Mechanizing the Methodology: by Daniel Miessler

Поделиться
HTML-код
  • Опубликовано: 30 ноя 2024
  • Mechanizing the Methodology : Automating Discovery, Testing, and Alerting using Recon/Testing Tools and Amazon SES
    Daniel Miessler is a recognized cybersecurity expert and writer with 20 years in Information Security. His experience ranges from technical assessment and implementation, to executive level advisory services consulting, to building and running industry-leading security programs. His 20 years of experience in security ranges from the vibrant startup ecosystem in his birthplace of Silicon Valley, to working with many of the top 100 worldwide companies. He frequently gives talks and participates in panels around the world, and his work and commentary have been featured in dozens of the world’s leading publications.
    Abstract: There are a million techniques out there for finding new attack surface and finding potential vulnerabilities; the problem is finding the time to run your entire methodology against all your targets. This talk will take you through finding new attack surface, performing multiple types of test against those targets, and sending real-time alerts---all on a continuous basis using automation from a cloud-based Linux host.

Комментарии • 11

  • @domaincontroller
    @domaincontroller 4 года назад +9

    01:11 turning everything into questions 03:43 find live hosts 04:15 module philosophy 05:45 get a page's html 06:46 getting the domains that redirect to a domain 08:14 getting ranges from an ASN, amass 09:13 module chains [range] 11:52 notify you, email, slack, amazon ses 12:33 collect, maintain, deploy, terraform, ansible, github

  • @desiapollo
    @desiapollo 4 года назад +3

    my takeaway from this: "With an automation stack you can convert your knowledge and your learnings into something tangible and repeatable".
    Oh how wonderful it'll be to apply this to all cool new things we come across in our lives -- not just tech.

  • @ashleypursell9702
    @ashleypursell9702 2 года назад

    wow i like the idea of lots of smaller scripts it makes so much sense. i used to just slap everything in one script and run the thing and always takes forever

  • @cryproot9845
    @cryproot9845 2 года назад

    I love your content, I have started in this beautiful world of content on RUclips, I am new to this and here we go with issues of cybersecurity and ethical hacking

  • @johnsnow1062
    @johnsnow1062 4 года назад

    Such an incredible talk. Awesomeness being made simple.

  • @srinivasguptha9538
    @srinivasguptha9538 4 года назад +1

    Awesome stuff. Thank you so much ❤️

  • @0xSN1PE
    @0xSN1PE 4 года назад +5

    Amazing

  • @netbin
    @netbin 3 года назад

    someone mentioned me here in comments, thats why i am here.

  • @shrirangkahale
    @shrirangkahale 4 года назад

    Awesome
    ..
    Binod

  • @iamkid4357
    @iamkid4357 4 года назад

    Great

  • @termtype
    @termtype 4 года назад

    1337!

