Security, DevOps and Life In the Cloud - A discussion about security as it relates to cloud computing and all the technology and process that comes with it.
…
continue reading
EliteCast is the podcast from EliteSec Information Security Consultants, a cybersecurity consultancy based in Cambridge, Ontario, Canada. The podcast covers timely topics with pragmatic advice to help organizations understand cybersecurity in a more "business friendly" manner. This is less about the tools, techniques, and blinky boxes, and more about what's important to you and your business and how cybersecurity can make a positive impact to your bottom line.
…
continue reading
Information Security, InfoSec, CyberSec, Cyber, Security, whatever you call it, we talk about it! From mobiles and desktops to data centers and the cloud, Purple Squad Security is here to help and give back to our community of information security professionals. We cover security topics for the red team, blue team, purple team, whatever team! We are a community of professionals, and this is one man's attempt to give back. CISSP, CISM, CEH credits can be obtained here! Also happy to provide i ...
…
continue reading
Episode Notes Here's the first episode of my new podcast, EliteCast! This is intended to be a less technical podcast aimed at business leaders and decision-makers to help explain the importance of information security (or cybersecurity as it's normally called by the target audience). I'm a bit rusty, but I'll get there. Apparently, a 9-month hiatus…
…
continue reading
Episode Notes John walks through some high-level points on why having a valid cybersecurity program is vital to ensuring your organization has the appropriate foundation to protect against external threats. Some links of interest: CIS Controls: https://www.cisecurity.org/controls/cis-controls-list/ CIS Controls FAQ: https://www.cisecurity.org/contr…
…
continue reading
1
Episode 71 - A Casual Conversation with The Cyber Mentor
42:52
42:52
Play later
Play later
Lists
Like
Liked
42:52
Heath "The Cyber Mentor" Adams stops by to have a nice casual chat about how he got into infosec, what he's currently working on, and how he's giving back to the community in a rather novel way. Definitely someone I respect as a great up-and-comer in the industry, this was a fantastic discussion for sure. Some links of interest: Website - https://w…
…
continue reading
1
Episode 70 - Mul-Tea-Factor with Kat Sweet
42:59
42:59
Play later
Play later
Lists
Like
Liked
42:59
Kat Sweet (@TheSweetKat) sits down to chat about incident response and security operations, all while sipping tea with me. Some links of interest: Kat's Twitter - @TheSweetKat Kat's Blog - thesweetkat.com Want to reach out to the show? There's a few ways to get in touch! Purple Squad Security's Twitter: @PurpleSquadSec John's Twitter: @JohnsNotHere…
…
continue reading
John sits down to talk solo about the show and what's in store for 2020. Some links of interest: EliteSec Website - https://elitesec.io EliteSec Twitter - @EliteSec_io Want to reach out to the show? There's a few ways to get in touch! Purple Squad Security's Twitter: @PurpleSquadSec John's Twitter: @JohnsNotHere John's Mastodon: https://infosec.exc…
…
continue reading
1
Episode 68 - All About The Diana Initiative with Circuit Swan
40:08
40:08
Play later
Play later
Lists
Like
Liked
40:08
Circuit Swan stops by the show to talk all things Diana Initiative. If you're going to Hacker Summer Camp 2020, you may want to consider adding the Diana Initiative to your list of cons to attend. Some links of interest: Circuit Swan's Twitter: @CircuitSwan Diana Initiative Twitter: @DianaInitiative Website - https://www.dianainitiative.org Want to…
…
continue reading
1
Episode 67 - A casual conversation with Snow
48:00
48:00
Play later
Play later
Lists
Like
Liked
48:00
Snow stops by during the winter months to share with us the true origin of her hacker handle, stories from some physical penetration testing, a quick note on her Kringlecon talk, and so much more! A great way to round out the year! Some links of interest: Snow's Twitter: @_sn0ww Want to reach out to the show? There's a few ways to get in touch! Pur…
…
continue reading
1
Episode 66 - Fireside Chat with Adrian Cheek
42:05
42:05
Play later
Play later
Lists
Like
Liked
42:05
Adrian Cheek stops by the show this week to have a nice fireside chat with me. We talk about passive DNS, which Adrian first introduced to me a few years ago, and then move on to threat hunting. Adrian has a very interesting history and it was a joy to speak with him. Some links of interest: Adrian's Twitter: @Outkast_TI Farsight Passive DNS - http…
…
continue reading
1
Episode 65 - Fireside Chat with The Gibson
52:38
52:38
Play later
Play later
Lists
Like
Liked
52:38
I'm trying a slightly different format for the next few episodes, and I'd appreciate any feedback you may have. In this episode I sit down with The Gibson, mayor of hackers.town, to talk about a variety of things from the Fediverse, working with the under-serviced SMB market, old school technologies, and the Infosec community as a whole. We're all …
