From the sunny beaches of The Netherlands, Marc Smeets, co-founder of Outflank and experienced red teamer, talks to us about their DAMTA (defend against modern targeted attacks) training, the work they've done on building extensions for Cobalt

Dirk-jan Mollema - ROADtools, PrivExchange, Bloodhound for Azure AD and Microsoft BlueHat

Jul 6th, 2020 29m 1s

Dirk-jan Mollema, hacker, teamer and researcher at Fox-IT, talks about red teaming, his ROADtools exploration framework for Azure AD, the privexchange bug he discovered last year, Microsoft BlueHat and his work with Microsoft's Security and Re

Milad Aslaner - Microsoft Threat Protection, KQL and Android protection

Jun 29th, 2020 37m 24s

Milad Aslaner, principal security program manager at Microsoft, part of the Microsoft Threat Protection engineering team, talks about Defender ATP, his ThreatHunt tool, advanced hunting with KQL, the newly announced Android protection and his b

Cristin Goodwin - Microsoft tracking nation state activity and Sharks with lasers

Jun 19th, 2020 30m 23s

Cristin Goodwin, Microsoft's assistant general counsel, talks about how Microsoft tracks nation state activities, providing context to governments and other stakeholders, what patterns they see and we briefly touch on threat modeling Sharks wit

Ruben Bouman and Marcus Bakker - DETT&CT, MITRE, threat hunting and Microsoft Defender ATP

Jun 11th, 2020 27m 57s

Ruben Bouman and Marcus Bakker, both threat hunters and cyberdefense specialists, join me in talking about their DETT&CT project, the MITRE ATT&CK framework, Microsoft Defender ATP and threat hunting in general.

Christina Lekati - social engineering, HUMINT and insider threats

Jun 8th, 2020 29m

Christina Lekati, social engineering security specialist, talks about HUMINT, insider threats and how social engineering is both a science and an art. We discuss psychology, ethics, and more. We also answer listener questions and learn what piz

Ashwin Patil - AWS threat hunting with Azure Sentinel, Jupyter and Sysmon

May 24th, 2020 26m 11s

Ashwin Patil, senior program manager at Microsoft's Threat Intelligence Center, shares how he built the AWS threat hunting samples for Azure Sentinel, what he loves about Jupyter and we re-visit the subject of Sysmon as previously discussed wit

Olaf Hartong - Sysmon, MITRE ATT&CK and Azure Sentinel

May 13th, 2020 32m 27s

Olaf Hartong, data dweller at FalconForce, talks about Sysmon, EDR tools, his work with Microsoft Defender ATP and Azure Sentinel, and his proposal for a rainbow of tactics in MITRE ATT&CK.

Ram Shankar - Cybersecurity and Machine Learning

May 6th, 2020 30m 22s

Ram Shankar, security data cowboy at Microsoft, gives us an introduction into the crossroads of cybersecurity and machine learning. We talk about adversarial machine learning, Azure Sentinel FUSION and how to go from billions of events to a han

Rate