The Cyber Threat Perspective

In our "DNS Security" podcast, we delve into DNS's critical role in how the internet works, exploring its vulnerabilities and attacks like DNS spoofing, cache poisoning, and DDoS. We discuss DNSSEC and its components, including public and private keys, and examine practical solutions such as DNS and content filtering. The episode also highlights the advantages of cloud-based DNS services, like those offered by Cloudflare.Finally, we share best practices and resources for securing DNS infrastructure, addressing challenges like scalability and false positives. Join us for a concise yet comprehensive exploration of DNS security's complexities and solutions.Blog: https://offsec.blog/Youtube: https://www.youtube.com/@cyberthreatpovTwitter: https://x.com/cyberthreatpov Follow Spencer on social ⬇Spencer's Links: https://go.spenceralessi.com/links Work with Us: https://securit360.com | Find vulnerabilities that matter, learn about how we do internal pentesting here.

Discover effective strategies for hardening Windows and Active Directory systems. Dive into the concept of least privilege and the tiered admin model to enhance security management. Learn about the significance of applying CIS benchmarks and the importance of disabling legacy protocols. The discussion also covers the role of multi-factor authentication and the challenges it presents. Lastly, explore the value of community engagement in tackling cybersecurity threats and maintaining consistent security practices.

The discussion delves into the concept of 'Assume Breach', advocating for a proactive security mindset that identifies overlooked vulnerabilities. Real-world case studies illustrate how offensive security testing can emulate actual attacker behavior, emphasizing the importance of continuous learning. Key topics include the dangers of overreliance on tools and the significance of effective security monitoring. Attendees learn how to identify misconfigurations in systems and the value of focused testing strategies to bolster security posture against real threats.

In this episode, we discuss soft skills and mental health for security professionals.Soft Skillsself-awarenessGumption (initiative & resourcefulness)Autodidactic (self-educate)EmpathyPatienceDeterminationCommunication - This is one to hit heavilyWritten & Spokenread the roomCreativity (BS-ing)Attention to detailCuriosityMental Healthdo you truly enjoy/love what you do?work-life balancechange the definition of "success"give yourself a break/don't be so hard on yourselfschedule time to yourself for escapismfind a hobbydon't force inspiration because you can'twhen you're feeling inspired capitalize on itstand on the shoulders of giants24-hour examsBlog: https://offsec.blog/Youtube: https://www.youtube.com/@cyberthreatpovTwitter: https://x.com/cyberthreatpov Follow Spencer on social ⬇Spencer's Links: https://go.spenceralessi.com/links Work with Us: https://securit360.com | Find vulnerabilities that matter, learn about how we do internal pentesting here.

In this episode, we discuss password spraying, a favorite technique among attackers who are trying to compromise organizations. Spencer and Tyler discuss external and internal password spraying, why it is so effective, how password spraying works, and what to look out for on your network.Blog: https://offsec.blog/Youtube: https://www.youtube.com/@cyberthreatpovTwitter: https://x.com/cyberthreatpov Follow Spencer on social ⬇Spencer's Links: https://go.spenceralessi.com/links Work with Us: https://securit360.com | Find vulnerabilities that matter, learn about how we do internal pentesting here.

In this episode, Spencer is joined by Daniel Perkins, a Senior Information Security Officer at SecurIT360 to discuss the intricacies of vulnerability management, the important prerequisites to vulnerability management, and best practices, and provide actionable strategies to level up your vulnerability management program.Blog: https://offsec.blog/Youtube: https://www.youtube.com/@cyberthreatpovTwitter: https://x.com/cyberthreatpov Follow Spencer on social ⬇Spencer's Links: https://go.spenceralessi.com/links Work with Us: https://securit360.com | Find vulnerabilities that matter, learn about how we do internal pentesting here.

Zach Sims, Information Security Officer at SecureIT360, brings his extensive experience building security programs to discuss offensive security services. He highlights the essential role of a CISO in aligning offensive strategies with cybersecurity goals. Zach explains how penetration testing allows organizations to uncover vulnerabilities safely and how these findings can inform security strategies. He emphasizes the value of testing both technology and team processes, underlining that basic controls can prevent most attacks. Lastly, he advocates for collaboration within the cybersecurity community for robust defense.

Explore the future of penetration testing with insights on emerging techniques and tools for 2024. Discover the role of AI and LLMs in enhancing practical testing and the potential for improving communication and reporting. The hosts delve into the risks of deepfakes and the growing trend of local models in security. Also discussed are the benefits and limits of automated pentesting and the necessity of R&D in offensive security as defenses evolve. The debate over open-sourcing versus keeping tools private rounds out this thought-provoking conversation.

Brad and Darrius dive into the future of penetration testing, highlighting the need for defenders to adapt to evolving threats. They discuss the shift in exploit languages to Rust and Go, and how this impacts defense strategies. The duo also explores trends in ransom dynamics, where attackers report victims, and new attack techniques like token theft. They emphasize the rising complexity of cloud environments and the importance of secure configurations. Finally, they touch on how attackers leverage cloud infrastructure to enhance their tactics.

In this episode of "The Cyber Threat Perspective," Tyler and Brad, members of SecurIT360's offensive security team, take us through the evolution of various penetration testing TTPs. Specifically, using the external penetration test process as an example and analyzing other processes and why/how they changed.Blog: https://offsec.blog/Youtube: https://www.youtube.com/@cyberthreatpovTwitter: https://x.com/cyberthreatpov Follow Spencer on social ⬇Spencer's Links: https://go.spenceralessi.com/links Work with Us: https://securit360.com | Find vulnerabilities that matter, learn about how we do internal pentesting here.