Shows
SecTools Podcast SeriesSecTools Podcast E58 with Attila KalmanAttila Kálmán (@yesimxev) is a security and mobile phone enthusiast, one of our NetHunter developers who is continuously improving the project for many years. His interest in mobile hacking was initially inspired by Mr. Robot, leading him to contribute to NetHunter starting with a OnePlus One. His researches lead him to add support for several devices, including the first Kali NetHunter smartwatch. For more SecTools podcast episodes, visit https://infoseccampus.com
2025-12-1526 minSecTools Podcast SeriesSecTools Podcast E57 with Jayesh Singh ChauhanJayesh Singh Chauhan is a security professional with 12 years of experience in the security space and he is the founder of Cloud Village at DEF CON. In the past, he has been part of the security teams of PayPal, PwC, and was the Director of Product Security at Sprinklr Inc. in his last job. He currently runs his own Cloud Security Training and Consultancy firm, Cloudurance Security. He has been a trainer at conferences like Blackhat USA, Blackhat Asia, AppSec NZ, nullcon, and has trained defense forces. He has also authored Cloud Security Suite, OWASP Skanda, RFID_Cloner, and...
2025-05-2539 minSecTools Podcast SeriesSecTools Podcast E56 with Donato CapitellaDonato is a Software Engineer and Principal Security Consultant at WithSecure, with over 12 years of experience in offensive security, security assurance, and software engineering. His background spans a wide range of cybersecurity areas, which gives him a practical and well-rounded perspective when working on securing LLM applications. Donato has conducted extensive research on generative AI security, covering topics such as multi-chain prompt injection, securing ReAct agents, and testing LLM guardrails. He shares his work through a technical YouTube channel (https://www.youtube.com/@donatocapitella) and publishes research articles on the WithSecure Labs blog (https://consulting.withsecure.com/articles/generative-ai-security-findings-from-our-research/).
2025-02-2038 minSecTools Podcast SeriesSecTools Podcast E55 with Andre TenreiroAndre Tenreiro is a security professional with over a decade of leadership in various sectors, including IT infrastructure, cybersecurity, cloud computing, and IP networks. He has a passion for developing an open-source security tool aimed at identifying phishing domains. In 2020, Andre Tenreiro started the development of an excellent Open Source Intelligence (OSINT) security tool called, openSquat; a "domain squatting and phishing watchdog". It is a tool and service for detecting domain look-alikes by searching for newly registered domains that might be impersonating legitimate domains and brands. Our goal is to help protect organizations and individuals from phishing attacks, brand...
2024-09-1524 minSecTools Podcast SeriesSecTools Podcast E54 with Ezz TahounEzz Tahoun, a distinguished cyber-security data scientist, who won AI & innovation awards at Yale, Princeton and Northwestern. He also got innovation awards from Canada’s Communications Security Establishment, Microsoft US, Trustwave US, PIA US, NATO, and more. He ran data science innovation programs and projects for OrangeCyber Defense, Forescout Technologies, Royal bank of Canada, Governments, and Huawei Technologies US. He has published 20 papers, countless articles and 15 open source projects in the domain. When he was 19 years old he started his CS PhD in one of the top 5 labs in the world for cyber & AI, in the prestigious University of Wa...
2024-07-1543 minSecTools Podcast SeriesSecTools Podcast E53 with Praveen KanniahPraveen is a security enthusiast with 14+ years of experience in application security who loves to break complexity bias. His works include developing frameworks and tools for Container Security, automated Penetration Testing, SAAS Security, Automated Secure Code Analysis, Asset Discovery and Recon and also have worked on Security against Analytics Mitigated threats against Analytics through extensive Research and solution suggestions on browser security and rate limiting.Praveen and his team at PhonePe developed Mantis, an open-source security framework to automate the workflow of asset discovery, reconnaissance, and scanning using a combination of open-source and custom tools....