…
continue reading
1
Episode 64 - Fireside Chat with Tanya Janca
50:50
50:50
Play later
Play later
Lists
Like
Liked
50:50
I'm trying a slightly different format for the next few episodes, and I'd appreciate any feedback you may have. In this episode I sit down with the amazing Tanya Janca for a fireside chat about her new company, Security Sidekick. They seem to have some pretty ambitious goals, and I couldn't think of anyone better to help make those a reality. Some …
…
continue reading
1
Episode 63 - Backdoors & Breaches with John Strand
42:55
42:55
Play later
Play later
Lists
Like
Liked
42:55
Oh what I treat I have for you today! John Strand, former SANS instructor, long time co-host on Enterprise Security Weekly, Founder of Black Hills Information Security, and a whole lot more has taken time out of his busy schedule to stop by and talk about Backdoors & Breaches, the new IR card game from BHIS. Naturally we talk about more than just t…
…
continue reading
1
Episode 62 - #ginfosec with InfoSecSherpa - Empathy as a Service
1:01:44
1:01:44
Play later
Play later
Lists
Like
Liked
1:01:44
It's been long enough, and it's time for Tracy "InfoSecSherpa" to return for another #ginfosec episode! This time around we're going to talk about Empathy as a Service, a talk that she recently did at DerbyCon. Soft skills will get you everywhere, and Tracy has some great advice to share about a topic she's very passionate about. Some links of inte…
…
continue reading
Ah, I love anniversaries. This is an anniversary episode celebrating 2 years of Purple Squad Security! Just a few personal rants and discussions for those interested in a bit of a behind the scenes view of things here at the show. No guests, just me blathering on about stuff. Enjoy! Some links of interest: Cyber City Website Twitter Podcast Store: …
…
continue reading
1
Episode 60 – Tabletop D&D with Ken Johnson & Seth Law from Absolute AppSec
1:08:14
1:08:14
Play later
Play later
Lists
Like
Liked
1:08:14
The hiatus is over! Welcome back everyone to the latest episode of the Purple Squad Security podcast! In this episode we have Ken Johnson and Seth Law from the Absolute AppSec Podcast joining me for the latest session of Tabletop D&D. Enjoy! Some links of interest: Absolute AppSec Website Twitter Seth's Twitter Account: @sethlaw Ken's Twitter Accou…
…
continue reading
1
Episode 58 – Malware Analysis with Kyle Andrus
43:52
43:52
Play later
Play later
Lists
Like
Liked
43:52
Often times in information security, we look upon penetration testing and red teaming with awe and view those professions as the "sexy" side of security. Truth be told, the defensive side has a lot of exciting opportunities as well! Kyle Andrus joins me this week to talk about malware analysis, which I think is definitely one of the sexier sides of…
…
continue reading
1
Episode 57 – Tinker After Dark – Tinker Tales by the Fire
1:20:23
1:20:23
Play later
Play later
Lists
Like
Liked
1:20:23
There were more than a few of you who were anxiously awaiting his return, and he's back! Tinker joins me once again to share some stories from his adventures in hackerland. In addition, I have given Tinker free reign to speak as he chooses, and naturally I participate as well. Fair warning, this is not safe for work or sensitive ears. I do ask that…
…
continue reading
1
Episode 56 – John Reads: Choose Your Own Red Team Adventure
32:16
32:16
Play later
Play later
Lists
Like
Liked
32:16
A few weeks ago, Sam King on Twitter mentioned me in a tweet that included a link to a Medium post, but not just any Medium post. Tim MalcomVetter had posted up an "Choose Your Own Red Team Adventure", which I thought was just amazing! I used to read a lot of choose your own adventure books as a kid, so I was naturally excited! For this episode, I …
…
continue reading
1
Episode 55 – Talking Privacy with Matt Beland
49:13
49:13
Play later
Play later
Lists
Like
Liked
49:13
CORRECTION: Early in this episode I mentioned that Amazon would ask for your email password when signing up for a new account. I meant to say Facebook, not Amazon. The practice has since been discontinued, but I wanted to make it clear that this was a Facebook practice, not Amazon. Amazon has not, to the best of my knowledge, ever done something li…
…
continue reading
1
Episode 54 – Tribe of Hackers with Marcus J. Carey
29:46
29:46
Play later
Play later
Lists
Like
Liked
29:46
Tribe of Hackers is a recently released book by Marcus Carey and Jennifer Jin that is a collection of stories from member of our community, or tribe as Marcus describes it. This was a great and insightful interview, and definitely one you will want to listen to if you haven't read the book yet. Some links of interest: Tribe of Hackers: https://www.…
…
continue reading
1
Episode 53 – #Ginfosec with @InfoSecSherpa – All About Cons!
