46 episodes

SecTools Podcast is a series of audio podcast featuring free or opensource tool authors from Information Security industry, sharing their interesting experience on developing and maintaining amazing tools for the security community.

Hosted by Sanoop Thomas (s4n7h0)
https://infoseccampus.com
https://twitter.com/InfoSecCampus

SecTools Podcast Series InfoSec Campus

    • Technology

SecTools Podcast is a series of audio podcast featuring free or opensource tool authors from Information Security industry, sharing their interesting experience on developing and maintaining amazing tools for the security community.

Hosted by Sanoop Thomas (s4n7h0)
https://infoseccampus.com
https://twitter.com/InfoSecCampus

    SecTools Podcast E46 with Thomas Roccia

    SecTools Podcast E46 with Thomas Roccia

    Thomas Roccia is the Sr. Security Researcher at Microsoft, working on threat intelligence, malware analysis, incident response, and more. He also has the interest in many other topics including mentoring and teaching, open-source, hacking, 3D printing and even blockchain ecosystem.

    For more SecTools podcast episodes, visit https://infoseccampus.com

    • 28 min
    SecTools Podcast E45 with Erlend Oftedal

    SecTools Podcast E45 with Erlend Oftedal

    Erlend has worked as a developer and security consultant for over 14 years, trying to build and break many different types of systems. He spends some of his free time on security research and open source tools, and is the main author behind retire.js - a free and open source scanner for JavaScript. He is also the chapter leader of the Norwegian OWASP chapter.

    For more SecTools podcast episodes, visit https://infoseccampus.com

    • 30 min
    SecTools Podcast E44 With Jeff Foley

    SecTools Podcast E44 With Jeff Foley

    Jeff Foley has over 20 years of industry experience focused on applied research & development and assessment of security in critical information technology and infrastructure. He is the Project Leader for Amass, an OWASP (Open Web Application Security Project) Foundation flagship project that performs in-depth attack surface mapping and asset discovery. Jeff is also an Adjunct Lecturer teaching Penetration Testing at the SUNY (State University of New York) Polytechnic Institute. Previously, he was the US Manager for Penetration Testing & Red Teaming at National Grid, a multinational electricity and gas utility company. Prior to this, Jeff served as the Director of Penetration Testing & Security Assessment at Northrop Grumman Corporation, an American global aerospace and defense technology company. Jeff is currently working as the Vice President of Attack Surface Protection at ZeroFox. In his spare time, Jeff enjoys experimenting with new blends of coffee and giving back to the information security community.

    In this episode, Jeff explained his journey of developing and maintaining Amass project - an open-source tool for In-depth DNS enumeration, attack surface mapping and external asset discovery.

    For more SecTools podcast episodes, visit https://infoseccampus.com

    • 43 min
    SecTools Podcast E43 With Anand Tiwari

    SecTools Podcast E43 With Anand Tiwari

    Anand Tiwari is an information security professional with a strong technical background working as a Technical Product Manager (PM), focusing on the more technical aspects of a cloud security product. He tries to fill it in by doing in-depth technical research and competitive analysis, given business issues, strategy, and a deep understanding of what the product should do and how the products actually work.

    He has authored ArcherySec—an open source-tool and has presented at BlackHat, DEF CON USA, and HITB conferences. He has successfully given workshops at many conferences such as DevOpsDays Istanbul, Boston.

    In this episode, Anand explained his journey of developing and maintaining ArcherySec - an open-source tool for application security orchestration and correlation.

    For more SecTools podcast episodes, visit https://infoseccampus.com

    • 33 min
    SecTools Podcast E42 With Nicolas Surribas

    SecTools Podcast E42 With Nicolas Surribas

    Nicolas is a French security researcher, a proud dad of two children. He started Wapiti in 2006 when he was learning Python programming language. Nicolas is currently working in the infosec field as a programmer at CybelAngel (since 2015).

    Wapiti is a web-application vulnerability scanner that allows you to audit the security of your websites or web applications. It performs "black-box" scans (it does not study the source code) of the web application by crawling the webpages of the deployed webapp, looking for scripts and forms where it can inject data. Once it gets the list of URLs, forms and their inputs, Wapiti acts like a fuzzer, injecting payloads to see if a script is vulnerable.

    In this episode, Nicolas explained his journey of developing and maintaining Wapiti project for over a decade.

    For more SecTools podcast episodes, visit https://infoseccampus.com

    • 22 min
    SecTools Podcast E41 With ONEKEY Team (Marton Illes, Quentin Kaiser, László Vaskó and Florian Lukavsky)

    SecTools Podcast E41 With ONEKEY Team (Marton Illes, Quentin Kaiser, László Vaskó and Florian Lukavsky)

    unblob is an accurate, fast, and easy-to-use extraction suite. It parses unknown binary blobs for more than 30 different archive, compression, and file-system formats, extracts their content recursively, and carves out unknown chunks that have not been accounted for.

    unblob is free to use, licensed under MIT license, it has a command line interface and can be used as a Python library. This turns unblob into the perfect companion for extracting, analyzing, and reverse engineering firmware images.

    unblob was originally developed and currently maintained by ONEKEY and it is used in production in ONEKEY analysis platform.

    For more SecTools podcast episodes, visit https://infoseccampus.com

    • 29 min

Top Podcasts In Technology

Lex Fridman
The Cut & The Verge
Jason Calacanis
The New York Times
NPR
The Wall Street Journal