7 Minute Security
534 episodes - English - Latest episode: almost 2 years ago - ★★★★★ - 63 ratings7 Minute Security is a weekly information security podcast focusing on penetration testing, blue teaming and building a career in security. The podcast also features in-depth interviews with industry leaders who share their insights, tools, tips and tricks for being a successful security engineer.
Homepage Apple Podcasts Google Podcasts Overcast Castro Pocket Casts RSS feed
Episodes
7MS #83: Wifi Pineapple First Impressions
August 06, 2015 12:26 - 8 minutes - 3.82 MBin this episode I talk about my first hands-on experience with a Wifi Pineapple, and why you'll probably want one too.
7MS #82: OSWP-Part 3
August 04, 2015 11:44 - 7 minutes - 3.54 MBThe OSWP series is coming to a close. One final episode today and then the four-quel episode will be all about the test!
7MS #81: OSWP-Part 2
July 30, 2015 11:42 - 8 minutes - 3.79 MBA continuation of our thrilling, exciting, mind-blowing series on OSWP (Offensive Security Wireless Professional)!
7MS #80: OSWP-Part 1
July 28, 2015 11:40 - 7 minutes - 3.42 MBThis episode kicks off a multi-part series all about the OSWP (Offensive Security Wireless Professional) certification.
7MS #79.5: UPDATE(!) on My Love-Hate Relationship with Nessus
July 27, 2015 02:37 - 6 minutes - 2.94 MBIn episode #79 I shared some gripes about Nessus. Those gripes were quickly answered by Tenable staff/support so I wanted to pass relevant updates on to you!
7MS #79: My Love-Hate Relationship with Nessus
July 23, 2015 11:36 - 7 minutes - 3.62 MBIn this episode I talk about one of my favorite vulnerability scanners, Nessus, and why I want to simultaneously hug it and punch it in the neck.
7MS #78: It's All About Segmentation
July 21, 2015 11:32 - 7 minutes - 3.59 MBIn this episode I advocate for proper network segmentation, as doing it (well and right!) can seriously reduce your risks!
7MS #77: OFFTOPIC-Rickrolling Your Coworkers for Fun and Profit
July 16, 2015 13:06 - 7 minutes - 3.46 MBThis week i used my Wifi Pineapple to scare and amuse my coworkers and lure them into a Rickroll trap. All the gory details in today's episode!
7MS #76: Lessons Learned from LastPass
July 14, 2015 13:05 - 7 minutes - 3.6 MBI know this is a bit late, but I wanted to talk a little about the LastPass breach and why I'll still remain a customer.
7MS #75: OFFTOPIC-My Son's Piano Recital
July 09, 2015 20:54 - 9 minutes - 4.56 MBI wanted to share (what I think is) an amusing anecdote about my son's first piano recital, which was topped off by a kid playing the song "Lucky." Many LOLs commenced for me.
7MS #74: How to Become a More Organized Information Security Professional
July 08, 2015 02:37 - 8 minutes - 3.82 MBIn this episode I share some strategies and apps that may help you stay more organized as you go about your infosec work!
