Phillip Wylie Show

The Evolution of Offensive Security: Insights from Dave Mayer

Listen Later

About The Guest(s):
Dave Mayer is an Offensive Security professional with extensive experience in Red Teaming and Penetration Testing. He has a background in computer science and has worked for companies like Citibank and Grim before founding Neuvik. Dave is also a mentor and educator in the field of Offensive Security.

Summary:
Dave Mayer, an experienced Red Team professional, shares his journey in the field of Offensive Security. He discusses his background in computer science, his transition from development to Red Teaming, and his work at Citibank and other consulting firms. Dave emphasizes the difference between Red Teaming and Penetration Testing, highlighting the intent and level of detail involved in each. He also provides insights into when organizations should consider conducting a Red Team operation and the importance of cloud security in today's hybrid environments. Dave recommends learning programming and scripting languages like Python and PowerShell to excel in Offensive Security. He also discusses the role of bug bounties and disclosure programs in finding vulnerabilities and improving security.

Key Takeaways:

  • Red Teaming is focused on remaining undetected and achieving a specific objective, while Penetration Testing aims to find as many vulnerabilities as possible across multiple systems.
  • Red Teaming should be conducted after organizations have matured their vulnerability scanning and Penetration Testing processes.
  • Cloud security is crucial in today's hybrid environments, and understanding cloud platforms and APIs is essential for Offensive Security professionals.
  • Learning programming and scripting languages like Python and PowerShell is important for automating tasks and building tools in Offensive Security.
  • Bug bounties and disclosure programs can be valuable for finding vulnerabilities and improving security, but organizations should provide clear contact information for researchers to report vulnerabilities.



    • Dave's social media and Neuvik website:

    https://twitter.com/dmay3r

    https://www.linkedin.com/in/dmay3r/

    https://www.neuvik.com/

    ...more
    View all episodesView all episodes
    Download on the App Store
    Phillip Wylie ShowBy Phillip Wylie
    • 4.9
    • 4.9
    • 4.9
    • 4.9
    • 4.9

    4.9

    17 ratings

    More shows like Phillip Wylie Show

    View all
    SpyCast by SpyCast

    SpyCast

    1,511 Listeners

    Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec by Jerry Bell and Andrew Kalat

    Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec

    366 Listeners

    Hacked by Hacked

    Hacked

    183 Listeners

    CyberWire Daily by N2K Networks

    CyberWire Daily

    1,009 Listeners

    Smashing Security by Graham Cluley

    Smashing Security

    312 Listeners

    Click Here by Recorded Future News

    Click Here

    415 Listeners

    Darknet Diaries by Jack Rhysider

    Darknet Diaries

    7,913 Listeners

    Modern Wisdom by Chris Williamson

    Modern Wisdom

    3,815 Listeners

    CISO Series Podcast by David Spark, Mike Johnson, and Andy Ellis

    CISO Series Podcast

    189 Listeners

    My First Million by Hubspot Media

    My First Million

    2,624 Listeners

    All-In with Chamath, Jason, Sacks & Friedberg by All-In Podcast, LLC

    All-In with Chamath, Jason, Sacks & Friedberg

    9,236 Listeners

    Cyber Security Headlines by CISO Series

    Cyber Security Headlines

    127 Listeners

    Risky Bulletin by risky.biz

    Risky Bulletin

    43 Listeners

    Hacker And The Fed by Chris Tarbell & Hector Monsegur

    Hacker And The Fed

    167 Listeners

    The Peter Zeihan Podcast Series by Peter Zeihan

    The Peter Zeihan Podcast Series

    401 Listeners