1:37:23
1:37:23
Play later
Play later
Lists
Like
Liked
1:37:23
Once again I am pleased to share a #ginfosec episode with the woman who helps guide others through the mountains of infosec, Tracy InfoSecSherpa Maleeff! In this extended episode Tracy and I speak about conferences from the attendee point of view; what to expect, what to bring, how to go, and what you should aim to get from the con. Enjoy! Some lin…
…
continue reading
This week John goes solo and decides to talk about a recent threat he spun up about on Twitter, naming himself as a generalist within Information Security and discussing what that means to him. Some links of interest: John's Twitter Thread We have a new store! Come check out the various Purple Squad Security goods you can buy to share your followin…
…
continue reading
1
Episode 51 – Fireside Chat with Chris Foulon
39:52
39:52
Play later
Play later
Lists
Like
Liked
39:52
Chris Foulon stops by for a fireside chat to talk about breaking into Infosec. For those unfamiliar with the fireside chat series, this is where we come in with a topic but no other real agenda. It's a casual conversation where I just have a casual conversation with my guest, similar to what would happen in hallway con. I hope you enjoy! Some links…
…
continue reading
1
Episode 50 – Tabletop D&D with Tim De Block, Ed Rojas, Daniel Ebbutt, and Kyle Andrus
1:29:29
1:29:29
Play later
Play later
Lists
Like
Liked
1:29:29
It's that time again! Yes, another Tabletop D&D episode is upon us! This time I asked Timothy de Block from the Exploring Information Security podcast to join me, along with a few interesting characters. Let's just say this particular episode is not for the faint of heart, and we have a few swears thrown in to keep with the atmosphere. Enjoy! Some …
…
continue reading
1
Episode 49 – The Red Team Life with Curtis Brazzell
34:48
34:48
Play later
Play later
Lists
Like
Liked
34:48
What is a red team? How does it differ from a penetration tester's day-to-day? How do red teams stay sharp? How do they stay motivated? These are a few of the questions I seek to have answered by Curtis Brazzell, a managing Security Consultant at Pondurance. It's a great interview and sheds light on the difference between red teaming and penetratio…
…
continue reading
1
Episode 48 – All About Magecart with Yonathan Klijnsma
51:22
51:22
Play later
Play later
Lists
Like
Liked
51:22
Magecart - a web-based credit card skimming kit used by various groups to grab ahold of online shoppers credit cards. Interesting? You bet! On this episode of the Purple Squad Security podcast I have Yonathan Klijnsma, Head Researcher at RiskIQ, joining me to discuss their research on Magecart. Some links of interest: Inside Magecart Report - https…
…
continue reading
1
Episode 47 – Happy New Year! Show Updates and Other News
32:51
32:51
Play later
Play later
Lists
Like
Liked
32:51
Welcome to 2019! John goes solo in this episode and talks about his personal goals for 2019, plus some updates for the show that should make things a bit more structured and hopefully more interesting for the listeners. Some links of interest: EliteSec Website: https://elitesec.io/ Want to reach out to the show? There's a few ways to get in touch! …
…
continue reading