2024-05-2929 minSecTools Podcast SeriesSecTools Podcast E52 with Duncan OgilvieDuncan Ogilvie has started reverse engineering somewhere around 2009. He is the creator of x64dbg, an open-source x64/x32 debugger for windows, and 100+ other projects. Duncan loves to do binary analysis and Windows internals. In this episode, he shares the interesting journey with developing and maintaining x64dbg project. For more SecTools podcast episodes, visit https://infoseccampus.com
2024-03-1927 minSecTools Podcast SeriesSecTools Podcast E51 with Dimitrios ValsamarasA cybersecurity professional with expertise in mobile, web, and network penetration testing. Dimitrios holds a degree in Computer Science, majoring in Cryptography and Security, and has worked with top companies like Microsoft and Google. He is frequent speaker at prominent security conferences such as BlackHat, Nullcon, Insomni'hack, and Troopers. He is passionate about reverse engineering and was a member of one of Greece's first reverse engineering research groups.For more SecTools podcast episodes, visit https://infoseccampus.com
2024-02-1930 minSecTools Podcast SeriesSecTools Podcast E50 with Angelina TsuboiAngelina Tsuboi is an aerospace cybersecurity instructor focusing on satellite systems. With over a decade of programming and development experience in addition to being a scientific researcher for NASA, she has been involved in various CubeSat initiatives where she participated in tasks related to command and data handling subsystems and firmware development for the Onboard Computer.Driven by her passion for teaching, Angelina finds joy in simplifying complex subjects such as aerospace, cybersecurity, and programming to empower her students, Angelina focuses on ensuring that her students can readily apply the acquired skills to their professional and personal...
2024-01-1431 min
Breakpoint Security Podcast#S02EP02 Sprinting Securely: Pentesting Keeping Pace with Agile Development | Sanoop ThomasTOPIC: Sprinting Securely: Pentesting Keeping Pace with Agile DevelopmentBuilding Actionable Security Champion Programs & Pentest catching up with speed of agilePodcast Guest: Sanoop Thomas (@s4n7h0)Sanoop Thomas (@s4n7h0) is a seasoned security professional with a diverse background in consulting, teaching, research and product-based industries with a passion to solve complex security problems. Today, Sanoop works as an information security specialist focusing on application security and secure coding. His field of interest includes fuzzing software vulnerabilities, r...
2023-09-0144 min
SecTools Podcast SeriesSecTools Podcast E49 with Gelei DengGelei is a cybersecurity researcher with wide interests in system security and penetration testing. He is currently pursuing a Ph.D. in computer science from Nanyang Technological University, Singapore, where he explores security challenges in complex human-interactive systems. Gelei is also a blockchain auditor at Quantstamp, Inc., where he contributes to the audits of web3 projects and security protocols. His research interests encompass security testing, software analysis, and large language models. Gelei likes to apply software engineering techniques to solve real-world challenges in security domains. He is now focusing on LLM security and its security-related applications.For more...
2023-05-3134 min
SecTools Podcast SeriesSecTools Podcast E48 with Abhisek DattaAbhisek Datta is an accomplished security professional with over a decade of experience in information security solution engineering, services, vulnerability research, reverse engineering and security tools development.He is an active participant of NULL Security Community, India’s largest open security community as a core team member responsible for techndnology development. He is an open source enthusiast and He authored swachalit, the automation Platform that hosts null.co.in and also contributed to several opensource projects. As a security researcher, he is credited with multiple vulnerability discovery across enterprise products with CVEs to his name such as...
2023-04-2334 min
SecTools Podcast SeriesSecTools Podcast E47 with Tim MisiakTim Misiak has been working on debuggers and diagnostics for most of my professional career as a software engineer. For more than a decade, Tim has been working on the Microsoft Debugger Platform team, working on tools such as WinDbg and KD. He started the WinDbgNext project in 2016 that modernized WinDbg UI. Tim also wrote a chunk of the X86/X64 emulator used by Time Travel Debugging. Currently, Tim founded his start up augmend.ioFor more SecTools podcast episodes, visit https://infoseccampus.com
2023-02-2041 min
SecTools Podcast SeriesSecTools Podcast E46 with Thomas RocciaThomas Roccia is the Sr. Security Researcher at Microsoft, working on threat intelligence, malware analysis, incident response, and more. He also has the interest in many other topics including mentoring and teaching, open-source, hacking, 3D printing and even blockchain ecosystem.For more SecTools podcast episodes, visit https://infoseccampus.com
2023-01-3128 min
SecTools Podcast SeriesSecTools Podcast E45 with Erlend OftedalErlend has worked as a developer and security consultant for over 14 years, trying to build and break many different types of systems. He spends some of his free time on security research and open source tools, and is the main author behind retire.js - a free and open source scanner for JavaScript. He is also the chapter leader of the Norwegian OWASP chapter.For more SecTools podcast episodes, visit https://infoseccampus.com
2022-12-0730 min
SecTools Podcast SeriesSecTools Podcast E44 With Jeff FoleyJeff Foley has over 20 years of industry experience focused on applied research & development and assessment of security in critical information technology and infrastructure. He is the Project Leader for Amass, an OWASP (Open Web Application Security Project) Foundation flagship project that performs in-depth attack surface mapping and asset discovery. Jeff is also an Adjunct Lecturer teaching Penetration Testing at the SUNY (State University of New York) Polytechnic Institute. Previously, he was the US Manager for Penetration Testing & Red Teaming at National Grid, a multinational electricity and gas utility company. Prior to this, Jeff served as the Director of Penetration Testing...
