Robert Vamosi, Author at Security Boulevard

The Hacker Mind: MITRE ATT&CK Evaluations

|
MITRE ATT&CK catalogs the known tactics, techniques, and procedures of past advanced persistent threats , providing a roadmap for any red or blue team. In this episode, Frank Duff, Director of ATT&CK Evaluations for MITRE Engenuity, talks about how both red and blue teams can directly benefit from ATT&CK, and ... Read More

The Hacker Mind: Hacking IoT

|
It seems everything smart is hackable, with IoT startups sometimes repeating security mistakes first made decades ago . How then does one start securing it? In this episode, Bau Woods and Paulino Calderon discuss their book, Practical IoT Hacking, and talk about IoT threat models, the technologies being used today, ... Read More

The Hacker Mind Podcast: Hacking Diversity

|
You’d think that having an amazing resume, a couple of bug bounties, or a CTF win would land you that dream infosec job. For many, though, that isn’t true. That’s why Tennisha Martin founded Black Girls Hack ... Read More

The Hacker Mind: Shellshock

|
Shortly after OpenSSL’s Heartbleed, Shellshock was discovered lurking in two-decades old Bash code. How could open source software be vulnerable for so long? This episode looks at how open source projects have for the most part gone untested over time, how fuzzing has evolved over the years, and how new ... Read More

The Hacker Mind Podcast: The Gentle Art of Lockpicking

|
What is the allure of lockpicking at hacker conferences? In this episode Deviant Ollam explains why these mechanical puzzles remain popular with hackers. Ollam, who was an early member of Toool, The Open Organization of Lockpickers, discusses his career as a physical pen tester and also provides some basic lockpicking ... Read More

The Hacker Mind Podcast: So You Want To Be A Pentester

|
To help more people to become penetration testers, Kim Crawley and Phillip L. Wylie wrote The PenTester BluePrint: Starting A Career As An Ethical Hacker. In this episode of The Hacker Mind, Kim talks about the practical steps anyone can take to gain the skills and confidence necessary to become ... Read More

The Hacker Mind Podcast: The Right To Repair

|
How do the current DMCA laws impact those who hack digital devices? And why doesn’t our basic right to repair our devices extend into the digital world? To answer these questions, Paul Roberts, Editor-in-Chief of the Security Ledger, founded secureparis.org, a group of infosec experts who are volunteering to fight ... Read More

The Hacker Mind Podcast: Shall We Play A Game?

|
Capture the Flag is a game, a community, and a really cool hacker culture. But will we one day stream CTFs like we do World of Warcraft or League of Legends? Whether it’s designing, or just playing, John Hammond knows a lot about the gamification of infosec through CTFs ... Read More

The Hacker Mind Podcast: Hacking Healthcare

|
After breaches like SolarWinds, companies pledge to improve their digital hygiene. What if they don’t? And what parallels might infosec learn from COVID-19? In this episode, Mike Ahmadi draws on his years of experience in infosec, his years hacking medical devices. Mike notes how some basic rules of physical hygiene ... Read More

The Hacker Mind Podcast: Hacking OpenWRT

|
For three years OpenWRT had a severe validation problem with its download package manager, until a fuzz tester found and reported the vulnerability. In this episode, Guido Vranken talks about his approach to hacking, about the differences between memory safe and unsafe languages, his use of fuzz testing as a ... Read More