7 Minute Security
Episodes
7MS #109: OFFTOPIC-It Follows and Backcountry
13 Nov 2015
Contributed by Lukas
Movie reviews of It Follows and Backcountry.
7MS #108: I'm Going to PWAPT!-Part 2
11 Nov 2015
Contributed by Lukas
Here's part 2 (of probably several to come) about my experience with PWAPT (Practical Webapp Pentesting) training last week!
7MS #107: I'm Going to PWAPT!
03 Nov 2015
Contributed by Lukas
Hey I'm going to PWAPT this week (http://www.eventbrite.com/e/practical-web-application-penetration-testing-with-tim-tomes-lanmaster53-tickets-1671888...
7MS #106: A Day in the Life of an Information Security Analyst
30 Oct 2015
Contributed by Lukas
A listener wrote in asking some questions about "a day in the life of" a security analyst, so here's my best stab at it!
7MS #105: OFFTOPIC-Big Bag of Random Sauce
28 Oct 2015
Contributed by Lukas
Today's totally random episode covers: 1. How bad does this podcast's logo suck? 2. Does this podcast need a theme song? 3. Some interesting training ...
7MS #104: LANTurtle First Impressions
22 Oct 2015
Contributed by Lukas
Hey I just got a LANTurtle and....these are my first impressions!
7MS #103: OFFTOPIC-I Was in a Movie Once
20 Oct 2015
Contributed by Lukas
This is an off-topic episode about the time I was in the holiday comedy super-smash laugh-fest, Jingle All the Way.
7MS #102: Recon-ng!
15 Oct 2015
Contributed by Lukas
I'm a big fan of Recon-ng and you should be too! Check it out - and learn more about Tim Tomes, its creator - at www.lanmaster53.com. And here's the v...
7MS #101: OFFTOPIC-I Am Chris Farley
14 Oct 2015
Contributed by Lukas
The new(ish) Chris Farley documentary is fantastic - see it!
7MS #100: Assessment Curses Can Be Blessings
09 Oct 2015
Contributed by Lukas
Ever had an assessment that you thought would be the death of you? I had one recently, but after sticking it out, it turned out to be a blessing in di...
7MS #99: How to Deliver Bad News in a Good Way
02 Oct 2015
Contributed by Lukas
Today's episode gives you some tips on how to deliver bad news in an assessment in a positive way. I think that last sentence was a grammatical nightm...
7MS #98: Intro to PCI Scoping
30 Sep 2015
Contributed by Lukas
So far I've focused on the technical aspects of PCI, but I'm trying to get familiar with the overall scoping questions that my tenacious QSA friends a...
7MS #97: OFFTOPIC-Limbo
25 Sep 2015
Contributed by Lukas
We're going off topic today and talking about video games! LIMBO for the Xbox!
7MS #96: How to Make Enemies During a Security Assessment
23 Sep 2015
Contributed by Lukas
Yep, we're talking about how to make ENEMIES during a security assessment today (and maybe turn them into friends).
7MS #95: How to Make Friends During a Security Assessment
17 Sep 2015
Contributed by Lukas
When you start a security assessment with a company, not everybody's gonna be glad to see you. The IT dept and other employees may have tense shoulder...
7MS #94: Learn How to Burp - Part 1
15 Sep 2015
Contributed by Lukas
I've been looking for better ways to learn Burp Suite and I struck gold! Check out my recommendations in today's episode!
7MS #93: Securing Your Life
11 Sep 2015
Contributed by Lukas
So yeah, this is kind of off-topic, but have you thought about security in the sense of "What kinds of security things should I be doing before I'm de...
7MS #92: You're Not Ready for Big Boy Security Pants
09 Sep 2015
Contributed by Lukas
Sometimes I get in situations where clients want their WHOLE security program reviewed, but in reality, they are still in the baby steps phase. What's...
7MS #91: Umbrella
03 Sep 2015
Contributed by Lukas
Today's episode is about Umbrella, a product from OpenDNS that provides a layer of protection against malware, wifi-jacking and other threats.
7MS #90: OFFTOPIC-Citizenfour
01 Sep 2015
Contributed by Lukas
We're going offtopic today and talking about the Citizen Four documentary, which centers around the Edward Snowden story.
7MS #89: AppSpider
27 Aug 2015
Contributed by Lukas
Today we're talking about a new (to me) Web site/app scanning tool called AppSpider by Rapid7. Again, this isn't a commercial or paid advertisement. I...
7MS #88: Glasswire
25 Aug 2015
Contributed by Lukas
This episode's about a cool security app called GlassWire, which is (kind of) a firewall on steroids. I love it! Oh, and this is not an endorsement or...