Следующие
Автовоспроизведение
The Bug Hunter’s Methodology Jason Haddix @jhaddix1:16:16The Bug Hunter’s Methodology Jason Haddix @jhaddix
The Bug Hunter’s Methodology Jason Haddix @jhaddixRed Team Village
Просмотров 48 тыс.
BSidesBUD2022: Bug Bounty Recon The Right Way25:00BSidesBUD2022: Bug Bounty Recon The Right Way
BSidesBUD2022: Bug Bounty Recon The Right WayBSides Budapest IT Security Conference
Просмотров 11 тыс.
Finally! HOW TO solve the INTIGRITI Easter XSS challenge using only Chrome DEVTOOLS!42:10Finally! HOW TO solve the INTIGRITI Easter XSS challenge using only Chrome DEVTOOLS!
Finally! HOW TO solve the INTIGRITI Easter XSS challenge using only Chrome DEVTOOLS!STÖK
Просмотров 53 тыс.
HIGHLIGHTS - Liverpool vs Real Madrid | UEFA Champions League 24/25 | TUDN16:19HIGHLIGHTS - Liverpool vs Real Madrid | UEFA Champions League 24/25 | TUDN
HIGHLIGHTS - Liverpool vs Real Madrid | UEFA Champions League 24/25 | TUDNTUDN USA
Просмотров 887 тыс.
Kendrick Lamar - GNX ALBUM REVIEW29:19Kendrick Lamar - GNX ALBUM REVIEW
Kendrick Lamar - GNX ALBUM REVIEWtheneedledrop
Просмотров 1,5 млн
“WOW!!!” - Rich Eisen Reacts to the Head Scratching End of the Bears vs Lions Thanksgiving Day Game08:44“WOW!!!” - Rich Eisen Reacts to the Head Scratching End of the Bears vs Lions Thanksgiving Day Game
“WOW!!!” - Rich Eisen Reacts to the Head Scratching End of the Bears vs Lions Thanksgiving Day GameThe Rich Eisen Show
Просмотров 309 тыс.
Las Vegas Raiders vs. Kansas City Chiefs Game Highlights | NFL 2024 Season Week 1314:17Las Vegas Raiders vs. Kansas City Chiefs Game Highlights | NFL 2024 Season Week 13
Las Vegas Raiders vs. Kansas City Chiefs Game Highlights | NFL 2024 Season Week 13NFL
Просмотров 1,9 млн
How I made 1k in a day with IDORs! (10 Tips!)23:09How I made 1k in a day with IDORs! (10 Tips!)
How I made 1k in a day with IDORs! (10 Tips!)InsiderPhD
Просмотров 54 тыс.
TCP/IP for Programmers3:03:31TCP/IP for Programmers
TCP/IP for ProgrammersEli the Computer Guy
Просмотров 231 тыс.
How to Master FFUF for Bug Bounties and Pen Testing28:57How to Master FFUF for Bug Bounties and Pen Testing
How to Master FFUF for Bug Bounties and Pen Testingcodingo
Просмотров 60 тыс.
Beat Ronaldo, Win $1,000,00022:45Beat Ronaldo, Win $1,000,000
Beat Ronaldo, Win $1,000,000MrBeast
Просмотров 29 млн
You've Got Pwned: Exploiting E-Mail Systems by @securinti #NahamCon2020!24:33You've Got Pwned: Exploiting E-Mail Systems by @securinti #NahamCon2020!
You've Got Pwned: Exploiting E-Mail Systems by @securinti #NahamCon2020!NahamSec
Просмотров 13 тыс.
Mental Hacking 4 Better Bounties (or How 2 Learn Cool Stuff)18:34Mental Hacking 4 Better Bounties (or How 2 Learn Cool Stuff)
Mental Hacking 4 Better Bounties (or How 2 Learn Cool Stuff)STÖK
Просмотров 32 тыс.
OU having a laugh? - Petros Koutroumpis30:20OU having a laugh? - Petros Koutroumpis
OU having a laugh? - Petros KoutroumpisRed Team Village
Просмотров 420
Creating Wordlists for Hacking, Pentesting & Bug Bounty Hunting Using Seclists, Bigquery, and More!13:19Creating Wordlists for Hacking, Pentesting & Bug Bounty Hunting Using Seclists, Bigquery, and More!
Creating Wordlists for Hacking, Pentesting & Bug Bounty Hunting Using Seclists, Bigquery, and More!NahamSec
Просмотров 17 тыс.
How To Become A DevOps Engineer in 2023? | Skills To Learn20:34How To Become A DevOps Engineer in 2023? | Skills To Learn
How To Become A DevOps Engineer in 2023? | Skills To LearnTravis Media
Просмотров 591 тыс.
Женщина в шоке от услышанного Антон Теляков пранк00:24Женщина в шоке от услышанного Антон Теляков пранк
Женщина в шоке от услышанного Антон Теляков пранкСклад Телякова
Просмотров 48 тыс.
S.T.A.L.K.E.R 2 - Кровосос00:14S.T.A.L.K.E.R 2 - Кровосос
S.T.A.L.K.E.R 2 - КровососDobryak
Просмотров 190 тыс.
БУ ИСПУГАЛСЯ НЕ БОЙСЯ следит за мной❗00:12БУ ИСПУГАЛСЯ НЕ БОЙСЯ следит за мной❗
БУ ИСПУГАЛСЯ НЕ БОЙСЯ следит за мной❗РАЙЛЮХА
Просмотров 77 тыс.
Pineapple pizza 🍕@Lionfield @albert_cancook #pizza #italian #food #funny #cooking #viralvideo00:33Pineapple pizza 🍕@Lionfield @albert_cancook #pizza #italian #food #funny #cooking #viralvideo
Pineapple pizza 🍕@Lionfield @albert_cancook #pizza #italian #food #funny #cooking #viralvideoChef Rush
Просмотров 1,8 млн
НИКАКОГО ПРАЗДНИКА. ПАРОДИЯ. #иванабрамов #никакогопраздника #мем #пародия #shorts00:40НИКАКОГО ПРАЗДНИКА. ПАРОДИЯ. #иванабрамов #никакогопраздника #мем #пародия #shorts
НИКАКОГО ПРАЗДНИКА. ПАРОДИЯ. #иванабрамов #никакогопраздника #мем #пародия #shortsИван Абрамов
Просмотров 314 тыс.
ОВР Шоу: Реальный сосед @ovrshow_tnt13:24ОВР Шоу: Реальный сосед @ovrshow_tnt
ОВР Шоу: Реальный сосед @ovrshow_tntОВР Шоу
Просмотров 644 тыс.
Катя Гордон - скандал с Лерчек, разнос Shaman’а, дружба с Кудрявцевой1:23:44Катя Гордон — скандал с Лерчек, разнос Shaman’а, дружба с Кудрявцевой
Катя Гордон - скандал с Лерчек, разнос Shaman’а, дружба с КудрявцевойАлёна, Блин!
Просмотров 315 тыс.
Китайка делает Снежки😂😆00:20Китайка делает Снежки😂😆
Китайка делает Снежки😂😆KITAYKA
Просмотров 69 тыс.