2022-11-2143 min
SecTools Podcast SeriesSecTools Podcast E43 With Anand TiwariAnand Tiwari is an information security professional with a strong technical background working as a Technical Product Manager (PM), focusing on the more technical aspects of a cloud security product. He tries to fill it in by doing in-depth technical research and competitive analysis, given business issues, strategy, and a deep understanding of what the product should do and how the products actually work.He has authored ArcherySec—an open source-tool and has presented at BlackHat, DEF CON USA, and HITB conferences. He has successfully given workshops at many conferences such as DevOpsDays Istanbul, Boston.In th...
2022-10-1033 min
SecTools Podcast SeriesSecTools Podcast E42 With Nicolas SurribasNicolas is a French security researcher, a proud dad of two children. He started Wapiti in 2006 when he was learning Python programming language. Nicolas is currently working in the infosec field as a programmer at CybelAngel (since 2015).Wapiti is a web-application vulnerability scanner that allows you to audit the security of your websites or web applications. It performs "black-box" scans (it does not study the source code) of the web application by crawling the webpages of the deployed webapp, looking for scripts and forms where it can inject data. Once it gets the list of URLs, forms and...
2022-09-1122 min
SecTools Podcast SeriesSecTools Podcast E41 With ONEKEY Team (Marton Illes, Quentin Kaiser, László Vaskó and Florian Lukavsky)unblob is an accurate, fast, and easy-to-use extraction suite. It parses unknown binary blobs for more than 30 different archive, compression, and file-system formats, extracts their content recursively, and carves out unknown chunks that have not been accounted for.unblob is free to use, licensed under MIT license, it has a command line interface and can be used as a Python library. This turns unblob into the perfect companion for extracting, analyzing, and reverse engineering firmware images.unblob was originally developed and currently maintained by ONEKEY and it is used in production in ONEKEY analysis platform.
2022-08-2929 min
SecTools Podcast SeriesSecTools Podcast E40 With Christian FoliniChristian Folini is a Swiss security engineer and web application firewall expert working at netnea.com. Christian studied History and Computer Science and graduated with a PhD in Medieval History. He is the author of the ModSecurity Handbook (2ed), He also co-lead the OWASP ModSecurity Core Rule Set (CRS) project that runs on millions of servers globally. Furthermore he serves as the program chair of the Swiss Cyber Storm conference.Christian also teaches ModSecurity and Core Rule Set courses and consult companies who want to integrate ModSecurity and the Core Rule Set into their services...
2022-07-1531 min
SecTools Podcast SeriesSecTools Podcast E39 With Philippe HumeauGraduated in 1999 from Epita (France) as IT security engineer, Philippe endorsed many roles before creating its latest company CrowdSec. From Pentester to community builder (Magento) or even eCommerce expert (author of 4 books), or CTO, he is tech curious and loves to dive into new trends like IoT, crypto currencies or AI. But whatever the context is, his crush is and will forever be IT security, SecOps and entrepreneurship. LP or investor in several different companies, CrowdSec is not its full time obsession.CrowdSec is an open-source and participative IPS able to analyze visitor behavior & provide an adapted...
