Security Justice Episode 36 – Security Turtles, Podcast Updates, DEFCON and Black Hat

August 1st, 2011 Tom

This is the 36th episode of the Security Justice podcast recorded live at the SecureState Bar!  This episode was hosted by Dave and Tom, Chris and Matt.  Music as always provided by dualCORE. Here are the show notes from this episode:

• The crew is alive and actually plan on recording on our regular schedule….! We have a nice new location thanks to SecureState!
• Notacon 8 update.  You must watch Matt’s Pentesting Talk! It will change pentesting forever!!!!
• Updates on crap we are doing…Neely’s book announcement, Tom’s talk at Black Hat USA and DEFCON 19.
• Chris and the ISO turtle
• Everyone should go to DerbyCon!

Please send show feedback to feedback [aT] securityjustice.com or comment below.

Security Justice Episode 36 [ 40:48 ] Play Now | Play in Popup | Download (8636)

Posted in Podcast Episodes | No Comments »

Security Justice Episode 35- THOTCON Edition

May 23rd, 2011 Tom

This is the 35th episode of the Security Justice podcast recorded live at THOTCON! This episode was hosted by Dave and Matt.  Music as always provided by dualCORE. Here are the show notes from this episode:

• Matt and Dave interview all sorts of interesting speakers and attendees from the hacker con in Chicago known as THOTCON!

PODCAST UPDATE: Please note…the bar we usually record the monthly podcast in has CLOSED and is out of business!  That’s correct…CLOSED.  No, we didn’t get kicked out like last time.  We are currently searching for a new home so there may be a delay in new podcasts.  Thanks for listening..we will be back on our regular schedule soon!!!

Security Justice Episode 35 [ 35:28 ] Play Now | Play in Popup | Download (6572)

Posted in Podcast Episodes | No Comments »

Security Justice Episode 34 – THOTCON, Notacon and the Penetration Testing Execution Standard with @kaospunk

March 29th, 2011 Tom

This is the 34th episode of the Security Justice podcast recorded live at Damon’s Grill in Independence, OH. This episode was hosted by Dave and Tom with special guests kaospunk, ghostnomad, John Doe Locksmith and Darth Vader.  Music as always provided by dualCORE. Here are the show notes from this episode:

• Two awesome conferences coming up!  THOTCON in Chicago and Notacon in Cleveland!  Security Justice will be at both!  We will be streaming live over UStream at THOTCON and most likely on Notacon Radio with some VERY special guests (hint: 0ph3lia and hopefully Jimmy Chan)
• BSides Cleveland UStream is posted!
• Check out Dave Kennedy’s Offensive Security Class…prepare your mind for MELTDOWN!
• Brandon talks about the Penetration Testing Execution Standard (PTES) and what it means to the security industry.
• Join the PTES LinkedIn group and get involved!

Please send show feedback to feedback [aT] securityjustice.com or comment below.

Security Justice Episode 34 [ 47:57 ] Play Now | Play in Popup | Download (6163)

Posted in Podcast Episodes | No Comments »

Security Justice Episode 33 – ShmooCon, BSidesCLE, Notacon, THOTCON, O-ISC, AIDE and DerbyCon

January 24th, 2011 Tom

This is the 33rd episode of the Security Justice podcast recorded live at Damon’s Grill in Independence, OH. This episode was hosted by Dave, Matt, Chris and Tom with multiple guests from lots of upcoming conferences.  Music as always provided by dualCORE. Here are the show notes from this episode:

• It’s the super security conference episode!
• Bruce and Heidi Potter from ShmooCon January 28-31
• Tom Eston from BSides Cleveland February 18th
• Dave Lauer talks about Notacon April 14-17th
• THOTCON April 15th (Security Justice will be podcasting LIVE from THOTCON)
• Andy from the Ohio Information Security Conference February 9th
• Bill Gardner from AIDE February 17-18th
• Dave Kennedy from DerbyCon September 30-October 2nd

Please send show feedback to feedback [aT] securityjustice.com or comment below.

Security Justice Episode 33 [ 35:26 ] Play Now | Play in Popup | Download (7240)

Posted in Podcast Episodes | 1 Comment »

Security Justice Episode 32 – Talking Risk with Alex Hutton (@alexhutton)

January 13th, 2011 Tom

This is the 32nd episode of the Security Justice podcast recorded live at Damon’s Grill in Independence, OH. This episode was hosted by Dave, Matt and Chris with special guest Alex Hutton. We also have a special appearance from Dave Kennedy.  Music as always provided by dualCORE. Here are the show notes from this episode:

Alex Hutton has been involved in InfoSec in some capacity since 1994 when he was asked to educate customers as to why they needed these expensive “firewall things”.  Sometimes his role has been marketing, sometimes management, sometimes consultant, sometimes analyst.  Alex likes blogging about risk and security management (both in their more traditional, non-industry connotations).  He works in Risk Intelligence for a Fortune-something company.

He is a co-author of the Verizon Data Breach Investigation, writes regularly for the Verizon Security Blog and the New School of Information Security blog. Alex also contributes to the Cloud Security Alliance, ISM3 security management standard, the CIS metrics project and the Open Group Security Forum.

• What is the difference between GRC and security?
• Risk metrics
• VERIS (Verizon Enterprise Risk & Incident Sharing)
• Data Breach Incident Report (DBIR)
• OSSTMM 3
• Matt Neely will be speaking at AIDE
• Turtles and much more!

Thanks again to Alex for joining us on the podcast!  Please send show feedback to feedback [aT] securityjustice.com or comment below.