7MS #87: Presenting the Right Findings to the Right Audience
20 Aug 2015
Contributed by Lukas
Today I talk about challenge I run into when I'm delivering to a mixed audience of C-level folks and IT people. How do you keep things high level enou...
7MS #86: OSWP-The Final Chapter!
18 Aug 2015
Contributed by Lukas
This episode concludes the gripping, thrilling, exciting, awesome-ing, death-defying, unsettling, rattling series on OSWP (Offensive Security Wireless...
7MS #85: What is The Penetration Testers Framework (PTF)?
14 Aug 2015
Contributed by Lukas
Need an easy way to create a modular/mobile kit of pentest tools to take with you from machine to machine? And ALSO be able to update all those module...
7MS #84: DIY Pwn Pad
12 Aug 2015
Contributed by Lukas
Hey have you heard of Pwn Pads? They're an awesome network pentesting tool that leverages a Nexus tablet - which you can either buy right from Pwnie E...
7MS #83: Wifi Pineapple First Impressions
06 Aug 2015
Contributed by Lukas
in this episode I talk about my first hands-on experience with a Wifi Pineapple, and why you'll probably want one too.
7MS #82: OSWP-Part 3
04 Aug 2015
Contributed by Lukas
The OSWP series is coming to a close. One final episode today and then the four-quel episode will be all about the test!
7MS #81: OSWP-Part 2
30 Jul 2015
Contributed by Lukas
A continuation of our thrilling, exciting, mind-blowing series on OSWP (Offensive Security Wireless Professional)!
7MS #80: OSWP-Part 1
28 Jul 2015
Contributed by Lukas
This episode kicks off a multi-part series all about the OSWP (Offensive Security Wireless Professional) certification.
7MS #79.5: UPDATE(!) on My Love-Hate Relationship with Nessus
27 Jul 2015
Contributed by Lukas
In episode #79 I shared some gripes about Nessus. Those gripes were quickly answered by Tenable staff/support so I wanted to pass relevant updates on ...
7MS #79: My Love-Hate Relationship with Nessus
23 Jul 2015
Contributed by Lukas
In this episode I talk about one of my favorite vulnerability scanners, Nessus, and why I want to simultaneously hug it and punch it in the neck.
7MS #78: It's All About Segmentation
21 Jul 2015
Contributed by Lukas
In this episode I advocate for proper network segmentation, as doing it (well and right!) can seriously reduce your risks!
7MS #77: OFFTOPIC-Rickrolling Your Coworkers for Fun and Profit
16 Jul 2015
Contributed by Lukas
This week i used my Wifi Pineapple to scare and amuse my coworkers and lure them into a Rickroll trap. All the gory details in today's episode!
7MS #76: Lessons Learned from LastPass
14 Jul 2015
Contributed by Lukas
I know this is a bit late, but I wanted to talk a little about the LastPass breach and why I'll still remain a customer.
7MS #75: OFFTOPIC-My Son's Piano Recital
09 Jul 2015
Contributed by Lukas
I wanted to share (what I think is) an amusing anecdote about my son's first piano recital, which was topped off by a kid playing the song "Lucky." Ma...
7MS #74: How to Become a More Organized Information Security Professional
08 Jul 2015
Contributed by Lukas
In this episode I share some strategies and apps that may help you stay more organized as you go about your infosec work!
7MS #73: PCI Pentesting 101 – Part 2 (audio)
30 Jun 2015
Contributed by Lukas
This episode is the exciting continuation of a recent pentest I did, in which I got some serious pwnage, including cracking the domain admin password!...
7MS #72: PCI Pentesting 101 (audio)
25 Jun 2015
Contributed by Lukas
I'm pumped to talk about an about an awesome, free little tool that made my Internet connection feel like new again. 7MS #72: PCI Pentesting 101 (audi...
7MS #71: OFFTOPIC-Mad Max (audio)
23 Jun 2015
Contributed by Lukas
We're going totally off topic today and doing a movie review of Mad Max! 7MS #71: OFFTOPIC-Mad Max (audio)
7MS #70: Get the Most out of Your DNS! (audio)
18 Jun 2015
Contributed by Lukas
I'm pumped to talk about an about an awesome, free little tool that made my Internet connection feel like new again. 7MS #70: Get the Most out of Your...
7MS #69: I'm Not Responsible for Your Information Insecurity (audio)
16 Jun 2015
Contributed by Lukas
Are you too hard on yourself? Do you think the success of your client's infosec program lives and dies with you? Listen to this episode. You might fee...