2022-06-1027 min
SecTools Podcast SeriesSecTools Podcast E38 With Alexandre Dulaunoy and Raphaël VinotAlexandre Dulaunoy: Alexandre Dulaunoy leads the Luxembourgian Computer Security Incident Response Team (CSIRT) CIRCL in the research and operational fields. He enjoys working on projects that blend “free information,” innovation, and direct social improvement. When not gardening binary streams, he likes facing the reality of ecosystems while gardening plants or doing photography. He enjoys it when humans use machines in unexpected ways. He also a core contributor to many open source projects such as MISP, ail-framework, cve-search and many others.Raphaël Vinot is a security researcher at the Computer Incident Response Center Luxembourg (CIRCL) since 2012. Raphaël want...
2022-03-2128 min
SecTools Podcast SeriesSecTools Podcast E37 With Ai Ho (j3ssie)Ai Ho (mostly known as j3ssie) is a self-taught security engineer with a computer science background who loves automation. He got Interested in responsible disclosure/bug bounty nearly three years ago and have been building some of my own tools to do it. He wrote Osmedeus, Jaeles and Metabigor to help his bug bounty efforts and made these projects open source for the community.For more SecTools podcast episodes, visit https://infoseccampus.com
2022-01-1722 min
SecTools Podcast SeriesSecTools Podcast E36 With Ruslan HabalovRuslan Habalov has a computer science background with a focus on code analysis and is interested in scalable solutions to challenging security problems. His security research covered an exploitable remote code execution bug in PHP used against a popular platform in a bug-bounty context as well as side-channel attacks against browsers. As a machine learning enthusiast he's looking for options to unite the best of both worlds.He is currently working as a Senior Security Engineer at Google.Ruslan started the Vulncode-DB project which is a crowd-sourced platform providing vulnerable code for corresponding real world...
2021-12-2125 min
SecTools Podcast SeriesSecTools Podcast E35 With Jack BakerJack Baker is a professional security researcher and amateur video game hacker. Jack has spoken at a handful of conferences including DEF CON on subjects relating to reverse engineering and vulnerability research. Jack started his infosec career as a software developer in the fintech space before realizing that breaking things is less stressful than defending them. Since then, Jack has had the opportunity to hack banks, airplanes, and spacecrafts.Jack is the author of Cetus and WAIL, a set of tools used to hack modern web browser games.For more SecTools podcast episodes, visit https...
2021-11-1930 min
SecTools Podcast SeriesSecTools Podcast E34 With Lukas RistLukas Rist authored several open source honeypot projects. After spending a couple of years studying mathmatics and physics, Lukas ventured out to work with Bing and Microsoft Research on making the web a safer place, got payed by DARPA to hunt hackers and taught students in Taiwan open source security.His passion for security and open source got nurtured by The Honeynet Project which lead to a five year stint with Norman Shark, Blue Coat, and Symantec, working on large scale malware analysis and behavioral detection systems.Looking for more purpose, he worked as Senior...
2021-10-1438 min
SecTools Podcast SeriesSecTools Podcast E33 With Joxean KoretJoxean Koret has been working for the past 15 years in many different computing areas. He started as a database software developer and DBA for a number of different RDBMS. Eventually he turned towards reverse engineering and applied this DB insights to discover dozens of vulnerabilities in major database products, especially Oracle. He also worked in areas like malware analysis, anti-malware software development and developing IDA Pro at Hex-Rays. He is currently a senior security engineer. Joxean is the author and maintainer for Diaphora and Pigaios projects focused on diffing techniques. For more SecTools podcast episodes, visit https...
2021-08-1730 min
SecTools Podcast SeriesSecTools Podcast E32 With Chris Em (a.k.a Cookie Engineer)Chris Em (also known as Cookie Engineer) has almost 2 decades of experience in IT and security industry. He specializes in multiple domains including web intelligence, network security and forensics. During spare time, Chris is working on the Web of Knowledge with his project called the [Tholian Network](https://tholian.network), which aims to automate the Semantic Web whilst using a unique distributed peer-to-peer Network Architecture combined with (co-)evolutionary adaptive AI methodologies and compositional game theory ideas to learn and adapt from user interactions with the Web.Chris has contributed to various open source projects including steganography...
