Filling the infosec skills gaps with Stealth Worker

Is there an infosec skills shortage? Many industry surveys would indicate yes. And even if there isn’t a great shortage today - the rate at which new professionals are joining the security industry is outpaced by the number of company’s creating systems which need some level of security oversight. Ken Baylor, former CISO at Pivotal … Continue reading Filling the infosec skills gaps with Stealth Worker →

Simulating Threats with vThreat

Protection remains an important step in the security ecosystem, yet no matter how good the prevention, human error, breakdown in processes or technological weaknesses mean these can be bypassed. While that doesn’t mean enterprises should bury their protective products in shallow graves, buying trends indicate that more investments are being made in detection and response … Continue reading Simulating Threats with vThreat →

BSides Manchester Video and Inner Monologue

Bsides MCR an inner monologue Another year another Bsides. I guess it's one reason to visit the grimness that is Manchester. I better use the drive up to think of some witty lines as I'm the compere again. Ian Glover - Keynote Ian says he's been in the industry for about 40 years... Must resist … Continue reading BSides Manchester Video and Inner Monologue →

10 tips for rookie speakers

I’ve had the pleasure and honour of mentoring a couple of people through their first rookie talk experience at Bsides. Through this process, I probably ended up learning more about the process than the speaker. These are 10 rookie commandments I somewhat developed through the process: 1. Start with why People speak at conferences for … Continue reading 10 tips for rookie speakers →

Blackhat Swag

Upon returning from a week in Las Vegas for BsidesLV and Blackhat, it is time I went through my goody bag to see what I returned with. I wish I understood what half the stuff I picked up was!

Blackhat 2015

Another year, another Blackhat and another video. Putting that aside - have you seen how different Khalil (pilgrim) looks? The man looks like he's lost half his bodyweight in 2 years... some seriously impressive stuff! Here are a couple of before and after pics with him for reference.

Defcon talk: Chris Rock, I will Kill You

I thought the talk at Defcon by Chris Rock around exploiting the flaws in the deaths and births registration process was very good. More interesting than the technical aspects are the potential nefarious use-cases such as committing virtual mass-murder, or raising virtual babies for the purposes of insurance fraud, second identities and much more. This is important … Continue reading Defcon talk: Chris Rock, I will Kill You →

Javtribution

Forget what you know, what you think you know about attribution - I present to you Javvad’s Attribution Methodology or Javtribution(tm) for short. Maybe Dr. Krypt3ia will yell Javtribution Shmattribution and try to poke holes in my findings - but I assure you, my findings can be considered holy enough without any poking. There are … Continue reading Javtribution →

Become a Hollywood Hacker in 3 simple steps

Step 1: Setup a large screen on the wall. Play the threatbutt map on the large screen http://threatbutt.com/map/ Step 2: Whilst dressed up in your hoodie and surrounded by empty cans of energy drinks, keep looking up at the screen and uttering some techno-babble. It doesn't matter what you say as long as you say it … Continue reading Become a Hollywood Hacker in 3 simple steps →

Best conference swag

What's the best or most useful free conference swag you've ever received? Here's my countdown of my favourite five. T-shirts and laptop stickers were excluded from the running because there are far too many to pick from. After making the video, I did start finding other little things that I could have mentioned. Typically, I've found … Continue reading Best conference swag →