XMLRPC for the win or not? How long should you re-mediate vulnerabilities found in penetration test reports? Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode486#Listener_Feedback:_Fixing_Pen_Test_Findings_and_XMLRPC-_7:00PM-7:30PM Subscribe to YouTube Channel: https://www.youtube.com/channel/UCg--XBjJ50a9tUhTKXVPiqg Security Weekly Website: http://securityweekly.com Follow us on Twitter: @securityweekly

So do you really want to be a penetration tester? We get these questions all the time, and Adrien does too! Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode486#Interview:_Adrien_de_Beaupr.C3.A9_-_.22So_You_Wanna_Be_A_Pen_Tester.3F.22-_6:00-7:00PM

Disappearing messages added to signal app, IoT devices as proxies for Cybercrime, nuclear power plant disrupted by cyber attack, and more, here on Security Weekly! Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode485#Security_News_-_7:30PM-8:30PM Subscribe to YouTube Channel: https://www.youtube.com/channel/UCg--XBjJ50a9tUhTKXVPiqg Security Weekly Website: http://securityweekly.com Follow us on Twitter: @securityweekly

Scott Lyons is the V.P. of Business Development for WarCollar. Joshua Marpet is a well known Security Researcher and speaker. Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode485#Interview:_Scott_Lyons_and_Joshua_Marpet_-_6:00-7:00PM Subscribe to YouTube Channel: https://www.youtube.com/channel/UCg--XBjJ50a9tUhTKXVPiqg Security Weekly Website: http://securityweekly.com Follow us on Twitter: @securityweekly

Questions from the Security Weekly listeners are answered during this segment. Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode485#Listener_Feedback:_Drinking_From_The_InfoSec_Fire_Hose_-_7:00PM-7:30PM Subscribe to YouTube Channel: https://www.youtube.com/channel/UCg--XBjJ50a9tUhTKXVPiqg Security Weekly Website: http://securityweekly.com Follow us on Twitter: @securityweekly

Cody Pierce from Endgame will be giving a 15 minute segment on Pre-exploit Preventing. Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode484#Tech_Segment:_Pre-exploit_Preventing_-_6:00PM-6:30PM Subscribe to YouTube Channel: https://www.youtube.com/channel/UCg--XBjJ50a9tUhTKXVPiqg Security Weekly Website: http://securityweekly.com Follow us on Twitter: @securityweekly

Security news will discuss Yahoo! spying, Mirai source code lessons learned, I will try my best, but fail, at not saying "I told you so!", and more! Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode484#Security_News_-_6:30PM-7:30PM Subscribe to YouTube Channel: https://www.youtube.com/channel/UCg--XBjJ50a9tUhTKXVPiqg Security Weekly Website: http://securityweekly.com Follow us on Twitter: @securityweekly

Ed Skoudis of Counterhack Challenges and The SANS Institute. Ed will discuss IoT security, the Holiday Hack Challenge and upcoming SANS Hackfest conference. Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode484#Interview:_-_Ed_Skoudis_7:30-8:30PM Subscribe to YouTube Channel: https://www.youtube.com/channel/UCg--XBjJ50a9tUhTKXVPiqg Security Weekly Website: http://securityweekly.com Follow us on Twitter: @securityweekly

Give us your questions and feedback and send it to [email protected] and we'll put it on the show! Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode483#Listener_Feedback:_-_7:00PM-7:30PM Subscribe to YouTube Channel: https://www.youtube.com/channel/UCg--XBjJ50a9tUhTKXVPiqg Security Weekly Website: http://securityweekly.com Follow us on Twitter: @securityweekly

Ferruh Mavituna from Netsparker. He's been Hacking web apps since 2003, web app sec expert, and the CEO of Netsparker. Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode483#Interview:_-_Ferruh_Mavituna.2C_Netsparker_6:00-7:00PM Subscribe to YouTube Channel: https://www.youtube.com/channel/UCg--XBjJ50a9tUhTKXVPiqg Security Weekly Website: http://securityweekly.com Follow us on Twitter: @securityweekly

Yahoo is breached, open SSL has a bug, Raspberry Pi new Pixel update, thousands of Cisco devices still vulnerable, and stick around for Jack's rant! Here on Security News! Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode483#Security_News_-_7:30PM-8:30PM Subscribe to YouTube Channel: https://www.youtube.com/channel/UCg--XBjJ50a9tUhTKXVPiqg Security Weekly Website: http://securityweekly.com Follow us on Twitter: @securityweekly

Security Weekly Web Site: http://securityweekly.com Hack Naked Gear: http://shop.securityweekly.com Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode446 Follow us on Twitter: @securityweekly