2021-07-2728 min
SecTools Podcast SeriesSecTools Podcast E31 With Marc OchsenmeierMarc Ochsenmeier is the author of Pestudio on winitor.com. Pestudio is a unique tool that allows you to perform an initial assessment of a malware without even infecting a lab system or studying its code. Marc has initially worked as software developer with a focus on Windows hardening security. He also has a vast expertise in penetration testing and forensics area.For more SecTools podcast episodes, visit https://infoseccampus.com
2021-06-3036 min
SecTools Podcast SeriesSecTools Podcast E30 With NJ OuchnIn 2001, NJ founded the Infosec community tools portal ToolsWatch.org. And since 2011, he is co-managing & helping to improve the Black Hat Arsenal the World’s largest security event dedicated to open source tools demonstrations. NJ is also the founder of vFeed, Inc a niche startup that provides top-notch correlated vulnerability & threat intelligence feed to 100+ Worldwide customers.For more SecTools podcast episodes, visit https://infoseccampus.com
2021-04-0640 min
SecTools Podcast SeriesSecTools Podcast E29 With Martin DonathMartin Donath is the creator of Material for MkDocs, a static site from a set of Markdown files to host the documentation.For more SecTools podcast episodes, visit https://infoseccampus.com
2021-03-2837 min
SecTools Podcast SeriesSecTools Podcast E28 With Charlie BelmerCharlie Belmer is a security and privacy engineer at DuckDuckGo. He authored NoSQLi, an open source NoSql Injection CLI tool, for finding vulnerable websites using MongoDB. He writes about security and privacy research on his personal blog nullsweep.comFor more SecTools podcast episodes, visit https://infoseccampus.com
2021-02-1527 min
SecTools Podcast SeriesSecTools Podcast E27 With Guillaume ValadonGuillaume Valadon is the Security Agent Team Lead at Datadog, and holds a PhD in IPv6 networking. He likes looking at data and crafting packets. In his spare time, he co-maintains Scapy and learns reversing embedded devices. Also, he still remembers what AT+MS=V34 means! Guillaume regularly gives technical presentations, classes and live demonstrations, and writes research papers for conferences and magazines.For more SecTools podcast episodes, visit https://infoseccampus.com
2021-01-2424 min
SecTools Podcast SeriesSecTools Podcast E26 With Vipin PavithranVipin Pavithran is a cyber-security professor at Amrita Center for Cybersecurity Systems and Networks, Amrita Vishwa Vidyapeetham. He is the founder and chief mentor of internationally recognized student clubs - amFOSS, Team bi0s, and Team Shakti . He is also known for organizing the premiere InCTF and InCTF Junior - cyber-security contests, which were first of its kind in India when they were introduced. For more SecTools podcast episodes, visit https://infoseccampus.com
2020-12-2229 min
SecTools Podcast SeriesSecTools Podcast E25 With Paulino CalderonPaulino Calderon (@calderpwn) is a published author and international speaker with over 12 years of experience in network and application security. When he isn’t traveling to security conferences or consulting for Fortune 500 companies with Websec, a company he co-founded in 2011, he spends peaceful days enjoying the beach in Cozumel, Mexico. He loves open-source software and has contributed to many projects, including Nmap, Metasploit, OWASP Mobile Security Testing Guide (MSTG), OWASP Juice Shop, and OWASP IoT Goat. More SecTools podcast episode here https://infoseccampus.com/
2020-12-1027 min
SecTools Podcast SeriesSecTools Podcast E24 With Anastasios StasinopoulosAnastasios Stasinopoulos is a Senior Penetration Tester at Obrela Labs - Obrela Security Industries and has a professional experience over 6 years in the field of Information Security working exclusively as a Penetration Tester. Anastasios earned the Bachelor of Science (B.Sc.) degree in "Surveying & Geoinformatics Engineering" from Technological Institution of Athens, the Master of Science (M.Sc.) degree in "Security of Digital Systems" from the Department of Digital Systems of University of Piraeus and also served as Ph.D. candidate at the same department.Anastasios is the author of Commix Project, an automated tool that can be...