7MS #68: Is Training and Awareness Worth It or Worthless (audio)
11 Jun 2015
Contributed by Lukas
This episode is about something that got my undies in a bunch – I heard a security expert imply that training and awareness might be worthless! 7MS ...
7MS #67: Wifi Sniffing is Fun-Part 2 (audio)
09 Jun 2015
Contributed by Lukas
This is a follow-up to episode #64, in which I did some fun wireless sniffing and tried to find sensitive data within it! In the episode I talk about ...
7MS #66: I'm Excited to Go Phishing – Part 2 (audio)
04 Jun 2015
Contributed by Lukas
This is a follow-up to episode #63, discussing the results of a fun phishing campaign I recently completed. 7MS #66: I'm Excited to Go Phishing – Pa...
7MS #65: OFFTOPIC-Still Alice (audio)
03 Jun 2015
Contributed by Lukas
Warning, this episode is off topic and has NOTHING to do with infosec! Nope! Instead, it's a review of the movie Still Alice. Yep. That happened. 7MS ...
7MS #64: Wifi Sniffing is Fun-Part 1 (audio)
28 May 2015
Contributed by Lukas
I got a fun project involving wireless sniffing, followed up by scraping through packets looking for credit card data! Here's part 1, which talks abou...
7MS #63: I'm Excited to Go Phishing (audio)
21 May 2015
Contributed by Lukas
This week I'll be launching a phishing campaign against an organization that has been well trained to defend against such malicious attacks and links!...
7MS #62: You Should Run LAPS (audio)
19 May 2015
Contributed by Lukas
I'm excited about this! Microsoft has released a tool called Local Administrator Password Solution to help administrators manage local admin credentia...
7MS #61: Why Local Admin Rights Suck (audio)
14 May 2015
Contributed by Lukas
Users running as local admins on their machine are a big risk! This episode discusses some reasons why, and also here is the link to the Avecto study ...
7MS #60: How Not to Suck at Customer Service (audio)
12 May 2015
Contributed by Lukas
This episode was inspired by two awesome customer service experiences I had in the past week. It got me thinking: how can we as infosec professionals ...
7MS #59: Traveling with a Red Giant – Part 2 (audio)
07 May 2015
Contributed by Lukas
A few episodes back I talked about Red Giant, a cool service that provides you with a pre-paid debit card that can be controlled/locked with your phon...
7MS #58: What Should We Do First? (audio)
05 May 2015
Contributed by Lukas
At the end of just about every assessment I deliver, the client asks "What should we do first?" They (understandably) want to know a "top 5″ list of...
7MS #57: How to Review a Firewall (audio)
30 Apr 2015
Contributed by Lukas
In this episode I talk about a few different ways to approach firewall reviews/audits. This document was very helpful in getting my template started. ...
7MS #56: OFFTOPIC – Catching Up and Blowing Noses (audio)
28 Apr 2015
Contributed by Lukas
A few offtopic things: What you can expect as far as a podcast release schedule going forward Two suspicious charges that showed up on my credit card ...
7MS #55: OFFTOPIC – What's in Brian's Murse? (video)
22 Apr 2015
Contributed by Lukas
Ok I don't really have a murse, but I wanted to do a short video(!) podcast to show you some sorta-security-related gadgets that I've been nerding out...
7MS #54: Traveling with a Red Giant (audio)
16 Apr 2015
Contributed by Lukas
If you're concerned about your credit/debit card security, you might want to give Red Giant a try. It's a service that provides a debit card you can u...
7MS #53: Are You Ready to Get Robbed? (audio)
14 Apr 2015
Contributed by Lukas
Business DR plans are a hugely important – and often overlooked – piece of the infosec puzzle. But what about at home? If you got run over by a bu...
7MS #52: OFFTOPIC – My Son is Really Loyal (audio)
09 Apr 2015
Contributed by Lukas
It's another off-topic episode today. This one's about how my eight-year-old son is fiercely loyal, and wants to settle a 25-year-old score for me. 7M...
7MS #51: CEH vs. OSCP (audio)
07 Apr 2015
Contributed by Lukas
A few people have written in asking whether to pursue the CEH or OSCP (or both). This episode discusses my experience with each cert and hopefully poi...
7MS #50: OSCP – The Final Chapter – part 2! (audio)
02 Apr 2015
Contributed by Lukas
At last, the epic conclusion of the maddening, redeeming OSCP journey. 7MS #50: OSCP – The Final Chapter – part 2! (audio)
7MS #49: OSCP – The Final Chapter – part 1! (audio)
31 Mar 2015
Contributed by Lukas
We've arrived at the exciting two-part finale to my bloody battle with the OSCP! 7MS #49: OSCP – the final chapter – part 1! (audio)
7MS #48: So I Gave My Eight Year Old a Computer (audio)
21 Mar 2015
Contributed by Lukas
Is it a good idea to give young kids a computer to play with? Maybe. Maybe not. Tune in to today's episode and weigh in! 7MS #48: So I Gave My Eight Y...
