Chris Traynor: Hack Your Way Into a Cyber Security Career
SummaryIn this episode of the Phillip Wylie Show, Chris Traynor shares his journey into the cybersecurity field, discussing his hacker origin story, the impact of post-breach opportunities, and the nuances of breaking into offensive security. He emphasizes the importance of hands-on experience, the role of certifications, and shares engaging stories from his pen testing career. Chris also provides valuable insights on the security mindset and the collaborative nature of cybersecurity.Takeaways• Chris Traynor emphasizes the importance of community involvement in cybersecurity.• Post-breach organizations often have better budgets for security training and tools.• Transitioning into offensive security requires a shift in mindset to think like an attacker.• Certifications can help get past initial job screenings but are not always indicative of skill.• Hands-on experience is crucial for success in pen testing roles.• Building home labs can provide practical experience in cybersecurity.• Understanding the stories behind security incidents is vital for effective communication.• Not all security systems can be 100% secure; it's about managing risks effectively.• Collaboration between security teams and organizations is essential for improvement.• Training should focus on practical applications and real-world scenarios.Sound Bites"I wanted to figure out how things work.""Certifications do serve their purpose.""Hands-on experience is the biggest thing."Chapters00:00 Introduction to Cybersecurity and Community Engagement01:40 Chris Traynor's Hacker Origin Story05:06 Leveraging Post-Breach Opportunities07:24 Breaking into Offensive Security13:04 The Role of Certifications in Cybersecurity19:38 Gaining Hands-On Experience in Pen Testing22:45 Notable Pen Testing Stories and Experiences29:02 Final Thoughts on Security and CollaborationResourceshttps://www.linkedin.com/in/chris-traynor/https://www.antisyphontraining.com/instructor/chris-traynor/
--------
31:19
From Hacking to Entrepreneurship: The PhantomSec Story
SummaryIn this episode of the Phillip Wylie Show, host Phillip Wylie engages with cybersecurity experts Grant Smith and Justin Perez, exploring their unique journeys into the world of hacking and cybersecurity. The conversation delves into their origins as hackers, the founding of their company PhantomSec, and the innovative techniques they are developing for EDR evasion. They discuss the importance of hands-on experience in cybersecurity education, the value of certifications, and what qualities they look for in ideal candidates for cybersecurity roles. The episode provides insights into the evolving landscape of cybersecurity and the challenges faced by newcomers in the field.Takeaways• Justin's early fascination with technology led to his hacking journey.• Grant's childhood pranks sparked his interest in cybersecurity.• PhantomSec was born out of a need for better EDR evasion tools.• Hands-on experience is crucial for success in cybersecurity.• Curiosity drives innovation in the cybersecurity field.• Many educational institutions lack practical cybersecurity training.• Certifications can help but shouldn't be the only focus for candidates.• Real-world experience often outweighs theoretical knowledge in hiring.• CVE contributions can enhance a candidate's profile significantly.• Passion and curiosity are key traits for success in cybersecurity.Sound Bites• "That's like kind of the hacker story."• "You have to learn those things."• "Don't get discouraged as well."Chapters00:00 Introduction to Cybersecurity Journeys01:13 Hacker Origin Stories: Justin Perez04:12 Hacker Origin Stories: Grant Smith06:57 The Birth of PhantomSec10:08 Innovations in EDR Evasion13:49 Getting Started in Offensive Security16:20 The Role of Education in Cybersecurity21:01 The Importance of Hands-On Experience24:50 Certifications and Their Value29:32 Evaluating Candidates in CybersecurityResourceshttps://www.linkedin.com/in/justin-perez215/https://www.linkedin.com/in/grant-smith-cyber/https://www.linkedin.com/company/phantom-cyber-group/https://phantomsec.tools/
--------
34:39
Luke McOmie: Pyr0's Red Team Journey
SummaryIn this episode of the Phillip Wylie Show, Phillip Wylie interviews Luke McOmie, also known as Pyro, a prominent figure in the hacker and cybersecurity community. They discuss the value of smaller conferences, Luke's journey into hacking, memorable red teaming experiences, and the importance of community engagement in the cybersecurity field. Luke shares insights on getting started in red teaming, the evolution of the industry, and the significance of building relationships at conferences.Takeaways• Smaller conferences foster better relationships.• Luke's first computer was an AST-486SX.• Hacking the school district led to early trouble.• Red teaming involves both physical and digital penetration testing.• Community engagement is crucial in cybersecurity.• Training and certifications are essential for aspiring red teamers.• Physical security assessments are increasingly required by insurance underwriters.• Networking at conferences can lead to lifelong relationships.• Urban exploration can provide valuable skills for red teaming.• The landscape of cybersecurity is evolving with new challenges.Sound Bites"I got to play with Commodore 64.""I am God.""I had a backpack full of data."Chapters00:00 Introduction to the Hacker Community03:02 The Value of Smaller Conferences06:10 Luke's Hacker Origin Story08:59 Red Teaming Experiences and War Stories17:57 Close Calls and Getting Caught24:13 The Unexpected Consequences of Cyber Operations30:37 Navigating the Path to Red Teaming35:15 The Evolution of Penetration Testing38:19 Building Connections in the Cybersecurity CommunityResourceshttps://www.linkedin.com/in/lmcomie/