2020-11-2023 min
SecTools Podcast SeriesSecTools Podcast E23 With Steve SpringettSteve Springett is the Senior Security Architect at ServiceNow, Chicago. Steve educates teams on the strategy and specifics of developing secure software. He practices security at every stage of the development lifecycle by leading sessions on threat modeling, secure architecture and design, static/dynamic/component analysis, offensive research, and defensive programming techniques.Steve’s passionate about helping organizations identify and reduce risk from the use of third-party and open source components. He is an open source advocate and leads the OWASP Dependency-Track project, OWASP Software Component Verification Standard (SCVS) project, CycloneDX software bill-of-material specification, and participates in se...
2020-10-1824 min
SecTools Podcast SeriesSecTools Podcast E22 With Nishant SharmaNishant Sharma leads R&D at Pentester Academy and Attack Defense. He has 8+ years of experience in the information security field including 6+ years in WiFi security research and development. He has conducted classroom trainings in Blackhat USA, HITB Amsterdam/Singapore, RootCon, OWASP NZ Day. He has presented research and conducted workshops at Blackhat USA/Asia, DEF CON China, HITB, RootCon, Packet Hacking Village, Wireless Village, IoT village, and Demo labs (DEFCON USA). Prior to joining Pentester Academy, he worked as a firmware developer at Mojo Networks where he contributed in developing new features for the enterprise-grade WiFi APs and...
2020-09-0729 min
SecTools Podcast SeriesSecTools Podcast E21 With Emily WengerEmily Wenger is a PhD student at the University of Chicago studying machine learning security and privacy. She’s particularly interested in understanding and preventing the unintended uses/abuses of facial recognition technology. Emily and team has built Fawkes, a system that helps individuals inoculate their images against unauthorized facial recognition models. Fawkes achieves this by helping users add imperceptible pixel-level changes (we call them "cloaks") to their own photos before releasing them. When used to train facial recognition models, these "cloaked" images produce functional models that consistently cause normal images of the user to be misidentified. ...
2020-08-1127 min
SecTools Podcast SeriesSecTools Podcast E20 With Isaac EvansIsaac Evans is the leader of r2c (https://r2c.dev/), a small startup working on giving security tools directly to developers. Previously, he conducted research into binary exploitation bypasses for techniques like control-flow integrity and novel hardware defenses on new architectures like RISC-V as a researcher at the US Defense Department under a SFS program and at MIT Lincoln Laboratory. Isaac received his BS/MS degrees in EECS from MIT. Other interests include next-generation programming languages, secure-by-design frameworks, software-defined radio, and the intersection of cryptography and public policy.Isaac spoke about semgrem and its capabilities...
2020-07-0532 min
SecTools Podcast SeriesSecTools Podcast E19 With Kai Jern LauKai Jern (xwings), is Lab Director of The ShepherdLab, of JD Security. His research topic mainly on embedded device, hardware security, blockchain security, reverse engineering and various security topics. He presented his findings in different international security conferences like Defcon, HITB, Codegate, QCon, KCon, Brucon, H2HC and etc. He conducted hardware Hacking course in various places around the globe. He is also the owner of hackersbadge.com, actively involved in Unicorn (https://unicorn-engine.org) development and founder of Qiling Framework (https://qiling.io)
2020-04-2127 min
SecTools Podcast SeriesSecTools Podcast E18 With H.D MooreH.D Moore founded the Metasploit Project in early 2003 and later the project was aquired by Rapid7. He spent the last 20 years conducting security assessments, building security products, and pushing the status quo through research, with leadership roles at Digital Defense, BreakingPoint Systems, Rapid7, and Atredis Partners. HD founded Critical Research to address a long-standing need for better network discovery tools. Currently, his research is focused on asset discovery.Metasploit Project - https://www.metasploit.com/
2020-04-1022 min
SecTools Podcast SeriesSecTools Podcast E17 With Brian CarrierBrian leads the digital forensics team at Basis Technology, which builds software for incident response, digital forensics, and custom mission needs. He is the author of the book File System Forensic Analysis and developer of several open source digital forensics analysis tools, including The Sleuth Kit and Autopsy. Brian has a Ph.D. in computer science from Purdue University and worked previously for @stake as a research scientist and the technical lead for their digital forensics lab and incident response team. Brian is the chair person for the Open Source Digital Forensics Conference (OSDFCon) and has been on the...
