Select Talks from ISS2009 Now Available for Download

November 20th, 2009 Tom

summitlogoWe have uploaded the audio recording of select talks from the Ohio Information Security Summit that took place October 29-30, 2009 in Cleveland, Ohio.  There is a separate RSS feed for these talks located here.  If you are using iTunes you can simply use the RSS feed to download all the talks, it’s different then our normal podcast feed.  If you want to download individual talks you can download them via the links below or from our Libsyn podcast page here.  Thanks to the ISS2009 organizers for putting on a great conference!  Here are a list of talks that we recorded ready for download:

Knowledge + Malice = Chaos: When Awareness Doesn’t Work – John O’Leary
Corporate Honeypots: Hackers Can’t Believe What They See - L. Brent Huston
Enterprise Open Source Intelligence Gathering – Tom Eston
Network Security Monitoring and Incident Response – Richard Bejtlich
Anti-Virus is Dead – Dave Kennedy
Radio Reconnaissance and Pen Testing: All Your RF Are Belong to Us – Matt Neely
Vulnerability Management in a Post Apocalytic World – Bill Mathews

Posted in Podcast Special Editions | No Comments »

Security Justice Special Edition – Interview with Richard Bejtlich (@taosecurity)

November 7th, 2009 Tom

bejtlich_dcbsdcon2009_cropIn this special edition of Security Justice we interview Richard Bejtlich at this year’s Ohio Information Security Summit.  Richard is the Director of Incident Response for General Electric. Prior to joining GE, Richard operated TaoSecurity LLC as an independent consultant, protected national security interests for ManTech Corporation’s Computer Forensics and Intrusion Analysis division, investigated intrusions as part of Foundstone’s incident response team, and monitored client networks for Ball Corporation.

Richard began his digital security career as a military intelligence officer at the Air Force Computer Emergency Response Team (AFCERT), Air Force Information Warfare Center (AFIWC), and Air Intelligence Agency (AIA). Richard is a graduate of Harvard University and the United States Air Force Academy. He wrote “The Tao of Network Security Monitoring” and “Extrusion Detection,” and co- authored “Real Digital Forensics.” He also writes for his blog (taosecurity.blogspot.com) and TechTarget.com, and teaches for Black Hat.

Thanks again to Richard for being our guest on the show!

 
icon for podpress  Security Justice Special Edition - Richard Bejtlich [32:41m]: Play Now | Play in Popup | Download (2055)

Posted in Podcast Special Editions | No Comments »

Security Justice Special Edition – Jayson Street and Dissecting the hack: the f0rb1dd3n network

October 30th, 2009 Tom

eyesThis special edition was recorded during the 7th Annual Ohio Information Security Summit. Jayson Street is the author of a book titled “Dissecting the hack: the f0rb1dd3n network”.  Jayson updates us on the recent controversy regarding the plagiarism by the technical editor of the book.  You can check out the book review by Wesley McGrew that is mentioned in the podcast.  Wesley was also our guest on Episode 18 talking about the book review.  Jayson provides an overview of what happened and how the publisher and the security community are working together to move forward and how the revised book will be written.  You can find out more about this new community on the dissecting the hack website. We want to thank Jayson for being upfront and honest about the situation and for being our guest on the show!

Oh…and as a bonus we have the very first “cross-over of the streams” with PaulDotCom Security Weekly!  Listen to it towards the end of the podcast.  Thanks to Paul and Larry for skyping us in!

 
icon for podpress  Security Justice Special Edition - Jayson Street [49:26m]: Play Now | Play in Popup | Download (1788)

Posted in Podcast Special Editions | 1 Comment »

Security Justice International BBQ Edition – Nick Owen (@wikidsystems)

October 22nd, 2009 Tom

Nick_OwenThis special edition was recorded during our 1st annual International BBQ podcast.

Nick Owen is CEO of WiKID Systems a open source two-factor authentication solution.  Nick talks to us about the WiKID solution, how it works and why it’s better then most expensive two-factor authentication solutions.  Be sure to check out the rockin’ Python based command line software token for use with WiKID (created by our friends over at Hurricane Labs)!

Nick is also speaking at the Ohio Information Security Summit October 29-30th on “Securing Network Access with Open Source Solutions”.

Thanks again to Nick for being on the show!

 
icon for podpress  Security Justice International BBQ Edition – Nick Owen [34:53m]: Play Now | Play in Popup | Download (2043)

Posted in Podcast Special Editions | No Comments »

Security Justice International BBQ Edition – Chris John Riley (@ChrisJohnRiley) and Robin Wood (@digininja)

October 20th, 2009 Tom

chris-robinThis special edition was recorded during our 1st annual International BBQ podcast.

Chris John Riley is a penetration tester and well known security blogger currently located in Austria.  Robin Wood is from the UK and is the creator of many well known open source security projects including Jasager, the Interceptor and KreiosC2. Find out more about Chris on his awesome blog.  You can find out more about Robin and his projects on his website.  Chris and Robin talk to us about Cider, HAR, blogging, BruCON, security/pentest certifications, metasploit modules, Jasager updates, talks at security conferences and more!

Thanks again to Chris and Robin for being on the show!

 
icon for podpress  Security Justice International BBQ - Chris John Riley and Robin Wood [34:39m]: Play Now | Play in Popup | Download (2108)

Posted in Podcast Special Editions | 3 Comments »

Security Justice International BBQ Edition – Frank Breedijk (@autonessus)

October 6th, 2009 Tom

frank_in_bandw_smallThis special edition was recorded during our 1st annual International BBQ podcast.