--------
42:09
Evan Dornbush: Desired Effect
SummaryIn this episode of the Phillip Wylie Show, host Phillip Wylie interviews Evan Dornbush, a seasoned cybersecurity professional with a rich history in the field. They discuss Evan's journey from a summer internship focused on cybercrime to his work with the NSA and his entrepreneurial ventures in cybersecurity. The conversation delves into the challenges of hiring in tech, the importance of proving technical skills, and the evolving landscape of security research. They also explore the impact of AI on cybersecurity, the economics of cybercrime, and Evan's new podcast aimed at educating listeners about vulnerabilities and exploits.Takeaways• Evan's journey into cybersecurity began with a summer internship focused on cybercrime.• The importance of hands-on experience in proving technical skills in cybersecurity.• Entrepreneurship in cybersecurity can lead to innovative solutions for hiring and skill assessment.• AI is changing the landscape of cybersecurity, creating both challenges and opportunities.• The economics of cybercrime are driven by profitability, making it a persistent issue.• Bug bounties provide a platform for researchers to monetize their skills and contribute to security.• The rise of CVEs reflects the increasing complexity and volume of software vulnerabilities.• Community involvement and education are crucial for the future of cybersecurity.• Evan's podcast aims to demystify vulnerabilities and educate the research community.• The need for better options for researchers to disclose and monetize their findings.Sound Bites"I was totally fanboying.""Research is protected free speech.""It's a shame there's nothing US based."Chapters00:00 Introduction and Background01:16 Evan's Hacker Origin Story04:15 Transitioning from NSA to Entrepreneurship06:53 The Mission of Point Three Security09:32 Innovative Hiring Practices in Cybersecurity12:32 Proving Technical Skills in Cybersecurity14:42 Breaking into Security Research17:51 The Evolving Landscape of Vulnerability Research20:55 The Value of CVEs vs Certifications23:59 The Economics of Cybercrime26:20 The Future of Exploit Markets30:07 Evan's New Podcast: Explain it Like I'm Five37:36 Closing Remarks and Nonprofit InvolvementResourceshttps://www.linkedin.com/in/evandornbush/https://www.desiredeffect.io/https://www.securityweek.com/ethical-zero-day-marketplace-desired-effect-emerges-from-stealth/https://podcasters.spotify.com/pod/show/hackersontherocks4https://goldstargamers.org/
--------
36:56
Tim Fowler: Space Security The Final Cyber Frontier
SummaryIn this episode of the Phillip Wylie Show, Tim Fowler discusses the importance of networking and community in the cybersecurity field. He emphasizes the value of continuous learning, mentorship, and sharing knowledge to foster growth within the industry. Tim also shares his personal journey into cybersecurity, highlighting the significance of relationships and the evolving landscape of space cybersecurity, including his upcoming training program.Takeaways• Networking is crucial in cybersecurity.• Community learning can be more valuable than formal education.• Conferences provide opportunities for relationship building.• Mentorship is a two-way street; both parties benefit.• Continuous learning is essential to stay relevant in the field.• Sharing knowledge helps others and reinforces your own understanding.• The grind mentality can hinder new professionals in the industry.• Asking for help is a skill that can be developed.• Effective questioning is key to problem-solving.• Tim's journey into cybersecurity began with a passion for technology.Sound Bites"Networking is crucial in cybersecurity.""The grind mentality can hinder new professionals.""Effective questioning is key to problem-solving."Chapters00:00 Introduction and Background02:57 The Importance of Networking in Cybersecurity06:07 Community Engagement and Learning08:54 The Value of Lobby Con and Informal Learning12:13 Building Relationships and Mentorship14:45 The Joy of Giving Back18:07 Continuous Learning and Staying Relevant21:00 Sharing Knowledge and Experiences23:55 Asking for Help and Overcoming Challenges27:28 The Art of Mentorship and Learning32:16 Tim's Hacker Origin Story39:16 Innovations in Space Cybersecurity Training45:40 The Future of Space Security and TechnologyResourceshttps://ethoslabs.space/https://www.antisyphontraining.com/course/foundations-in-space-cybersecurity-with-tim-fowler/https://x.com/roobixxhttps://www.linkedin.com/in/roobixx
Join Phillip Wylie Show host Phillip Wylie as he and his guests discuss the intriguing and ever-expanding field of cybersecurity, including topics from the offensive security side to the defensive and response sides of cybersecurity. Frequent offensive security topics include pentesting, red teaming, ethical hacking, security research, and bug bounties. Guests share their origin stories, tips, and career advice. Phillip and his guests discuss content creation and personal branding in this podcast. If you enjoyed Phillip's previous podcast, The Hacker Factory, you will love this!
España