2020-03-1327 min
SecTools Podcast SeriesSecTools Podcast E16 With Miroslav StamparMiroslav Stampar is an IT Security Advisor - Expert at Croatian Government's CERT, part of the Information Systems Security Bureau (ZSIS). Born in 1982., writing and breaking computer code for as long as I can remember. A PhD candidate with Master's Degree in Computer Science at Faculty of Electrical Engineering and Computing (FER), University of Zagreb, Croatia.Hacker, challenge solver, occasional CTF-er and an author of sqlmap, open source project for automated detection and exploitation of SQL injection vulnerabilities, along with numerous other offensive and defensive information security tools (e.g. Maltrail, DSSS, DSXS, DSVW, tsusen, etc.). Also...
2020-01-1934 min
SecTools Podcast SeriesSecTools Podcast E15 With Joakim KennedyJoakim Kennedy is a Threat Intelligence Manager for Anomali. His job involves analyzing malware, tracking threat actors and numerous other responsibilities around threat intelligence. He often leads efforts around the Anomali Threat Research Team’s reports and blogs. His tool the “Go Reverse Engineering Toolkit” (https://go-re.tk/) was presented at Black Hat Arsenal 2019 and he has been a featured speaker at multiple BSides and other industry events.
2019-10-2843 min
SecTools Podcast SeriesSecTools Podcast E14 With Giovanni RattaroGiovanni is a senior cyber security expert and manager based in Paris, old Italian Backtrack Linux ambassador/staff and ex DEFT Linux developer, now is the Tsurugi Linux core developer. DFIR instructor in his free time, he has spoken in several security conferences and he is passionate of many other topics like cyber-threat intelligence investigations, OSINT and interpersonal communication.
2019-10-2741 min
SecTools Podcast SeriesSecTools Podcast E13 with Ajin AbrahamSecTools Podcast Series Episode 13 with Ajin AbrahamAjin Abraham is a Security Engineer with 8+ years of experience in Application Security including 4 years of Security Research. He is passionate on developing new and unique security tools. Some of his contributions to Hacker's arsenal include OWASP Xenotix XSS Exploit Framework, Mobile Security Framework (MobSF), Xenotix xBOT, NodeJsScan etc to name a few. He has been invited to speak at multiple security conferences including ClubHack, Nullcon, OWASP AppSec Eu, OWASP AppSec AsiaPac, BlackHat Europe, Hackmiami, Confidence, BlackHat US, BlackHat Asia, ToorCon, Ground Zero Summit, Hack In Paris, Hack In the...
2019-06-1649 min
SecTools Podcast SeriesSecTools Podcast E12 with Mohammed A. ImranMohammed A. “secfigo” Imran is the Founder and CTO of Eracorp Technologies/Practical DevSecOps and a seasoned security professional with 8 years of experience in helping organisations with their Information Security Programs. He has a diverse background in R&D, consulting and product-based industries with a passion to solve complex security programs. Imran is the founder of Null Singapore, the largest information security community in Singapore where he has organised more than 60 events & workshops to spread security awareness.He was also nominated as a community star for being the go-to person in the community whose contribution and knowledge shar...
2018-12-2244 min
SecTools Podcast SeriesSecTools Podcast E11 with Aseem JakharAseem Jakhar is the Director, research at Payatu Software Labs payatu.com a boutique security testing company. He is a renowned security researcher with extensive experience in system programming, security research and consulting. He is well known in the hacking and security community as the founder of null - The open security community, registered not-for-profit organization http://null.co.in and also the founder of nullcon security conference nullcon.net and hardwear.io security conference http://hardwear.io He currently spends his time researching on IoT security and hacking things. He is an active speaker and trainer at security...