Alibaba fires employees for hacking their way to free mooncakes, How I gained access to TMobile’s national network for free, Employees download new malware every four seconds, all that and more here on Security Weekly! Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode482#Security_News_-_6:00PM-6:30PM Subscribe to YouTube Channel: https://www.youtube.com/channel/UCg--XBjJ50a9tUhTKXVPiqg Security Weekly Website: http://securityweekly.com Follow us on Twitter: @securityweekly

Paul explains how to try to make a secure shell script, along with introducing DisplayGoat! Full Show Notes: https://github.com/pasadoorian/displaygoat/blob/master/displaygoat.sh Subscribe to YouTube Channel: https://www.youtube.com/channel/UCg--XBjJ50a9tUhTKXVPiqg Security Weekly Website: http://securityweekly.com Follow us on Twitter: @securityweekly

Kobi Ben-Naim Senior Director of Cyber Research Kobi is an accomplished information security professional, well-known for his pioneering work in the field of Advanced Persistent Threats (APTs) and Zero-Day Attacks. Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode482#Interview:_Kobi_and_Doron_Naim.2C_Cyberark_Labs_-_7:00-7:30_PM Subscribe to YouTube Channel: https://www.youtube.com/channel/UCg--XBjJ50a9tUhTKXVPiqg Security Weekly Website: http://securityweekly.com Follow us on Twitter: @securityweekly

Privacy and Internet connected vibrators. Volkswagon launches a new cyber security firm to tackle car security, Ad Block Plus ridiculousness, and hacking cable modems. All that and more, so stay tuned! Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode481#Security_News_-_7:30PM-8:30PM Subscribe to YouTube Channel: https://www.youtube.com/channel/UCg--XBjJ50a9tUhTKXVPiqg Security Weekly Website: http://securityweekly.com Follow us on Twitter: @securityweekly

At Praetorian, Josh is a key member of the technical execution team. In this capacity, he is responsible for leading, directing, and executing client-facing engagements that include Praetorian's tactical and strategic service offerings. Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode481#Interview:_Josh_Abraham.2C_Praetorian_-_6:00PM-6:30PM Subscribe to YouTube Channel: https://www.youtube.com/channel/UCg--XBjJ50a9tUhTKXVPiqg Security Weekly Website: http://securityweekly.com Follow us on Twitter: @securityweekly

DHS urges vigilance in protecting networking gear, How spoofing an ethernet adapter lets you sniff PC credentials, and FAA considers a ban on Samsung's exploding smartphones. All that and more, so stay tuned! Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode480#Security_News_-_7:30PM-8:30PM Subscribe to YouTube Channel: https://www.youtube.com/channel/UCg--XBjJ50a9tUhTKXVPiqg Security Weekly Website: http://securityweekly.com Follow us on Twitter: @securityweekly

Which hardware is best for your next nerdy security (or non-security) project? The Security Weekly crew will discuss the differences between two of the new model embedded Linux boards on the market today, the ODROID C2 and Raspberry PI Model B. Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode480#Tech_Segment:_ODROID_C2_vs._Raspberry_PI_3_-_Fight.21_-_6:30PM-7:30PM Subscribe to YouTube Channel: https://www.youtube.com/channel/UCg--XBjJ50a9tUhTKXVPiqg Security Weekly Website: http://securityweekly.com Follow us on Twitter: @securityweekly

Marcus J. Ranum works for Tenable Security, Inc. and is a world-renowned expert on security system design and implementation. He has been involved in every level of the security industry from product coder to CEO of a successful start-up. Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode480#Interview:_Marcus_J._Ranum.2C_Tenable_Inc.-_6:00PM-6:30PM Subscribe to YouTube Channel: https://www.youtube.com/channel/UCg--XBjJ50a9tUhTKXVPiqg Security Weekly Website: http://securityweekly.com Follow us on Twitter: @securityweekly

A new take on Windows 10, One million IoT devices infected by Bashlite malware-driven DDoS botnet, Encryption Technology Causes More Cyber Attacks? All that and more, so stay tuned! Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode479#Security_News_-_7:30PM-8:30PM Subscribe to YouTube Channel: https://www.youtube.com/channel/UCg--XBjJ50a9tUhTKXVPiqg Security Weekly Website: http://securityweekly.com Follow us on Twitter: @securityweekly

Data security either on premise or in the cloud and the merits of each. Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode479#Listener_Feedback:_Magic_Wiffle_Dust_-_6:30PM-7:30PM Subscribe to YouTube Channel: https://www.youtube.com/channel/UCg--XBjJ50a9tUhTKXVPiqg Security Weekly Website: http://securityweekly.com Follow us on Twitter: @securityweekly