7MS #73: PCI Pentesting 101 – Part 2 (audio)
June 30, 2015 15:14 - 7 minutes - 3.52 MBThis episode is the exciting continuation of a recent pentest I did, in which I got some serious pwnage, including cracking the domain admin password! 7MS #73: PCI Pentesting 101 – Part 2 (audio)
7MS #72: PCI Pentesting 101 (audio)
June 25, 2015 07:00 - 7 minutes - 3.75 MBI’m pumped to talk about an about an awesome, free little tool that made my Internet connection feel like new again. 7MS #72: PCI Pentesting 101 (audio)
7MS #71: OFFTOPIC-Mad Max (audio)
June 23, 2015 07:00 - 8 minutes - 3.82 MBWe’re going totally off topic today and doing a movie review of Mad Max! 7MS #71: OFFTOPIC-Mad Max (audio)
7MS #70: Get the Most out of Your DNS! (audio)
June 18, 2015 07:00 - 7 minutes - 3.42 MBI’m pumped to talk about an about an awesome, free little tool that made my Internet connection feel like new again. 7MS #70: Get the Most out of Your DNS! (audio)
7MS #69: I’m Not Responsible for Your Information Insecurity (audio)
June 16, 2015 07:00 - 8 minutes - 3.79 MBAre you too hard on yourself? Do you think the success of your client’s infosec program lives and dies with you? Listen to this episode. You might feel better. 7MS #69: I’m Not Responsible for Your Information Insecurity (audio)
7MS #68: Is Training and Awareness Worth It or Worthless (audio)
June 11, 2015 07:00 - 8 minutes - 4.13 MBThis episode is about something that got my undies in a bunch – I heard a security expert imply that training and awareness might be worthless! 7MS #68: Is Training and Awareness Worth It or Worthless (audio)
7MS #67: Wifi Sniffing is Fun-Part 2 (audio)
June 09, 2015 20:00 - 7 minutes - 3.45 MBThis is a follow-up to episode #64, in which I did some fun wireless sniffing and tried to find sensitive data within it! In the episode I talk about the network “map” of my sniffing setup. It looks like this: Ethernet from client->upstream port of hub My laptop with Wireshark->Hub Wifi access point->Hub To find…
7MS #66: I’m Excited to Go Phishing – Part 2 (audio)
June 04, 2015 13:45 - 8 minutes - 4.01 MBThis is a follow-up to episode #63, discussing the results of a fun phishing campaign I recently completed. 7MS #66: I’m Excited to Go Phishing – Part 2 (audio)
7MS #65: OFFTOPIC-Still Alice (audio)
June 03, 2015 07:00 - 7 minutes - 3.31 MBWarning, this episode is off topic and has NOTHING to do with infosec! Nope! Instead, it’s a review of the movie Still Alice. Yep. That happened. 7MS #65: OFFTOPIC-Still Alice (audio)
7MS #64: Wifi Sniffing is Fun-Part 1 (audio)
May 28, 2015 11:00 - 7 minutes - 3.47 MBI got a fun project involving wireless sniffing, followed up by scraping through packets looking for credit card data! Here’s part 1, which talks about about software/hardware you might need to do this the right way. 7MS #64: Wifi Sniffing is Fun-Part 1 (audio)
7MS #63: I’m Excited to Go Phishing (audio)
May 21, 2015 07:00 - 7 minutes - 3.6 MBThis week I’ll be launching a phishing campaign against an organization that has been well trained to defend against such malicious attacks and links! Will this organization break my company’s 100% success rate for phishing, or will I be able to craft an email to fool at least one person? 7MS #63: I’m Excited to…
7MS #62: You Should Run LAPS (audio)
May 19, 2015 07:10 - 7 minutes - 3.38 MBI’m excited about this! Microsoft has released a tool called Local Administrator Password Solution to help administrators manage local admin credentials for domain-joined machines. Check out this article for more information, and please contact me if you end up running this, as I’d love to hear about your experience. 7MS #62: You Should Run LAPS…
7MS #61: Why Local Admin Rights Suck (audio)
May 14, 2015 07:00 - 8 minutes - 3.86 MBUsers running as local admins on their machine are a big risk! This episode discusses some reasons why, and also here is the link to the Avecto study I mention regarding how many Microsoft vulnerabilities would be thwarted by removing admin rights. 7MS #61: Why Local Admin Rights Suck (audio)