2018-12-2233 min
SecTools Podcast SeriesSecTools Podcast E10 with Yiannis IoannidesYiannis is a Director at one of the big 4 consulting firm with over 10 years of technical experience providing physical security assessments, penetration tests and red team operations. Yiannis is the developer of the WarBerryPi which has been presented at Blackhat USA 2016, Blackhat Europe 2016 and Blackhat USA 2018 among other conferences. Yiannis lives in Cyprus with his wife and daughter. Music: Royalty Free Music from HookSounds (hooksounds.com)
2018-11-2435 min
SecTools Podcast SeriesSecTools Podcast E09 with Tanya JancaTanya Janca is a senior cloud security advocate for Microsoft, specializing in application and cloud security; evangelizing software security and advocating for developers and operations folks alike through public speaking, her open source project OWASP DevSlop, and various forms of teaching via workshops, blogs and community events. As an ethical hacker, OWASP Project and Chapter Leader, Cyber Ladies Ottawa founder and leader, software developer and professional computer geek of 20+ years, she is a person who is truly fascinated by the ‘science’ of computer science.
2018-10-311h 04
SecTools Podcast SeriesSecTools Podcast E08 with Mike HodgesMike Hodges is a Senior Security Engineer at Red Ventures leading Red Team Operations and Incident Response. He comes from a background of application development and penetration testing consulting. Currently, his focus is on developing evasive offensive capabilities and fighting off the ever-present imposter syndrome brought on by working in InfoSec.
2018-10-1116 min
SecTools Podcast SeriesSecTools Podcast E07 with Anant ShrivastavaAnant Shrivastava has worked on computer and open source software since 2000. He grouped Linux user groups in Bhopal and was also active in other major Linux user groups across India. Anant now working as Regional Director Asia Pacific for NotSoSecure Global Service. He has been Speaker/Trainer at various conferences including BlackHat, RuxCon, Nullcon, C0c0n, Rootconf, Clubhack, G0s, etc. He is active in information security community null and is teaching not only local but also offensive Web test framework (OWTF). In addition, he is a skilled person who actively participates in the Open Web Application Security...
2018-10-0939 min
SecTools Podcast SeriesSecTools Podcast E06 with Fotis ChantzisFotis Chantzis has been a member of the main Nmap development team since 2009, when he wrote Ncrack under the mentorship of Fyodor, the original author of Nmap, during Google Summer of Code 2009 and 2010. He also represented Nmap at the Google Mentor Summit in October 2016. His work includes exploiting the TCP Persist Timer to magnify the effect of a classic network attack (paper published on Phrack #66), the development of Ncrack, a high-speed network authentication tool with a dynamic and optimized timing engine under the Nmap toolset and inventing a new stealthy port scanning attack by abusing the popular XMPP.
2018-07-1952 min
SecTools Podcast SeriesSecTools Podcast E05 with OJ ReevesOJ Reeves TheColonial is an Australian security professional who specializes in attack simulation. When not breaking networks and software, he is actively contributing to the Metasploit framework on Meterpreter for years. He is also a member of the Corelan team. Today OJ runs a specialist security consultancy called Beyond Binary based in Australia.
2018-06-2938 min
SecTools Podcast SeriesSecTools Podcast E04 with Ryan DewhurstRyan Dewhurst has been testing web applications professionally for security issues since 2009. He has a BSc (hons) Ethical Hacking for Computer Security that he completed with a First. Ryan is very active in the information security community, contributing to various OWASP projects and releasing his own popular tools such as Damn Vulnerable Web App (DVWA) and WPScan. In 2013 Ryan was recognised by his peers when he was awarded the European Information Security Magazine Rising Star Award. Ryan has also appeared on the BBC and in many magazine and online publications for his work. In the past he has been...
2018-05-1930 min
SecTools Podcast SeriesSecTools Podcast E03 with Simon BennettsSimon is the project leader for the OWASP Zed Attack Proxy (ZAP), one of the world’s most popular free security tools, which he first released in 2010.Previously a Java web application developer he now works in the Mozilla Firefox Operations Security team helping to protect the core services that Mozilla relies on to build, ship and run Firefox.Listen to his long experience of building OWASP ZAP Proxy
2018-05-1727 min
SecTools Podcast SeriesSecTools Podcast E02 with Didier StevensSecTools Podcast E02 2018.04.29 PodCast with Didier Stevens by InfoSec Campus
2018-04-2928 min
SecTools Podcast SeriesSecTools Podcast E01 with Michael BoelenHear Michael talking about his journey of building various amazing tools like Lynis, Rootkit Hunter, Linux Security Expert and InfoSec CFP. Listen to more SecTools Podcasts on opensource security tools at https://infoseccampus.com
2018-04-1157 min