Blog
Search all our posts or browse some of our most recent entries below:
7MS #287: Introducing 7 Minute Security LLC
Well, after over-teasing this last week, I'm excited to announce that I've started my own company! 7 Minute Security, LLC gives me an outlet to do all my favorite infosec stuff, such as:Network assessmentsVulnerability scanningPenetration testingTrainingPublic speakingI welcome you to check out 7MinSec.com for more information. Or 7MinuteSecurity.com or SevenMinuteSecurity.com. Collect 'em all!What does this mean for the podcast?Nada - I'll keep cranking it out. [...]
7MS #286: The Quest for Critical Security Controls – Part 3
We're continuing to hammer on the CSCs again this week. Here's some rad resources that can get your CSC efforts in the right direction:CIS Implementation Guide for SMEsCIS Cybersecurity quarterly newslettersNetdisco lets you locate machines by MAC or IP, show the corresponding switch port, and disable it if necessary.Defensive Security Handbook isn’t specifically mapped to CSCs but offers great advice to tie into them.Open-Audit tells [...]
7MS #285: The Quest for Critical Security Controls – Part 2
I've heard this song way too much this week.I love the CIS Controls but it seems like there isn't a real good hands-on implementation guide out there. Hrmm...maybe it's time to create one? Speaking of that, check out the MacMon project and chat with us about it via Slack.After hearing rave reviews about Fingbox (not a sponsor), I picked one up (~$120) and wow, I'm [...]
7MS #284: The Quest for Critical Security Controls
For a long time I've been electronically in love with the Critical Security Controls. Not familiar with 'em? The CIS site describes them as:The CIS Controls are a prioritized set of actions that protect your critical systems and data from the most pervasive cyber attacks. They embody the critical first steps in securing the integrity, mission, and reputation of your organization.Cool, right? Yeah. And here [...]
7MS #283: OFF-TOPIC – I Love Cops and COPS
My plans for this week's podcast went hush-hush, kablooie, bye-bye, see ya, adios.So, I'm pinch-hitting and going off-topic and talking about...of all things...cops. Now wait! Wait wait! Don't run away. I'm not going all political on you or anything like that. Just wanna share some anecdotes and perspectives on the following:What it was like growing up with a dad who was a copLosing a cousin [...]
7MS #282: A Peek into the 7MS Mail Bag
I'm gonna level with you: it's been a heck of a week. So I thought I'd try something a little different (and desperate?) and use this episode to answer some FAQs that come in via email and Twitter DM. Today's burning questions include:Q: Do I think it's dangerous to podcast and drive?A: Not really, especially now that I got one of these babies.Q: What is [...]
7MS #281: Baby’s First Banking Infosec Conference
I went to my first ever banking-focused infosec conference a few weeks ago (WBA's Secure-IT) and learned a ton.I met some really great people and had many productive conversations around security. The main takeaways from the conference that I talk about in today's episode:Standing all day and talking about security is exhausting!You can thwart "swag whores" (sorry mom, but I learned that that's what they're [...]
7MS #280: How to Become a Packtpub Author
I'm excited to announce I'm going to be a PacktPub author! I'm going to work with them to create a course on network/vulnerability scanning. I'm pumped, but kinda nervous, so when I had the initial conversations with PacktPub staff, I made sure I hit them with my burning questions:Q: Are you going to ask me to create a sweet course and then pay me pennies [...]
7MS #279: Patching Solutions Bake-Off – Part 4
The patching solutions review concludes this week with Ivanti's patch solution, as well as PDQ Deploy/Inventory.As a quick reminder, here's where our bake-off currently sits:Ninite (covered in 7MS #275)ManageEngine (covered in 7MS #277)Quick reminder: none of these solutions are bribing me with fat wads of cash to plug their products. Some day I hope to have such problems, but today is not that day.IvantiYou might [...]
7MS #278: Interview with SE Guru Rob Sell
We're breaking ground with this episode, folks! For the first time in 7MS history, we've got a guest on the show (finally, right?!).Rob Sell is an IT manager who has been working in IT for many years, with a focus on information security specifically for the last 4 years. He recently came home from Defcon 25 with a third place in the SE CTF.Rob sat [...]
7MS #277: Patching Solutions Bake-Off – Part 3
The patching solutions review continues this week with Manage Engine's Desktop Central. As a quick reminder, here's where our bake-off currently sits:Ninite (covered in 7MS #275)ManageEngine (covered today)Ivanti (coming up in a future episode)PDQ (coming up in a future episode)Quick reminder: none of these solutions are bribing me with fat wads of cash to plug their products. Some day I hope to have such problems, [...]