Frank Breedijk is the creator of AutoNessus which automates regular Nessus scans and provides delta reporting.  Frank also talks about good beer, the European hacking scene, HAR, international hacking/privacy laws and more!  If you want to find out more about Frank you can find him on Twitter and the CupFighter.net blog.

Thanks again to Frank for being on the show!

 
icon for podpress  Security Justice International BBQ - Frank Breedijk [27:29m]: Play Now | Play in Popup | Download (1885)

Posted in Podcast Special Editions | 1 Comment »

Security Justice International BBQ Edition – James Arlen (@myrcurial)

September 18th, 2009 Tom

james_pyramidFINALLY! It’s edited and posted!

This special edition was recorded during our 1st annual International BBQ podcast.  This is our second attempt interviewing James Arlen (@myrcurial) who is a Infosec Geek, Hacker, Social Activist, Author, Speaker and Parent.  James was recently a speaker at Notacon 6, DEFCON 17 and HAR.  You can watch his recent talks on Vimeo.  In this interview James talks about hacker pyramid at DEFCON this year, his experience at HAR, his recent speaking engagements, Hackerspaces, hardware hacking and much more.

Oh, don’t forget to check out MiniSoOnCon! MiniSoOnCon is a Southern Ontario Hackerspaces / Makers Mini-Conference October 2nd and 3rd, 2009 in Hamilton, Ontario.

Special thanks to James for his patience in our convoluted editing process (@securid)…. :-)

 
icon for podpress  Security Justice International BBQ - James Arlen [47:35m]: Play Now | Play in Popup | Download (1983)

Posted in Podcast Special Editions | No Comments »

Security Justice Special Edition – Hacking your Car with OpenOtto

May 12th, 2009 Tom

hoff-knight-rider-mustangIn this special edition of Security Justice Dave, Tom and Chris interview Tiffany Rad who is one of the co-founders of the OpenOtto project.  The goal of the OpenOtto Project is to provide complete free and open access to the networked electronic devices in an automobile.  Yes, you can turn your car into a car like Knight Rider (without David Hasselhoff…sorry ladies), create your own “OnStar” and even improve your gas mileage!  Here is a short summary of OpenOtto from Tiffany’s blog:

“You don’t have to be David Hasselhoff in Knight Rider to have your car talk to you. OpenOtto is a platform for developing vehicle aware products for the consumer and industrial markets. While it will not ask you how you’re doing this evening, most people don’t realize how much information your car’s computer can tell you. OpenOtto consists of a hardware interface to your car’s OBD II connector as well as an extensible software platform for communicating with all networked electronic devices in the car. Designed for flexibility and scalability, it is easily expandable to future vehicle capabilities.”

Tiffany Rad is president of ELCnetworks, LLC., a technology and business development consulting firm and is also a part-time professor in the computer science department at the University of Southern Maine teaching computer law and ethics.

You can find out more about the OpenOtto project via Tiffany’s blog and the official OpenOtto web site.  Thanks again to Tiffany for being a guest on our show.  Please send show feedback to feedback[aT]securityjustice.com or comment below.

 
icon for podpress  Security Justice Special Edition - Hacking your Car with OpenOtto [46:17m]: Play Now | Play in Popup | Download (2098)

Posted in Podcast Special Editions | 1 Comment »

Security Justice Special Edition – Notacon 2009 with Froggy and Tyger

February 13th, 2009 Tom

Froggy and Tyger from NotaconThis fun special edition episode was recorded last year at the Ohio Linux Fest.  The reason it took so long to release was mostly because of the “editing challenges” (Froggy likes to hijack our podcasts) and we wanted to release this at the beginning of 2009 to drum up some hype for Notacon 6 which will be held April 16th – 19th, 2009 in Cleveland Ohio.

Dave and Tom interview two of the Notacon founders, Froggy and Tyger.  Froggy and Tyger talk about what Notacon is, some of the cool talks this year and why you need to go!  Froggy also gives some details on the new venue and what you can expect this year.

Want more information about Notacon and how to register?  Check out the Notacon web site for all the details.  Security Justice will be there!

 
icon for podpress  Security Justice Special Edition - Notacon 2009 with Froggy and Tyger [16:29m]: Play Now | Play in Popup | Download (1216)

Posted in Podcast Special Editions | No Comments »

Security Justice Special Edition – ShmooCon 2009 details with Bruce Potter

October 30th, 2008 Tom

In this special edition of Security Justice Dave and Tom interview Bruce Potter founder of the Shmoo Group and ShmooCon.

ShmooCon is February 6th – 8th 2009 at the Wardman Park Marriott in Washington DC.  Registration begins November 1st at noon eastern standard time!  Check out the ShmooCon website for more details.  Bruce talks about some of the background of ShmooCon, the Shmoo Group and of course Shmoo Ball’s and associated launching devices (aka: cannons)!  Bruce also talks about some of the new things at this years ShmooCon and the need for new speakers.

Thanks again to Bruce for being our guest on the show!

 
icon for podpress  Security Justice Special Edition - ShmooCon 2009 details with Bruce Potter [33:15m]: Play Now | Play in Popup | Download (2443)

Posted in Podcast Special Editions | 1 Comment »

« Previous Entries