Mike Ritland
๐ค SpeakerAppearances Over Time
Podcast Appearances
And it just goes and escalates until he's like, ah, just pushes the button and gets in, right? Of course, you know, he didn't have a cake or anything like that. The balloons were to cover the camera. And the cake was, I think it was like a briefcase of some hardware that he had to like infiltrate into the company that would go attack things, right? Great demo.
And it just goes and escalates until he's like, ah, just pushes the button and gets in, right? Of course, you know, he didn't have a cake or anything like that. The balloons were to cover the camera. And the cake was, I think it was like a briefcase of some hardware that he had to like infiltrate into the company that would go attack things, right? Great demo.
We use that like, hey, here's some physical security things. Get you to think about it. Catch me if you can. Another thing where it's, you know, social engineering was used. And believe it or not, that movie based on Frank Abagnale, most of the stuff he said is actually made up. It was like the con on the con.
We use that like, hey, here's some physical security things. Get you to think about it. Catch me if you can. Another thing where it's, you know, social engineering was used. And believe it or not, that movie based on Frank Abagnale, most of the stuff he said is actually made up. It was like the con on the con.
We use that like, hey, here's some physical security things. Get you to think about it. Catch me if you can. Another thing where it's, you know, social engineering was used. And believe it or not, that movie based on Frank Abagnale, most of the stuff he said is actually made up. It was like the con on the con.
But anyway, yeah, that was kind of a classic thing that still a lot of security presentations today will still use those. Anyway, long story short, kind of got me into the idea of educating on security instead of just playing and having fun and just the entertainment value. It's like, oh, you got to actually teach people. There's a responsibility here of teach people how to not... Fall victim.
But anyway, yeah, that was kind of a classic thing that still a lot of security presentations today will still use those. Anyway, long story short, kind of got me into the idea of educating on security instead of just playing and having fun and just the entertainment value. It's like, oh, you got to actually teach people. There's a responsibility here of teach people how to not... Fall victim.
But anyway, yeah, that was kind of a classic thing that still a lot of security presentations today will still use those. Anyway, long story short, kind of got me into the idea of educating on security instead of just playing and having fun and just the entertainment value. It's like, oh, you got to actually teach people. There's a responsibility here of teach people how to not... Fall victim.
Also did some live password cracking. Back in the day, people were using real terrible passwords. So just adding some extra characters and stuff. We were able to do password cracking just in the middle of this presentation. Like, hey, this password you can get in 15 seconds. This one's going to take us 10 hours.
Also did some live password cracking. Back in the day, people were using real terrible passwords. So just adding some extra characters and stuff. We were able to do password cracking just in the middle of this presentation. Like, hey, this password you can get in 15 seconds. This one's going to take us 10 hours.
Also did some live password cracking. Back in the day, people were using real terrible passwords. So just adding some extra characters and stuff. We were able to do password cracking just in the middle of this presentation. Like, hey, this password you can get in 15 seconds. This one's going to take us 10 hours.
Basically, I mean, there's a lot of different ways. The way we were doing it was just brute forcing, being able to have the ability to just retry like word sets, like common password sets. You can just get those. There's a lot of password lists, what we call them, that will, when you're going to brute force and you just want to try them, well, like, hey, we know these are the common passwords.
Basically, I mean, there's a lot of different ways. The way we were doing it was just brute forcing, being able to have the ability to just retry like word sets, like common password sets. You can just get those. There's a lot of password lists, what we call them, that will, when you're going to brute force and you just want to try them, well, like, hey, we know these are the common passwords.
Basically, I mean, there's a lot of different ways. The way we were doing it was just brute forcing, being able to have the ability to just retry like word sets, like common password sets. You can just get those. There's a lot of password lists, what we call them, that will, when you're going to brute force and you just want to try them, well, like, hey, we know these are the common passwords.
We know these are passwords from leaked breaches. Just shove them all together. good chance somebody's reusing that somewhere. Good approach. There's cryptography and stuff.
We know these are passwords from leaked breaches. Just shove them all together. good chance somebody's reusing that somewhere. Good approach. There's cryptography and stuff.
We know these are passwords from leaked breaches. Just shove them all together. good chance somebody's reusing that somewhere. Good approach. There's cryptography and stuff.
Oh yeah, definitely. Highly recommended. Which one? One password's pretty good. There's different ones depending on what you need. Is Keeper any good? I haven't looked too heavily into that one. I know somebody who's very into that space that speaks fairly highly of 1Password, but it's been a while, so I wouldn't want to be like, yeah, this is the one, because that space is always changing.
Oh yeah, definitely. Highly recommended. Which one? One password's pretty good. There's different ones depending on what you need. Is Keeper any good? I haven't looked too heavily into that one. I know somebody who's very into that space that speaks fairly highly of 1Password, but it's been a while, so I wouldn't want to be like, yeah, this is the one, because that space is always changing.
Oh yeah, definitely. Highly recommended. Which one? One password's pretty good. There's different ones depending on what you need. Is Keeper any good? I haven't looked too heavily into that one. I know somebody who's very into that space that speaks fairly highly of 1Password, but it's been a while, so I wouldn't want to be like, yeah, this is the one, because that space is always changing.