Monthly Archives: July 2011

Paul’s Security Weekly – Episode 253 Part 1 – July 28th 2011

In part 1 we interview Nick Selby, a newly minted police officer of the Dallas-Fort Worth area. He was formerly an information security analyst and consultant for nine years, and worked in physical security and intelligence consulting in various roles since 1993 and was a travel writer for European destinations in a previous life.

Episode 253 Show Notes

Episode 253 Part 1 Direct Audio Download

All the Paul's Security Weekly episodes on our Bliptv archives.

Hosts: Paul Asadoorian,Carlos Perez,Larry Pesce

Audio Feeds:

Paul’s Security Weekly – Episode 252 – July 21st 2011

In this episode we interview Matt Yoder! Matt is a lover of fine pens and paper, and a pencrafter. He has also spent time, in multiple stints, performing direct security consulting, including assessment and auditing, security systems support, and firewall deployment. He currently spends his days, and earns something resembling an income, assisting with server administration for a major University in the midwest, which prefers to go unnamed. (Due to audio problems we are unable to release the video, sorry about that!)

Then we discuss How wide open is your voicemail, the rise of security monkeys, rent-a-laptop, orange cartoon octopus virus, stroke development, a hacking epidemic, attacking small firms during the drunken security news segment:

Episode 252 Show Notes

Episode 252 Direct Audio Download

All the Paul's Security Weekly episodes on our Bliptv archives.

Hosts: Paul Asadoorian,Carlos Perez, John Strand, & Jack Daniel

Audio Feeds:

sslsniff: Anniversary Edition

BasicConstraints Back Then

In one week it will have been 9 years since I first published sslsniff — way back in 2002!  While sslsniff has evolved to be a general-purpose MITM tool for SSL connections, I originally published it as a proof of concept exploit for the BasicConstraints vulnerability that I released along with it.

Paul’s Security Weekly – Episode 251 part 2 – July 14th 2011

David Kennedy, Jim O'Gorman, Devon Kearns, join us to talk about their new book! (Mati Aharoni is also an author but could not make it). "...while Metasploit is used by security professionals everywhere, the tool can be hard to grasp for first-time users. Metasploit: The Penetration Tester's Guide fills this gap by teaching you how to harness the Framework and interact with the vibrant community of Metasploit contributors."

Drunken security news, including: Hacking femtocell, Wifi hacker sent to jail, losing your phone at the airport, RIP Win XP, long live "Hef", binary C&C over HTTP, fresh PuTTY, Loki explained, RFID bootable distro, process injection, shoulder surfing FTW.

Episode 251 Show Notes

Episode 251 Part 2 Direct Audio Download

All the Paul's Security Weekly episodes on our Bliptv archives.

Hosts: Paul Asadoorian,Carlos Perez,Larry Pesce

Audio Feeds:

Paul’s Security Weekly – Episode 251 part 1 – July 14th 2011

In part 1 we interview Claudio Criscione a security test engineer at Google. Before joining the company in 2011, Claudio was a penetration tester for most of his career, assessing the security of large infrastructures as well as holding roles in webapp and virtualization security.

Video of the interview with Claudio:

Episode 251 Show Notes

Episode 251 Part 1 Direct Audio Download

All the Paul's Security Weekly episodes on our Bliptv archives.

Hosts: Paul Asadoorian,Carlos Perez,Larry Pesce

Audio Feeds:

Paul’s Security Weekly – Episode 250 part 2 – July 7th 2011

Part 2 of episode 250 was a wild ride! Our friends, including Caitlin Johansen from Core Security, Bill and Trent from i-hacked, and Dave "I give big hugs" Kennedy join us to reflect on the past 250 epsiodes of SecurityWeekly:

"What I Learned on SecurityWeekly"

"Top Ten Things I Learned on SecurityWeekly"

Then, we get really drunk and talk about security news:

Episode 250 Show Notes

Episode 250 part 2 Direct Audio Download

All the Paul's Security Weekly episodes on our Bliptv archives.

Hosts: Paul Asadoorian,Carlos Perez,Larry Pesce

Audio Feeds:

Paul’s Security Weekly – Episode 250 part 1 – July 7th 2011

Sorry for the long delay! Our new production system is still in process, and you will see episodes released more timely. Our 250th episode was extremely special, featuring Randal Schwartz, and a host of good friends and familiar faces!

In part 1 we interview Randal Schwartz:

Episode 250 Show Notes

Episode 250 part 1 Direct Audio Download

All the Paul's Security Weekly episodes on our Bliptv archives.

Hosts: Paul Asadoorian,Carlos Perez,Larry Pesce

Paul’s Security Weekly – Episode 249 part 2 – June 23rd 2011

Welcome back after our break for the birthday of the U.S. and not having a live episode last Thursday here is part 2 of episode 249. Kevin Fiscus from NWN STAR team and all around GREAT guy joins us to discuss his work to detect base64 on the network using snort and why it may be important. Then we recap the news the only way we know how.

Episode 249 Show Notes

Episode 249 part 2 Direct Audio Download

All the Paul's Security Weekly episodes on our Bliptv archives.

Hosts: Paul Asadoorian,Carlos Perez,Larry Pesce

Audio Feeds: