Mechanizing The Methodology


Download the Slides.

I presented at DEFCON’s Red Team Village on August 8th, and the topic was the automation of common Recon and Security activities. More specifically, it was about how to do those things with common tools like Linux, Bash, Cron, Email, and Slack.

My friend Clint Gibler of TL;DR Sec fame graciously created one of his brilliant summaries of the talk, which you can find here.

The central concepts in the talk are the following:

  1. Turn security tasks into small, granular questions that have answers
  2. Each answer should be a simple output that can become the input for another process
  3. Chain these questions and answers together into workflows
  4. Schedule them with cron
  5. Alert using Amazon SES
  6. Iterate as you learn new techniques.


If you get value from this content, you can support it directly by becoming a member. Being a member gets you access to the newsletter every week instead of just twice a month, access to the UL Slack Channel, the UL Book Club, the UL Archives, and access to future member-only content.

monthly-subscription


annual-subscription