Security Justice Episode 32 [ 1:32:23 ] Play Now | Play in Popup | Download (7286)

Posted in Podcast Episodes | No Comments »

Security Justice Episode 31 – The Kevin Johnson (@secureideas) Special

December 11th, 2010 Tom

This is the 31st episode of the Security Justice podcast recorded live at Damon’s Grill in Independence, OH. This episode was hosted by Tom, Dave, Matt with special guest “the one and only” Kevin Johnson. Music as always provided by dualCORE. Here are the show notes from this episode:

• We interview Kevin Johnson who is a SANS instructor (SEC542), master of social media pwnage and the man who runs multiple open source projects including Samurai-WTF, Yokoso! and Laudanum.  We also ask the hard questions including what really is the Samurai password?
• Kevin talks about many of the open source projects he maintains, Zombies, his new venture SecureIdeas, Shmoocon, OWASP AppSecDC 2010, No Script and much more!
• Be sure to check out Matt Neely on WEWS-TV!

Please send show feedback to feedback [aT] securityjustice.com or comment below.

Security Justice Episode 31 [ 45:19 ] Play Now | Play in Popup | Download (6395)

Posted in Podcast Episodes | No Comments »

Security Justice Episode 30 – Rafal Los (@Wh1t3Rabbit) and Dave Kennedy (@dave_rel1k) at the InfoSec Summit

November 19th, 2010 Tom

This is the 30th episode of the Security Justice podcast recorded live at the Information Security Summit. This episode was hosted by Tom, Dave, Matt and Chris with special guests Dave Kennedy and Rafal Los. Music as always provided by dualCORE. Here are the show notes from this long lost episode:

• Dave, Raf and the crew have some great discussions about goal oriented penetration testing, KPI and more!
• Check out Dave’s new website and of course follow the Wh1t3Rabbit and read his great blog.
• We also interview Steve Ocepek from SpiderLabs about his BlackHat talk.
• Stay tuned for some good advice from our resident locksmith (John Doe) as well!

Security Justice Episode 30 [ 1:18:46 ] Play Now | Play in Popup | Download (6316)

Posted in Podcast Episodes | No Comments »

Security Justice Episode 29 – Building Blocks for Building Docs with Alex Hamerstone, James Arlen

October 7th, 2010 Tom

This is the 29th episode of the Security Justice podcast recorded September 15th 2010 live at Damon’s Grill in Independence, OH.  This episode was hosted by Tom, Dave, Matt and Chris with special guests Alex Hamerstone, James Arlen and Dave Kennedy. Music as always provided by dualCORE. Thanks to everyone listening to the live stream and for participating in the chat via IRC.  Here are the show notes:

• Alex discusses his talk at the Northeast Ohio Information Security Forum: Building Blocks for Building Docs.  We delve into one of the most forgotten topics in InfoSec…documentation <gasp>.
• Derby Con is coming!  Be there! September 30-October 2, 2011
• The Information Security Summit is October 14-15th in Cleveland Ohio.  Tom, Matt and Chris will all be speaking!
• Check-in to random locations just like Alex by using Tom’s guide.
• Tom Eston and Kevin Johnson will be presenting the third Social Zombies talk (lite version) at OWASP AppSec DC: Social Zombies Gone Wild: Totally Exposed and Uncensored
• Alex explains how information security relates to “The Bridges of Madison County”. Seriously.
• Check out Gary’s blog about SSL Wars!
• Schuyler Towne and the Open Locksport project
• Stay tuned for some very special live dualCORE!

Please send show feedback to feedback [aT] securityjustice.com or comment below.

Security Justice Episode 29 [ 1:03:21 ] Play Now | Play in Popup | Download (7686)

Posted in Podcast Episodes | No Comments »

Security Justice Episode 28 – Interview with Jack Daniel

September 6th, 2010 Tom

This is the 28th episode of the Security Justice podcast recorded August 18th 2010 live at Damon’s Grill in Independence, OH.  This episode was hosted by Tom, Dave, Matt and Chris with special guests Jack Daniel, dotzero, and Alex from SecureState. Music as always provided by dualCORE. Thanks to everyone listening to the live stream and for participating in the chat via IRC.  Here are the show notes:

• We interview the InfoSec curmudgeon: Jack Daniel.  Jack talks about a certain security certification organization, BSides, Vegas updates, PCI, getting free drinks because you look like ZZ Top and much more! Also, there are some interesting updates from Defcon provided by dotzero.  Be sure to check out Jack’s blog!
• Don’t forget about Ohio Linux Fest September 10-12th and the Hurricane Labs Hack Challenge September 22nd.

Please send show feedback to feedback [aT] securityjustice.com or comment below.

Security Justice Episode 28 [ 1:31:17 ] Play Now | Play in Popup | Download (5954)

Posted in Podcast Episodes | No Comments »

Security Justice Episode 27 – Social Engineering with Brian Brushwood from Scam School

August 2nd, 2010 Tom

This is the 27th episode of the Security Justice podcast recorded July 21st 2010 live at Damon’s Grill in Independence, OH.  This episode was hosted by Tom, Dave, and Chris with special guests Brian Brushwood from Scam School and Dave Kennedy. Music as always provided by dualCORE. Thanks to everyone listening to the live stream and for participating in the chat via IRC.  Here are the show notes:

• We interview Brian Brushwood the host of “Scam School” on Revision3.  From the Revision3 website: Brian is the author of The Professional’s Guide to Fire Eating; Pack the House; and Cheats,Cons, Swindles, and Tricks. He has appeared on dozens of television and radio broadcasts, including “The Tonight Show,” and programs on ABC, NBC, FOX, the BBC, E! and more.  He eats FIRE, knows a thing or two about magic and gives us some great advice on social engineering and techniques on how to pick up girls in a bar.

Please send show feedback to feedback [aT] securityjustice.com or comment below.

Security Justice Episode 27 [ 1:12:19 ] Play Now | Play in Popup | Download (7858)

Posted in Podcast Episodes | No Comments »