7MS #60: How Not to Suck at Customer Service (audio)
May 12, 2015 07:00 - 8 minutes - 4.08 MBThis episode was inspired by two awesome customer service experiences I had in the past week. It got me thinking: how can we as infosec professionals suck less with our customer service approach? 7MS #60: How Not to Suck at Customer Service (audio)
7MS #59: Traveling with a Red Giant – Part 2 (audio)
May 07, 2015 17:39 - 7 minutes - 3.77 MBA few episodes back I talked about Red Giant, a cool service that provides you with a pre-paid debit card that can be controlled/locked with your phone. I finally got my card working, and this episode’s about some cool things I learned about it. 7MS #59: Traveling with a Red Giant – Part 2 (audio)
7MS #58: What Should We Do First? (audio)
May 05, 2015 07:00 - 8 minutes - 3.97 MBAt the end of just about every assessment I deliver, the client asks “What should we do first?” They (understandably) want to know a “top 5″ list of things they should change right away to improve their security posture. Today’s episode explores that a bit. 7MS #58: What Should We Do Next? (audio)
7MS #57: How to Review a Firewall (audio)
April 30, 2015 07:00 - 8 minutes - 3.87 MBIn this episode I talk about a few different ways to approach firewall reviews/audits. This document was very helpful in getting my template started. Also check out Nipper if you’re looking for a firewall review/audit tool. 7MS #57: How to Review a Firewall (audio)
7MS #56: OFFTOPIC – Catching Up and Blowing Noses (audio)
April 28, 2015 07:00 - 8 minutes - 3.91 MBA few offtopic things: What you can expect as far as a podcast release schedule going forward Two suspicious charges that showed up on my credit card while out of town! 7MS #56: OFFTOPIC – Catching Up and Blowing Noses (audio)
7MS #55: OFFTOPIC – What’s in Brian’s Murse? (video)
April 22, 2015 07:00 - 6 minutes - 117 MBOk I don’t really have a murse, but I wanted to do a short video(!) podcast to show you some sorta-security-related gadgets that I’ve been nerding out on the last few weeks. 7MS #55: OFFTOPIC – What’s in Brian’s Murse? (video)
7MS #54: Traveling with a Red Giant (audio)
April 16, 2015 07:00 - 7 minutes - 3.67 MBIf you’re concerned about your credit/debit card security, you might want to give Red Giant a try. It’s a service that provides a debit card you can unlock *only* when buying something. It’s cool. Oh, and Red Giant is NOT sponsoring this episode. If I ever get sponsors, I’ll disclose them clearly. :-) 7MS #54:…
7MS #53: Are You Ready to Get Robbed? (audio)
April 14, 2015 07:00 - 7 minutes - 3.31 MBBusiness DR plans are a hugely important – and often overlooked – piece of the infosec puzzle. But what about at home? If you got run over by a bus tomorrow, would you have good plans in place to help your partner/spouse take over the tech side of your household? That’s what we’re talkin’ about…
7MS #52: OFFTOPIC – My Son is Really Loyal (audio)
April 09, 2015 07:00 - 8 minutes - 3.85 MBIt’s another off-topic episode today. This one’s about how my eight-year-old son is fiercely loyal, and wants to settle a 25-year-old score for me. 7MS #52: OFFTOPIC – My Son is Really Loyal (audio)
7MS #51: CEH vs. OSCP (audio)
April 07, 2015 07:00 - 7 minutes - 3.3 MBA few people have written in asking whether to pursue the CEH or OSCP (or both). This episode discusses my experience with each cert and hopefully points you in the right direction on which one might be right for you. Here’s the article on CEH I mention during the episode – it has much more…
7MS #50: OSCP – The Final Chapter – part 2! (audio)
April 02, 2015 07:00 - 7 minutes - 3.63 MBAt last, the epic conclusion of the maddening, redeeming OSCP journey. 7MS #50: OSCP – The Final Chapter – part 2! (audio)
7MS #49: OSCP – The Final Chapter – part 1! (audio)
March 31, 2015 07:00 - 7 minutes - 3.41 MBWe’ve arrived at the exciting two-part finale to my bloody battle with the OSCP! 7MS #49: OSCP – the final chapter – part 1! (audio)
