3min chapter

The PowerShell Podcast cover image

Exploring Cybersecurity with PowerShell and John Hammond

The PowerShell Podcast

CHAPTER

Harnessing PowerShell and Collaborative Security Practices

This chapter explores the benefits of PowerShell over traditional Linux command-line tools, emphasizing the user-friendly syntax and its impact on security. It also highlights the importance of internal security meetups and introduces an interactive card game designed to improve incident response readiness.

00:00
Speaker 2
It is child item, right? I'm not totally... Yeah, get-childitem. Okay, cool. I was like, I'm gonna make a fool of myself. Yes. I was gonna ask about that too. Do you enjoy the verbose nature of PowerShell, how you can read the command and tell what it does? Because that's what LS won't give you. What does LS mean? Yeah, and that's what like, always got really confused with Linux because, like, you really have to know exactly what you're trying to do if you, like, boot into Linux. Like, you have to know exactly what you're trying to do. You have to know exactly how to get there. Is it a capital V? Is it a lowercase V with the parameter? Yeah. Yeah, just give me a GUI. Just give me the stinking GUI. I don't care if I can do less, I can still figure out how to do it. You can't. For one-off tasks, I think that's a great approach. It's just when you get to like, oh, I got to do the same thing multiple times, or I want to solve a problem forever, source scripting can come into things. But it sounds like you need to attend their PowerShell user groups internally. I would love to. Come on by. We're also, thanks to some advice from you, we're starting up a security one internally So if people are out there, they don't have a security meetup where there's other like-minded people trying to implement security getting you all on The same page maybe different teams as well. I highly recommend it any chance to collaborate and communicate outside of just responding to crises Always a good thing. Maybe open up the floor for some tabletop exercises. Yes a favorite Maybe a deck maybe a game, for tabletop exercise? Maybe a card game. Yeah! Oh, I love the way you guys teed
Speaker 1
up. It's just subtle. So I am a big fan and this is absolutely, I want to sing the praises of some other incredible people. Folks are familiar with Black Hills Information Security. Security company and they also have anti-cyphon training, and they try to put out a lot of education, even some like pay what you can courses or pay what you want equivalent, where you get to choose the price tag for, hey, what you'd like to learn in security, et cetera, et cetera. Anyway, sorry, they have also put out this product or opportunity exercise that's called backdoors and breaches. And it is literally a card game. It's something you get a deck and a dice and you kind of treat it like almost dungeons and dragons, that's the fun play with the name of backdoors and breaches, where you can simulate like a tabletop exercise or an incident response scenario where you and your team get to discuss, uh oh, we see a threat actor that broke in through some misconfigured VPN doing some lateral movement actually exfiltrated with DNS over HTTPS and like you talk about each of the components, who's doing what, who's calling with and what's going to go wrong so that you could actually role play those scenarios without rather than it, sorry, I'm fumbling, but without needing to actually live it in the doomsday scenario. And that way you have ironed out all the things that could possibly go wrong. Like, I don't know, one of the top engineers is out on vacation or, hey, the CEO decided to quit the business and become a rock star. Like all the weird wild antics are fun things to have those conversations with your
Speaker 2
team.

Get the Snipd
podcast app

Unlock the knowledge in podcasts with the podcast player of the future.
App store bannerPlay store banner

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Save any
moment

Hear something you like? Tap your headphones to save it with AI-generated key takeaways

Save any
moment

Hear something you like? Tap your headphones to save it with AI-generated key takeaways

Share
& Export

Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more

Share
& Export

Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode