Submit Questions for OWASP Podcast

January 24th, 2010 admin

Jim Manico invited me to speak on the OWASP Podcast . If you’d like me to try answering specific questions, please email them to podcast at owasp.org. When the show is posted I will let everyone know here. Thank you. Copyright 2003-2009 Richard Bejtlich and TaoSecurity (taosecurity.blogspot.com and www.taosecurity.com)


Originally posted on TAOSecurity

Related Videos from Youtube

  • phone security and cybersecurity ar...
    taosecurity.blogspot.com another of my two in one videos but this time i want to say to my subbers, that i will protect you guys from hackers, whenever i can in any form, cell phone security or pc i'm here for you guys and the youtube cominuty at large....
  • is prillo a nice security person or...
    geeks.pirillo.com i wouldn't mind if i got more subscribers who can watch my videos and i could help them in a friendly way and a good way, i'm not like prillo in any way i don't get mad at hateful comments etc taosecurity.blogspot.com
  • Zombie aware month.......avi...
    blog.fortinet.com come on join me and help in the fight against pc zombies..... i will deffend the youtube comminuty against hackers...... taosecurity.blogspot.com
  • AFCERT circa 2000...
    This video shows the United States Air Force Computer Emergency Response Team (AFCERT) in 2000. Kelly AFB, Security Hill, and Air Intelligence Agency appear. The colonel who leads the camera crew into room 215 is James Massaro, then commander of the Air Force Information Warfare Center. The old Web-based interface to the Automated Security Incident Measurement (ASIM) sensor is shown, along with a demo of the "TCP reset" capability to terminate TCP-based sessions. We have a classic quote about a "digital Pearl Harbor" from Winn Schwartau, "the nation's top information security analyst." Hilarious, although Winn nails the attribution and national leadership problems; note also the references to terrorists in this pre-9/11 video. "Stop the technology madness!" Incidentally, if the programs shown were "highly classified," they wouldn't be in this video!

More videos ...

 
  Related Posts
Bejtlich Returns to PaulDotCom Podcast
Bejtlich Returns to PaulDotCom Podcast
The guys at PaulDotCom posted the podcast .mp3 (39 MB) they conducted last week . It was another debate between myself and Ron Gula. We contrast control-centric and threat-centric defensive strategies, as well as discuss advanced persistent threat. Thanks for having us. I had forgotten that I was on their second show in January 2006! Copyright... 
Bejtlich Keynote at VizSec 2010
Bejtlich Keynote at VizSec 2010
I am pleased to report that I’ve been invited to deliver the keynote at VizSec 2010 on 14 Sep in Ottawa, Ontario. I am on the Program Committee for a third year and will be evaluating papers soon. Please visit my post on calls for papers for DFRWS, VizSec, and RAID. Thank you. Copyright 2003-2009 Richard Bejtlich and TaoSecurity (taosecurity.blogspot.com... 
Traffic Talk 8 Posted
Traffic Talk 8 Posted
I just noticed that my 8th edition of Traffic Talk , titled How to use user-agent strings as a network monitoring tool , was posted this week. It’s a simple concept that plenty of NSM practitioners implement, and I highly recommend it. Copyright 2003-2009 Richard Bejtlich and TaoSecurity (taosecurity.blogspot.com and www.taosecurity.com)... 
Bejtlich on Security Justice Podcast
Bejtlich on Security Justice Podcast
After I spoke at the Information Security Summit in Ohio last month, the guys at the Security Justice podcast interviewed me and Tyler Hudak . You can listen to the archive here . It was fairly loud in the room but you’d never know it listening to the audio. Great work guys. We discuss open source software, vulnerability research and disclosure,... 
DojoCon Videos Online
DojoCon Videos Online
Props to Marcus Carey for live streaming talks from DojoCon . I appeared in my keynote , plus panels on incident response and cloud security . I thought the conference was excellent and many people posted their thoughts to #dojocon on Twitter. Copyright 2003-2009 Richard Bejtlich and TaoSecurity (taosecurity.blogspot.com and www.taosecurity.com)... 
Review of Inside Cyber Warfare Posted
Review of Inside Cyber Warfare Posted
Amazon.com just posted my three star review of Jeff Carr’s Inside Cyber Warfare . From the review : Jeff Carr is a great digital security intelligence analyst and I’ve been fortunate to hear him speak several times. We’ve also separately discussed the issues he covers in Inside Cyber Warfare (ICW). While I find Jeff’s insights... 
Audio of Bejtlich Presentation on Network Security Monitoring
Audio of Bejtlich Presentation on Network Security Monitoring
One of the presentations I delivered at the Information Security Summit last month discussed Network Security Monitoring. The Security Justice guys recorded audio of the presentation and posted it here as Network Security Monitoring and Incident Response. The audio file is InfoSec2009_RichardBejtlich.mp3. Copyright 2003-2009 Richard Bejtlich and... 
Bejtlich to Speak at FIRST 2010
Bejtlich to Speak at FIRST 2010
I’m happy to report that I will present Building a Fortune 5 CIRT Under Fire at FIRST 2010 on 16 Jun 10 in Miami, FL. I plan to attend the majority of the conference, since it is one of the few focused on incident detection and response. I hope to see you there! Copyright 2003-2009 Richard Bejtlich and TaoSecurity (taosecurity.blogspot.com... 
Celebrate FreeBSD 8.0 Release with Donation
Celebrate FreeBSD 8.0 Release with Donation
With the announcement of FreeBSD 8.0 , it seems like a good time to donate to the FreeBSD Foundation , a US 501(c)3 charity. The Foundation funds and manages projects, sponsors FreeBSD events, Developer Summits and provides travel grants to FreeBSD developers. It also provides and helps maintain computers and equipment that support FreeBSD development... 
Embedded Hardware and Software Pen Tester Positions in GE Smart Grid
Embedded Hardware and Software Pen Tester Positions in GE Smart Grid
I was asked to help locate two candidates for positions in the GE Smart Grid initiative. We’re looking for an Embedded Hardware Penetration Tester (1080237) and an Embedded Firmware Penetration Tester (1080236). If interested, search for the indicated job numbers at ge.com/careers or go to the job site to get to the search function a little... 
  Related Tweets from Twitter
mp_mccabe (Michael McCabe)  : RT @MHComputing: Review of IT #Security Metrics: A Practical Framework for Measuring Security & Protecting #Data http://ow.ly/2zaUU..
Updated : 2010-09-03T21:27:16Z   |  Reply  |  View Tweet
ddpbsd (dan)  : #FF @xme @gattaca @hevnsnt @indi303 @jack_daniel @lizborden @taosecurity all smart and entertaining...
Updated : 2010-09-03T21:05:24Z   |  Reply  |  View Tweet
4v4t4r (4v4t4r)  : #InfoSec #FF 5 @exploitdb @PenTesterScript @crackinglandia @kfs @CoreSecurity @taosecurity @thomas_wilhelm @ethicalhacker @_Laz3r_..
Updated : 2010-09-03T20:04:05Z   |  Reply  |  View Tweet
aircrackng (Thomas d'Otreppe)  : RT @joswr1ght: TaoSecurity: Review of Hacking Exposed: Wireless, 2nd Ed Posted http://t.co/aicbN1F via @taosecurity (Awesome!)..
Updated : 2010-09-03T19:44:59Z   |  Reply  |  View Tweet
karlarss (Karla Rosas)  : RT @barucomx: RT @taosecurity: 10 easy ways to fail a Ph.D. http://bit.ly/aQOHCr I like the focus on research, (cont) http://tl.gd/3feb98..
Updated : 2010-09-03T18:13:22Z   |  Reply  |  View Tweet
  Related News from Digg
Leave a comment | Trackback
No comments yet.
You must be logged in to post a comment.
TOP