loader from loading.io

Megan Roddie - co-author of "Practical Threat Detecion Engineering"

BrakeSec Education Podcast

Release Date: 08/25/2023

Youtube exclusive! Mick Douglas discussing Sensible AI use poilcy, RAGs, and how to get up to speed for your business' sake show art Youtube exclusive! Mick Douglas discussing Sensible AI use poilcy, RAGs, and how to get up to speed for your business' sake

BrakeSec Education Podcast

Youtube Video:     Questions and topics: (please feel free to update or make comments for clarifications) * Everyone wants us to use AI, but only when it benefits them    * “Don’t use AI to submit your resume to our company”    * “Do know how to use AI”     * “Don’t use AI to answer the interview questions” * AI implementations range from “super easy” to “crazy easy”     * If you already know how to use AI * Setting it up wrong can really hurt your company * Tasks in AI that can get you into trouble     *...

info_outline Jay Beale discusses his K8s class at BlackHat, Kubernetes developments, and mental health show art Jay Beale discusses his K8s class at BlackHat, Kubernetes developments, and mental health

BrakeSec Education Podcast

Youtube Video at: https://www.youtube.com/watch?v=yHPvGVfPgjI   Jay Beale is a principal security consultant and CEO/CTO for InGuardians. He is the architect of multiple open source projects, including the Peirates attack tool for Kubernetes (in Kali Linux), the Bustakube CTF Kubernetes cluster, and Bastille Linux. Jay created and leads the Kubernetes CTF at DEF CON and previously helped in the Kubernetes project's Security efforts. He’s co-written eight books and given many public talks at Black Hat, DEF CON, RSA, CanSecWest, Blue Hat, ToorCon, DerbyCon, WWHF, HushCon and others. He...

info_outline Socvel intel threat quiz, Pearson Breached, nintendo bricking stuff, and kevintel.com show art Socvel intel threat quiz, Pearson Breached, nintendo bricking stuff, and kevintel.com

BrakeSec Education Podcast

socvel.com/quiz if you want to play along! Check out the BrakeSecEd Twitch at join the Discord: https://bit.ly/brakesecDiscord Music: Music provided by Chillhop Music: https://chillhop.ffm.to/creatorcred "Flex" by Jeremy Blake Courtesy of Youtube media library

info_outline Bronwen Aker - harnessing AI for improving your workflows show art Bronwen Aker - harnessing AI for improving your workflows

BrakeSec Education Podcast

Guest Info: Name:       Bronwen Aker Contact Information (N/A):   Time Zone(s): Pacific, Central, Eastern   –Copy begins–   Disclaimer: The views, information, or opinions expressed on this program are solely the views of the individuals involved and by no means represent absolute facts. Opinions expressed by the host and guests can change at any time based on new information and experiences, and do not represent views of past, present, or future employers.   Recorded:     Show Topic Summary: By harnessing AI, we can assist in being...

info_outline post-bsides SD discussion, EPSS, the answer I should have given, and 'Lord Brake' show art post-bsides SD discussion, EPSS, the answer I should have given, and 'Lord Brake'

BrakeSec Education Podcast

Check out the BrakeSecEd Twitch at or Youtube: https://youtube.com/c/BDSPodcast join the Discord: https://bit.ly/brakesecDiscord https://arxiv.org/abs/2302.14172 - EPSS whitepaper https://www.linkedin.com/posts/jayjacobs1_epss-threatintel-vulnerabiltymanagement-activity-7308146548767404032-RubN https://www.first.org/epss/ https://events.zoom.us/ev/AmoNH3baC7HVqDlDmgUtd2uCmTCMwJXfkR8mG6I5OxzbW01nhRMQ~AoEYQz5ROK4ybE4iX9b0PL-1utz4z0nbyrTjT4lskH_08_zfesR_Q_rNlA - BHIS training with Bronwen Aker on 03 April 2025 Music: Music provided by Chillhop Music:...

info_outline March23: buy browser extensions, attackers don't need exploits, socvel CTI quiz show art March23: buy browser extensions, attackers don't need exploits, socvel CTI quiz

BrakeSec Education Podcast

Check out the BrakeSecEd Twitch at https://twitch.tv/brakesec Join the Discord! https://bit.ly/brakesecDiscord Questions and topics: (please feel free to update or make comments for clarifications) * https://techoreon.com/http-flaw-in-apple-passwords-left-iphones-vulnerable/ * https://darkmarc.substack.com/p/attackers-dont-need-exploits-when * https://www.techzine.eu/news/security/129713/the-browser-is-riddled-with-bugs-2025-may-squash-them/ * https://medium.com/@vanvleet/compound-probability-you-dont-need-100-coverage-to-win-a2e650da21a4 (interesting article on quantifying attack risk by...

info_outline steam distributes malware in game form, RDP open from DOGE servers, hacking a supply chain for 50K show art steam distributes malware in game form, RDP open from DOGE servers, hacking a supply chain for 50K

BrakeSec Education Podcast

Youtube VOD:     – supply chain issues can crop up anywhere… are you blocking people from steam and popular software downloads online? <- 100 digits of pi <- periodic table song   Additional information / pertinent LInks (Would you like to know more?): https://www.socvel.com/quiz/ https://xphantom.nl/posts/Offensive-Security-Lab/ Show points of Contact: Amanda Berlin: Brian Boettcher:   Bryan Brake:   Brakesec Website: Youtube channel: discord: https://discord.gg/brakesec Twitch Channel:    Music: "Flex" by Jeremy...

info_outline Tanya Janca Talks secure coding, Semgrep Academy, and community building, and more! show art Tanya Janca Talks secure coding, Semgrep Academy, and community building, and more!