7MS #47: Logging and Alerting RELOADED (audio)
17 Mar 2015
Contributed by Lukas
Hey, you should log the stuff going on in your network. This episode talks about that (again). And I reference some AD-related settings that may not b...
7MS #46: So You Want to be a Hacker? (audio)
14 Mar 2015
Contributed by Lukas
So you want to be a hacker? Cool. In this episode I toss myself under the bus and share why I used to have a really dumb perspective on what that mean...
7MS #45: OFFTOPIC – Why I Stopped Pirating Software (audio)
10 Mar 2015
Contributed by Lukas
Warning, this is an off topic episode! I used to pirate software. There. I admitted it. But it's funny how a letter from the Comcast legal dept. will ...
7MS #44: OFFTOPIC – Annoying People at the YMCA (audio)
07 Mar 2015
Contributed by Lukas
Warning, this is an off topic episode! Did you know it's fun to stay at the YMCA? Did you also know it's fun to annoy annoying people at the YMCA? Lis...
7MS #43: Why Web Site Vulnerability Scanners Can Ruin Your Day (audio)
28 Feb 2015
Contributed by Lukas
Did you know that Web site vulnerability scanners can destroy your customer sites? If not, listen to this. 7MS #43: Why Web Site Vulnerability Scanner...
7MS #42: Vulnerability Scans vs. Pentests (audio)
14 Feb 2015
Contributed by Lukas
I think everybody throws around the terms "vulnerability scans" and "pentests" and they mean completely different things from one person to the next. ...
7MS #41: OSCP – Part 7 (audio)
06 Feb 2015
Contributed by Lukas
Tried of talking about OSCP yet? Me neither! 7MS #41: OSCP – Part 7 (audio)
7MS #40: OSCP – Part 6 (audio)
31 Jan 2015
Contributed by Lukas
PART SIX of a mind-bending series all about OSCP! 7MS #40: OSCP – Part 6 (audio)
7MS #39: Infosec on the Disney Boat (audio)
24 Jan 2015
Contributed by Lukas
I took a Disney cruise with my family recently, and one particular aspect of the trip gave me the Big Brother heebie-jeebies. 7MS #39: Infosec on the ...
7MS #38: OFFTOPIC – Health and Infosec (audio)
17 Jan 2015
Contributed by Lukas
Every once in a while I thought it would be fun to go slightly off topic and talk about other stuff I'm interested in. This episode kind of has a tech...
7MS #37: Keimpx (audio)
10 Jan 2015
Contributed by Lukas
Ever wanted to pass hashes a whole network at a time? Check out this episode, where I talk about one of my fav new tools called Keipmx. 7MS #37: Keimp...
7MS #36: OSCP – Part 5 (audio)
03 Jan 2015
Contributed by Lukas
More talk about OSCP goodness. Download: 7MS #36: OSCP – Part 5 (audio)
7MS #35: OSCP – Part 4 (audio)
27 Dec 2014
Contributed by Lukas
This is the 4th thrilling installment in our exciting series about the awesome, challenging, rage-inducing, but ultimately rewarding training and cert...
7MS #34: The Hacker Playbook (audio)
14 Nov 2014
Contributed by Lukas
I found a great bit of reading that walks you through the "plays" of hacking – enumeration, exploitation, post-exploitation, etc. It's a great (and ...
7MS #33: ProXPN (audio)
07 Nov 2014
Contributed by Lukas
This episode's all about a cool product called ProXPN that I use to encrypt/anonymize my traffic for various reasons. Not a sponsored episode or anyth...
7MS #32: OSCP – part 3 (audio)
01 Nov 2014
Contributed by Lukas
Been a while since I shared an update on OSCP progress. It's going good but…slow. However, I do have one (maybe obvious) tip to share that I hope wi...
7MS #31: Network Detective (audio)
25 Oct 2014
Contributed by Lukas
Network Detective is a tool we've been using as kind of an addendum to our full security assessment. It gives some nice, plain-English Excel spreadshe...
7MS #30: Managing Privileged Accounts (audio)
18 Oct 2014
Contributed by Lukas
Most organizations I talk to have no idea where their privileged accounts are used across the network. I recently saw a demo of a solution called Cybe...