Joshua Corman is Director of the Cyber Statecraft Initiative for the Atlantic Council. He co-founded @RuggedSoftware and @IamTheCavalry to encourage new security approaches in response to increasing dependence on technology. Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode479#Interview:_Joshua_Corman.2C_Cyber_Statecraft_Initiative-_6:00PM-6:30PM Subscribe to YouTube Channel: https://www.youtube.com/channel/UCg--XBjJ50a9tUhTKXVPiqg Security Weekly Website: http://securityweekly.com Follow us on Twitter: @securityweekly

Heather Mahalik is leading the forensic effort as a Principal Forensic Scientist for ManTech CARD. Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode478#Interview:_Heather_Mahalik.2C_The_SANS_Institute_-_7:00PM-8:00PM Subscribe to YouTube Channel: https://www.youtube.com/channel/UCg--XBjJ50a9tUhTKXVPiqg Security Weekly Website: http://securityweekly.com Follow us on Twitter: @securityweekly

Facial recognition, VxWorks, Leaked Shadowbrokers, Bitcoin, and much more on Security Weekly! Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode478#Security_News_-_6:30PM-7:00PM Subscribe to YouTube Channel: https://www.youtube.com/channel/UCg--XBjJ50a9tUhTKXVPiqg Security Weekly Website: http://securityweekly.com Follow us on Twitter: @securityweekly

Listener feedback segment will be The Host's Perspective, common questions we've asked our guests will be answered by some of the hosts! Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode478#Listener_Feedback:_A_Host.27s_Perspective_-_6:00PM-7:00PM Subscribe to YouTube Channel: https://www.youtube.com/channel/UCg--XBjJ50a9tUhTKXVPiqg Security Weekly Website: http://securityweekly.com Follow us on Twitter: @securityweekly

Alex Horan from Onapsis joins us. Alex is a security focused IT professional with strong experience leading and motivating IT teams and departments. Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode477#Interview:_Alex_Horan_-_7:00PM-8:00PM Subscribe to YouTube Channel: https://www.youtube.com/channel/UCg--XBjJ50a9tUhTKXVPiqg Security Weekly Website: http://securityweekly.com Follow us on Twitter: @securityweekly

To Be or Not to be A Contractor. A listener of Security Weekly asks Paul and his crew. Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode477#Listener_Feedback:_To_Be_or_Not_to_be_A_Contractor_-_6:00PM-6:30PM Subscribe to YouTube Channel: https://www.youtube.com/channel/UCg--XBjJ50a9tUhTKXVPiqg Security Weekly Website: http://securityweekly.com Follow us on Twitter: @securityweekly

Snowden Thinks Russia Hacked The NSA, How to disable WPAD on Windows so hackers can't hijack your computer, and People Ignore Security Alerts Up To 90% Of The Time. All that and more, so stay Tuned! Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode477#Security_News_-_6:30PM-7:00PM Subscribe to YouTube Channel: https://www.youtube.com/channel/UCg--XBjJ50a9tUhTKXVPiqg Security Weekly Website: http://securityweekly.com Follow us on Twitter: @securityweekly

Paul, Larry, Joff and Lance discuss the news for the week on Frequent Password Changes Is a Bad Security Idea, Facebook’s favorite hacker is back, Linux malware? That'll never happen, and much more! Here on Security Weekly! Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode476#Security_News_-_7:30PM-8:00PM Subscribe to YouTube Channel: https://www.youtube.com/channel/UCg--XBjJ50a9tUhTKXVPiqg Security Weekly Website: http://securityweekly.com Follow us on Twitter: @securityweekly

TachyonNet is a multi-threaded Python tool that has the ability to listen on all 65535 TCP/UDP ports, as well as listen for ICMP traffic. Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode476#Technical_SegmentL:_TachyonNet_-_7:00PM-7:30PM Subscribe to YouTube Channel: https://www.youtube.com/channel/UCg--XBjJ50a9tUhTKXVPiqg Security Weekly Website: http://securityweekly.com Follow us on Twitter: @securityweekly

Lance James serves as Chief Scientist at Flashpoint where he heads up research and engages in thought leadership. Prior to joining Flashpoint, Mr. James was the Head of Cyber Intelligence at Deloitte & Touche LLP. Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode476#Interview:_Lance_James_-_6:00PM-7:00PM Subscribe to YouTube Channel: https://www.youtube.com/channel/UCg--XBjJ50a9tUhTKXVPiqg Security Weekly Website: http://securityweekly.com Follow us on Twitter: @securityweekly