BrakeSec Education Podcast

Check out the BrakeSecEd Twitch at https://twitch.tv/brakesec Join the Discord! https://discord.gg/brakesec #youtube VOD (in 1440p):   Questions and topics: Bsides Vancouver discussion Semgrep Community and Academy Building communities What are ‘secure guardrails’ Reducing barriers between security and developers How to sell security to devs: “hey, if you want to see us less, buy/use this?” “Security is your barrier, but we have goals that we can’t reach without your help.” https://wehackpurple.com/devsecops-worst-practices-artificial-gates/  How are you seeing things...

info_outline Josh Grossman - building Appsec programs, bridging security and developer gaps show art Josh Grossman - building Appsec programs, bridging security and developer gaps

BrakeSec Education Podcast

Youtube VOD:   #appsec, #owasp, #ASVS, #joshGrossman, #informationsecurity, #SBOM, #supplychain, #podcast, #twitch, #brakesec, #securecoding, #Codeanalysis Questions and topics: 1. The background to the topic, why is it something that interests you? How do you convince developers to take your course? 2. What do you think the root cause of the gap is? 3. Who is causing the gaps? (‘go fast’ culture, overzealous security, GRC requirements, basically everyone?) 4. Where do gaps begin? Is it the ‘need’ to ‘move fast’? 5. What can devs do to involve security in their process?...

info_outline Managing messaging with management, becoming a CISO with Mary Gardner from Goldiknox show art Managing messaging with management, becoming a CISO with Mary Gardner from Goldiknox

BrakeSec Education Podcast

Disclaimer: The views, information, or opinions expressed on this program are solely the views of the individuals involved and by no means represent absolute facts. Opinions expressed by the host and guests can change at any time based on new information and experiences and do not represent views of past, present, or future employers.   Recorded: 08 Apr 2024 Youtube VOD: https://www.youtube.com/watch?v=K8qApvsFtqw   Show Topic Summary: If you want to get in the mind of a board member, I submit to you my discussion with we did last night on . Join Mary and I as we discuss...

info_outline
 
More Episodes

Disclaimer: The views, information, or opinions expressed on this program are solely the views of the individuals involved and by no means represent absolute facts. Opinions expressed by the host and guests can change at any time, and do not represent views of past, present, or future employers.

Buy here: https://subscription.packtpub.com/book/security/9781801076715

Amazon Link: https://packt.link/megan

Youtube VOD: https://www.youtube.com/watch?v=p1_jQa9OQ2w

 

Show Topic Summary:

Megan Roddie is currently working as a Senior Security Engineer at IBM. Along with her work at IBM, she works with the SANS Institute as a co-author of FOR509, presents regularly at security conferences, and serves as CFO of Mental Health Hackers. Megan has two Master's degrees, one in Digital Forensics and the other in Information Security Engineering, along with many industry certifications in a wide range of specialties. When Megan is not fighting cybercrime, she is an active competitor in Muay Thai/Kickboxing. She is a co-author of “Practical Threat Detection Engineering” from Packt publishing, on sale now in print and e-book. Buy here: https://subscription.packtpub.com/book/security/9781801076715

 

https://packt.link/megan ← Amazon redirect link that publisher uses if you want something easier on the notes

 

Questions and topics:

  1. Of the 3 models, which do you find you use more and why? (PoP, ATT&CK, kill chain)

  2. What kind of orgs have ‘detection engineering’ teams? What roles are involved here, and can other teams (like IR) be involved or share a reverse role there?

  3. Lab setup requires an agent… any agent for ingestion or something specific? 

  4. How does Fleet or data ingestion work for Iot/Embedded device testing? Anything you suggest?

  5. How important is it to normalize your log output for ingestion? (app, web, server all tell the story)

Additional information / pertinent LInks (Would you like to know more?):

  1. Unified Kill Chain: https://www.unifiedkillchain.com/

  2. ATT&CK: https://attack.mitre.org/ 

  3. D3FEND matrix BrakeSec show from 2021: https://brakeingsecurity.com/2021-023-d3fend-framework-dll-injection-types-more-solarwinds-infections 

  4. Pyramid of Pain: https://detect-respond.blogspot.com/2013/03/the-pyramid-of-pain.html

  5. https://www.securitymagazine.com/articles/98486-435-million-the-average-cost-of-a-data-breach 

  6. https://medium.com/@gary.j.katz (per Megan, ‘it’s basically Chapter 11 of the book’)




Show points of Contact:

Amanda Berlin: @infosystir @hackershealth 

Brian Boettcher: @boettcherpwned

Bryan Brake: @bryanbrake on Mastodon.social, Twitter, bluesky

Brakesec Website: https://www.brakeingsecurity.com

Twitter: @brakesec 

Youtube channel: https://youtube.com/c/BDSPodcast

Twitch Channel: https://twitch.tv/brakesec