will solve the red team tradecraft problem of gaining dynamic access to the .net api without going through powershell. To learn more about B… Continue reading SilentTrinity: Marcello Salvati, BHIS – Paul’s Security Weekly #585

Lenny Zeltser, Minerva Labs – Paul’s Security Weekly #585

Lenny Zeltser the VP of Products at Minerva, will be giving a technical segment on Evasion Tactics in Malware from the Inside Out. He will explain the tactics malware authors use to evade detection and analysis and find out how analysts examine these a… Continue reading Lenny Zeltser, Minerva Labs – Paul’s Security Weekly #585

Sven Morgenroth, Netsparker – Paul’s Security Weekly #584

Sven will talk about PHP Object injection vulnerabilities and explain the dangers of PHP’s unserialize function. He will show the format of serialized PHP Objects, explain PHP’s magic methods and how to write an exploit for a PHP Object Inj… Continue reading Sven Morgenroth, Netsparker – Paul’s Security Weekly #584

John Moran, DFLabs – Paul’s Security Weekly #583

John is a Senior Product Manager at DFLabs, where he performs a wide variety of tasks from product management to content development and partner management. John Moran talks about IncMan SOAR and how DFLabs Automation & Response platform helps auto… Continue reading John Moran, DFLabs – Paul’s Security Weekly #583

Eyal Neemany, Javelin Networks – Paul’s Security Weekly #582

Former Head of Israeli Air Force CERT & Forensics Team, Senior Security Researcher at Javelin Networks. Eyal will be discussing securing remote administration, remote credentials, explains that Jump Servers aren’t as good, and show you have to con… Continue reading Eyal Neemany, Javelin Networks – Paul’s Security Weekly #582

Matt Toussain, BHIS – Paul’s Security Weekly #581

Matt Toussain a Security Analyst at Black Hills Information Security, will be giving a tech segment on remote access tools (RAS). Full Show Notes Follow us on Twitter: https://www.twitter.com/securityweekly To learn more about BHIS, go to: https://www…. Continue reading Matt Toussain, BHIS – Paul’s Security Weekly #581

Aleksei Tiurin, Acunetix – Paul’s Security Weekly #581

Aleksei Tiurin is the Senior Security Researcher for Acunetix. Aleksei is giving a technical segment on insecure deserialization in Java/JVM and explains what polymorphism is. Aleksei Tiurin is a security researcher and pentester with over 8 years of e… Continue reading Aleksei Tiurin, Acunetix – Paul’s Security Weekly #581