A podcast about the world of Cybersecurity, Privacy, Compliance, and Regulatory issues that arise in today's workplace. Co-hosts Bryan Brake, Brian Boettcher, and Amanda Berlin teach concepts that aspiring Information Security professionals need to know, or refresh the memories of seasoned veterans.
http://www.brakeingsecurity.com
Gesamtlänge aller Episoden: 16 days 13 hours 58 minutes
recommended podcasts
2016-046: BlackNurse, Buenoware, ICMP, Atombombing, and PDF converter fails
This week, Mr. Boettcher found himself with an interesting conundrum concerning what happened when he converted a Windows DOCX file to a PDF using a popular #PDF converter software. We discuss what happened, how Software Restriction Policy in Windows...
2016-044: Chain of Custody, data and evidence integrity
During a Security Incident, or in the course of an investigation, it may become necessary to gather evidence for further use in a possible court case in the future. But if you don't have 4-10,000 dollars USD for fancy forensic software, you'll need to...
2016-043: BSIMMv7, a teachable moment, and our new Slack Channel!
**Brakeing Down Security has a Slack channel now... just go to and follow the instructions to have the bot add you to our show's official channel.** Every year, organizations come out with industry reports that show how well or, more often...
2016-042-Audio from Source Seattle 2016 Conference
Join us for a special episode this week! I (Bryan) was able to attend my first Source Seattle convention. Two days of talks, technical and non-technical, combining red/blue team concepts, as well as professional development, to help you navigate the...
2016-041- Ben Johnson, company culture shifts, job descriptions, cyber self-esteem
Ben Johnson has been around the industry for a good while, and has seen a lot of ugly things in our industry. Ben had written a recent blog post ( detailing the issues that seem to plague many companies and many people in the infosec community. We...
2016-040: Gene_Kim, Josh_Corman, helping DevOps and Infosec to play nice
If you work in a #DevOps environment, you're on one side of the fence... you're either with the devs, you have freedom to make changes, and everything is great. If you're on the Security and/or Compliance side, it's a desolate wasteland of watching...
2016-039-Robert Hurlbut, Threat Modeling and Helping Devs Understand Vulnerabilities
Join us this week as Robert Hurlbut (@roberthurlbut on Twitter), is an independent consultant with over 25 years of application experience, helps us understand best methods to getting developers on the same level as security professionals with...
2016-038-Derbycon Audio and 2nd Annual Podcast with Podcasters!
Mr. Brian Boettcher and I had a great time at DerbyCon. We met so many people and it really was excellent meeting all the fans who came up and said "Hello" or that they really enjoyed the #podcast. It is truly a labor of love and something that...
2016-037: B1ack0wl, Responsible Disclosure, and embedded device security
Have you ever found a #vulnerability and wondered if it was worth the time and effort to reach back to the company in question to get the fix in? This week, we have a story with Mr. "B1ack0wl" who found a vulnerability with certain #Belkin #embedded...
2016-036: MSSP pitfalls, with Nick Selby and Kevin Johnson
Nick Selby (@nselby on Twitter) is an independent consultant who works a wide variety of jobs. During a recent engagement, he ran into an interesting issue after a company called him in to handle an incident response. It's not the client, it was...