This week we talk about Verizon buying Yahoo, Ransomware, Zero Day holes in Lastpass, hackers can sniff your keystrokes from nearby, and vulnerabilities and light bulbs. Stay tuned! Subscribe to YouTube Channel: https://www.youtube.com/channel/UCg--XBjJ50a9tUhTKXVPiqg Security Weekly Website: http://securityweekly.com Follow us on Twitter: @securityweekly

We discuss about Jeff, a current listener of Security Weekly, how to maintain working full time in security and having children, getting married, and balancing everything out equally. Subscribe to YouTube Channel: https://www.youtube.com/channel/UCg--XBjJ50a9tUhTKXVPiqg Security Weekly Website: http://securityweekly.com Follow us on Twitter: @securityweekly

Federico Kirschbaum is currently the CTO of Infobyte Security Research, company based in Buenos Aires, Argentina. With more than 10 years of experience researching and pentesting networks, he has developed a deep knowledge in the computer security & telecommunications field. Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode475#Interview:_Federico_Kirschbaum Subscribe to YouTube Channel: https://www.youtube.com/channel/UCg--XBjJ50a9tUhTKXVPiqg Security Weekly Website: http://securityweekly.com Follow us on Twitter: @securityweekly

John Kindervag is a Principal Analyst on the Security and Risk Management team and works out of the Dallas Research Center. John covers various topics in Information Security including PCI Data Security, Security Information Management (SIM), Network Security, VoIP Security and Wireless Security.   Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode474#Interview:_John_Kindervag

While many are focused on securing the network, it could be the devices within your location, not even on the network, that cause security issues. In this segment we talk about a new, open-source, Bluetooth hacking tool from Pwnie Express called "Blue Hydra". It has the unique capability to scan for Bluetooth and Bluetooth Low Energy all at the same time. Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode474#Tech_Segment:_Bluetooth_Scanning_Using_The_PwnPad_4_.26_Blue_Hydra

This week Paul tells how to cheat in Pokemon Go, everything you need to know about webshells, Mr. Robot easter eggs, and much more! Here on Security News! Full Show Notes:  http://wiki.securityweekly.com/wiki/index.php/Episode474#Security_News_-_7:00PM-8:00PM

This week on Security News, Paul talks about Pokemon Go, Kaspersky Labs, FBI Malware, Kim Dotcom Plans for 2017, and much more! Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode473#Security_News_-_7:00PM-8:00PM

This week, we welcome Bob Stratton! He is a General Partner at Mach37, a startup accelerator investing in information security product companies. Bob is a “repeat offender” with security startups and creating new security product categories, has been a network systems programmer and network application programmer, and was a penetration tester before pentesting was cool. Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode473#Interview:_Bob_Stratton

Joff will write a Python script that can download malware domain name lists from a URL, and create a DNS blackhole bind9 based configuration file on the domain names obtained. Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode473#Tech_Segment:_Python_implementation_DNS_blackholing_code

This week on Security News, Paul, and Jack talk about how Sony, Microsoft, and other gadget makers violate Federal Warranty Laws, Pen Test Partners, FBI, warrant Canarys, and much more! Here on Security Weekly. Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode472#Security_News_-_7:00PM-8:00PM

Ads are annoying, malware is bad. pfSense wanted to be Paul's DNS server in order to block host names. Paul built his own DNS and DHCP servers. This is how he did it. Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode472#Tech_Segment:_Blocking_Ads_and_Malware_Using_Bind_DNS

Paul talks with Elizabeth Gossell who is a Product Strategist at Tenable with a solid background in network security at both Lockheed Martin and Tenable. All that and more, so stay tuned! Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode472#Interview:_Elizabeth_Gossell

This week Paul talks about sharing threat intelligence, Facebook using physical location to suggest friends, interview with an NSA hacker, and much more! So stay tuned! Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode471#Security_News_-_7:00PM-8:00PM

For your home or small office, everyone needs a firewall! Well, I supposed you don't NEED one, but it helps. More important than just protecting you from curious people on the Internet, there are a ton of added advantages of having a good firewall platform, such as VPN, outbound filtering and more. Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode471#Tech_Segment:_Building_A_PfSense_Firewall_-_Part_1_-_The_Hardware

Mark has more than 28 years of commercial and government experience ranging from Software Developer to CISO. All that and more, so stay tuned! Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode471#Interview:_Mark_Baggett

The security news is flooded this week! Paul talks about ASUS UEFI update driver, Verizon patches serious email flaw, and Tor coders harden the Onion against surveillance. All that and more, so stay Tuned! Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Episode470#Security_News