Collaborate Disseminate
Marcello Salvati is a security consultant at BHIS, and is giving a technical segment on SilentTrinity. Marcello will solve the red team tradecraft problem of gaining dynamic access to the .net api without going through powershell. To learn more about B… Continue reading SilentTrinity: Marcello Salvati, BHIS – Paul’s Security Weekly #585
Aleksei Tiurin is the Senior Security Researcher for Acunetix. He is performing a technical segment on reverse proxies using weblogic, Tomcat, and Nginx. To learn more about Acunetix, go to: www.acunetix.com/securityweekly Full Show Notes Follow us on … Continue reading Aleksei Tiurin, Acunetix – Application Security Weekly #42
Former Head of Israeli Air Force CERT & Forensics Team, Senior Security Researcher at Javelin Networks. Eyal will be discussing securing remote administration, remote credentials, explains that Jump Servers aren’t as good, and show you have to con… Continue reading Eyal Neemany, Javelin Networks – Paul’s Security Weekly #582
Aleksei Tiurin is the Senior Security Researcher for Acunetix. Aleksei is giving a technical segment on insecure deserialization in Java/JVM and explains what polymorphism is. Aleksei Tiurin is a security researcher and pentester with over 8 years of e… Continue reading Aleksei Tiurin, Acunetix – Paul’s Security Weekly #581
Omer is End-Point team lead at Javelin Networks. The team focuses on methods to covertly manipulate OS internals. Before Javelin Networks, he was a malware researcher at IBM Trusteer for two years focusing on financial malware families and lectured abo… Continue reading Omer Yair, Javelin – Paul’s Security Weekly #578
Carlos Perez delivers the Technical Segment on How to Operate Offensively Against Sysmon. He talks about how SysMon allows him to create rules, and track specific types of tradecraft, around process creation and process termination. He dives into netwo… Continue reading Offensive Operating Against SysMon, Carlos Perez – Paul’s Security Weekly #577
Ever wonder how to get started pen testing Android Apps? This tech segment will demonstrate a few basic techniques and tools to give you a taste of mobile app assessments with the Android platform. Full Show Notes Subscribe to YouTube Channel
The post … Continue reading Fun with Android APK’s, Joff Thyer – Paul’s Security Weekly #566
John Strand delivers the Technical Segment on Critical Security Control Resources! Full Show Notes Subscribe to YouTube Channel
The post Critical Security Control Resources, John Strand – Paul’s Security Weekly #545 appeared first on Securi… Continue reading Critical Security Control Resources, John Strand – Paul’s Security Weekly #545
Joe Vest and Andrew Chiles from MINIS talk about Borrowing data to hide binaries. Joe Vest is the Co-Founder of the security consulting company MINIS LLC. He has over 17 years’ experience with a focus on red teaming, penetration testing, and application security. Joe is the co-author of the SANS SEC564 Red Teaming and Threat […]
The post Borrowing Data, Joe Vest and Andrew Chiles, MINIS – Paul’s Security Weekly #534 appeared first on Security Weekly.
Continue reading Borrowing Data, Joe Vest and Andrew Chiles, MINIS – Paul’s Security Weekly #534
Paul asked our Twitter followers about their favorite open-source alternatives to Nagios for monitoring system and service availability, and we listened, of course! Hear Paul’s essential enterprise network monitoring tools in this segment. Twitter poll results for the best free or open-source enterprise network monitoring tools: @securityweekly Librenms (https://t.co/TqhaRFAUQH) and observium (https://t.co/8zZ92gJxDX) before that. — […]
The post Technical Segment: Enterprise Network Monitoring – Enterprise Security Weekly #59 appeared first on Security Weekly.
Continue reading Technical Segment: Enterprise Network Monitoring – Enterprise Security Weekly #59