7MS #29: Follow Up Then (audio)
11 Oct 2014
Contributed by Lukas
This isn't necessarily related to security, but it's about one of my favorite tools to keep my todos organized: FollowUp Then! Download: 7MS #29: Foll...
7MS #28: Infosec for Kids? (audio)
27 Sep 2014
Contributed by Lukas
This is more of a random, wondering aloud type of episode as I think about raising my kids with infosec in mind. Specifically, what's life going to be...
7MS #27: Backing Up with CrashPlan (audio)
20 Sep 2014
Contributed by Lukas
Hey, when it comes to backups…uh…you should have them! This is a NON-endorsed/sponsored episode about my personal favorite backup service called C...
7MS #26: The Importance of Training and Awareness (audio)
13 Sep 2014
Contributed by Lukas
Training and awareness – specifically as it relates to infosec – is something companies can't spend enough $ on. But from my experience, not enoug...
7MS #25: Writing Better Pentest Reports (audio)
23 Aug 2014
Contributed by Lukas
This episode talks about some pointers, tools and tips towards writing better pentest reports. Download: 7MS #25: Writing Better Pentest Reports (audi...
7MS #24: Why Wireless Scares Me (audio)
16 Aug 2014
Contributed by Lukas
This episode is all about why you should (probably not) use wireless hotspots, and keeping yourself safe in general when surfing the Web. Download: 7M...
7MS #23: OSCP – part 2 (audio)
09 Aug 2014
Contributed by Lukas
In this episode I talk more about my adventures with OSCP and Offensive Security! . Download: 7MS #23: OSCP – part 2 (audio) Show notes: I recommend...
7MS #22: Phishing with Black Squirrel (audio)
27 Jul 2014
Contributed by Lukas
In this episode I talk about using Black Squirrel to launch phishing campaigns! Download: 7MS #22: Phishing with Black Squirrel (audio) Show notes: Se...
7MS #21: OSCP – part 1 (audio)
20 Jul 2014
Contributed by Lukas
In this episode I talk about my venture into Offensive Security! . Download: 7MS #21: OSCP – part 1 (audio) Show notes: It's official – I have a d...
7MS #20: Moving from GoDaddy to DNSimple (audio)
15 Jul 2014
Contributed by Lukas
In this episode I talk about why I'm pulling my domains from GoDaddy, and making DNSimple their new home. Download: 7MS #20: Moving from GoDaddy to DN...
7MS #19: Kioptrix! (audio)
05 Jul 2014
Contributed by Lukas
In this episode I talk about a deliciously vulnerable series of VMs called Kioptrix, and how you can use them to sharpen your pentesting skills. Downl...
7MS #18: Wireless Security 101 (audio)
22 Jun 2014
Contributed by Lukas
In this episode I talk about some wireless security basics that we're not seeing when out on assessments. Download: 7MS #18: Wireless Security 101 (au...
7MS #17: How to Pass the Certified Ethical Hacker Exam (audio)
14 Jun 2014
Contributed by Lukas
In this episode I share my experience with EC-Council's Certified Ethical Hacker training and exam. Download: 7MS #17: How to Pass the Certified Ethic...
7MS #16: PwnPad Initial Impressions – part 2! (audio)
31 May 2014
Contributed by Lukas
In this episode I talk about my first-hand experience using the PwnPad for wireless pentesting. Download: 7MS #16: PwnPad Initial Impressions – Part...
7MS #15: PwnPad Initial Impressions (audio)
24 May 2014
Contributed by Lukas
In this episode I talk about my initial impressions of using the PwnPad for wireless pentesting. Download: 7MS #15: PwnPad Initial Impressions Show no...
7MS #14: H8 4 Win8 (audio)
10 May 2014
Contributed by Lukas
In this episode I talk about two (sort of) security related tips that I've learned by using Windows 8 wrong. Download: 7MS #14: H8 4 Win8 (audio) Show...
7MS #13: How to Get Pwned by HP (audio)
03 May 2014
Contributed by Lukas
In this episode I talk about how I had to sent my HP laptop in for repair and, to my surprise, it (allegedly) came back with a bonus: malware! Downloa...
7MS #12: Why My Domains Have Gan to Gandi (audio)
28 Apr 2014
Contributed by Lukas
In this episode I talk about an account takeover article that freaked me out, and why it changed a few things about how I handle my important online a...
7MS #11: Overtraining your iPhone Touch ID (video)
12 Apr 2014
Contributed by Lukas
In this episode I totally throw my subscribers for a loop and do a VIDEO podcast about overtraining your Touch ID on your iPhone. Download: 7MS #11: O...