7MS #48: So I Gave My Eight Year Old a Computer (audio)
March 21, 2015 07:00 - 8 minutes - 3.96 MBIs it a good idea to give young kids a computer to play with? Maybe. Maybe not. Tune in to today’s episode and weigh in! 7MS #48: So I Gave My Eight Year Old a Computer (audio)
7MS #47: Logging and Alerting RELOADED (audio)
March 17, 2015 07:00 - 7 minutes - 3.44 MBHey, you should log the stuff going on in your network. This episode talks about that (again). And I reference some AD-related settings that may not be enabled in your environment…stuff you might want to turn on. Check out that information via this PDF here. 7MS #47: Logging and Alerting Reloaded (audio)
7MS #46: So You Want to be a Hacker? (audio)
March 14, 2015 07:00 - 7 minutes - 3.74 MBSo you want to be a hacker? Cool. In this episode I toss myself under the bus and share why I used to have a really dumb perspective on what that meant, and how my view of hackers – and hacking – has changed (and hopefully matured). 7MS #46: So You Want to be a…
7MS #45: OFFTOPIC – Why I Stopped Pirating Software (audio)
March 10, 2015 07:00 - 7 minutes - 3.48 MBWarning, this is an off topic episode! I used to pirate software. There. I admitted it. But it’s funny how a letter from the Comcast legal dept. will change your mind and let you see piracy in a whole new light! 7MS #45: OFFTOPIC – Why I Stopped Pirating Software (audio)
7MS #44: OFFTOPIC – Annoying People at the YMCA (audio)
March 07, 2015 07:00 - 7 minutes - 3.75 MBWarning, this is an off topic episode! Did you know it’s fun to stay at the YMCA? Did you also know it’s fun to annoy annoying people at the YMCA? Listen to this episode to find out why. 7MS #44: OFFTOPIC – Annoying People at the YMCA (audio)
7MS #43: Why Web Site Vulnerability Scanners Can Ruin Your Day (audio)
February 28, 2015 07:00 - 7 minutes - 3.47 MBDid you know that Web site vulnerability scanners can destroy your customer sites? If not, listen to this. 7MS #43: Why Web Site Vulnerability Scanners Can Ruin Your Day (audio)
7MS #42: Vulnerability Scans vs. Pentests (audio)
February 14, 2015 01:50 - 7 minutes - 3.67 MBI think everybody throws around the terms “vulnerability scans” and “pentests” and they mean completely different things from one person to the next. In this episode I try to clarify the differences and distinctions (in my mind, anyways). 7MS #42: Vulnerability Scans vs. Pentests (audio)
7MS #41: OSCP – Part 7 (audio)
February 06, 2015 19:00 - 6 minutes - 3.25 MBTried of talking about OSCP yet? Me neither! 7MS #41: OSCP – Part 7 (audio)
7MS #40: OSCP – Part 6 (audio)
January 31, 2015 01:00 - 7 minutes - 3.77 MBPART SIX of a mind-bending series all about OSCP! 7MS #40: OSCP – Part 6 (audio)
7MS #39: Infosec on the Disney Boat (audio)
January 24, 2015 01:00 - 8 minutes - 4.03 MBI took a Disney cruise with my family recently, and one particular aspect of the trip gave me the Big Brother heebie-jeebies. 7MS #39: Infosec on the Disney Boat (audio)
7MS #38: OFFTOPIC – Health and Infosec (audio)
January 17, 2015 01:00 - 7 minutes - 3.35 MBEvery once in a while I thought it would be fun to go slightly off topic and talk about other stuff I’m interested in. This episode kind of has a tech twist though. I talk about how I use my iPhone and a few apps to stay at least a little bit in shape. 7MS…
7MS #37: Keimpx (audio)
January 10, 2015 01:00 - 7 minutes - 3.37 MBEver wanted to pass hashes a whole network at a time? Check out this episode, where I talk about one of my fav new tools called Keipmx. 7MS #37: Keimpx (audio)
7MS #36: OSCP – Part 5 (audio)
January 03, 2015 01:00 - 7 minutes - 3.39 MBMore talk about OSCP goodness. Download: 7MS #36: OSCP – Part 5 (audio)
7MS #35: OSCP – Part 4 (audio)
December 27, 2014 07:00 - 6 minutes - 3.04 MBThis is the 4th thrilling installment in our exciting series about the awesome, challenging, rage-inducing, but ultimately rewarding training and certification called OSCP. Download: 7MS #35: OSCP – Part 4 (audio)