The PowerShell Podcast

PowerShell as a Defender’s Secret Weapon with Michael Haag

Listen Later
In this episode of the PowerShell Podcast, we sit down with Michael Haag, Principal Threat Researcher at Splunk, to dive into PowerShell security, threat detection, and automation. Michael shares his journey from IT support to becoming a security expert, the role of PowerShell in modern cybersecurity, and his work on PowerShell Hunter and Atomic Red Team.
Key topics in this episode include:
  • Michael’s journey into security – From IT support to system administration and eventually security research.
  • Incident response and PowerShell – How PowerShell is used to detect and mitigate threats.
  • PowerShell Hunter – A powerful tool for hunting threats and automating security tasks.
  • Atomic Red Team and Atomic Test Harnesses – How these tools help defenders simulate and detect attacks.
  • The importance of automation in security – How PowerShell can help security teams manage large-scale environments efficiently.
  • Advice for getting into security and automation – Why contributing to open-source and getting involved in the community is key.
    • Michael also shares his thoughts on the evolving security landscape, how defenders can stay ahead of attackers, and practical steps for IT professionals looking to pivot into cybersecurity.

    Bio and Links:
    Michael Haag is Principal Threat Research Enginer at Splunk. Michael led the development of Atomic Red Team, an open-source testing platform that security teams can use to assess detection coverage. An avid researcher, he is passionate about understanding and evaluating the limits of defensive systems. His background includes security analysis, threat research, and incident handling.
    • Follow Michael on Twitter (@M_Haggis) and GitHub (@MHaggis)
    • Check out PowerShell Hunter on GitHub https://github.com/MHaggis/PowerShell-Hunter/
    • Learn more about Atomic Red Team https://www.atomicredteam.io/
    • Watch Atomics on a Friday, Michael’s security research show on YouTube https://www.youtube.com/@atomicsonafriday
    • Join PowerShell Wednesdays every Wednesday at 2 PM EST in the PDQ Discord (discord.gg/pdq)
    • The PowerShell Podcast: https://pdq.com/the-powershell-podcast
    • The PowerShell Podcast on YouTube: https://youtu.be/F2TbwUS-eRI
      • ...more
      View all episodesView all episodes
      Download on the App Store
      The PowerShell PodcastBy PDQ.com
      • 4.9
      • 4.9
      • 4.9
      • 4.9
      • 4.9

      4.9

      31 ratings

      More shows like The PowerShell Podcast

      View all
      Hanselminutes with Scott Hanselman by Scott Hanselman

      Hanselminutes with Scott Hanselman

      380 Listeners

      The Changelog: Software Development, Open Source by Changelog Media

      The Changelog: Software Development, Open Source

      291 Listeners

      Security Now (Audio) by TWiT

      Security Now (Audio)

      2,000 Listeners

      Windows Weekly (Audio) by TWiT

      Windows Weekly (Audio)

      879 Listeners

      Software Engineering Daily by Software Engineering Daily

      Software Engineering Daily

      625 Listeners

      Risky Business by Patrick Gray

      Risky Business

      375 Listeners

      RunAs Radio by Richard Campbell

      RunAs Radio

      83 Listeners

      SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) by Johannes B. Ullrich

      SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

      638 Listeners

      CyberWire Daily by N2K Networks

      CyberWire Daily

      1,018 Listeners

      Click Here by Recorded Future News

      Click Here

      417 Listeners

      Darknet Diaries by Jack Rhysider

      Darknet Diaries

      8,010 Listeners

      CoRecursive: Coding Stories by Adam Gordon Bell - Software Developer

      CoRecursive: Coding Stories

      188 Listeners

      Tech Brew Ride Home by Morning Brew

      Tech Brew Ride Home

      968 Listeners

      The Real Python Podcast by Real Python

      The Real Python Podcast

      141 Listeners

      Hacker And The Fed by Chris Tarbell & Hector Monsegur

      Hacker And The Fed

      169 Listeners