Profile

Cover photo
Bryan Brake
156 followers|154,904 views
AboutPostsVideos

Stream

Bryan Brake

Shared publicly  - 
 
In an incident response, the need for clear communication is key to effective management of an incident. This week, we had +Michael Douglas, DFIR instructor at SANS, and +Jarrod Frates , who is a pentester at InGuardians, and has great experience handling incidents. Find out some roles in an incident response (the Shadow, the event coordinator, the lead tech), and how companies should have an IR plan that handles various 'incident severities'.

Jarrod updates us on "TheLab.ms" and how you might like to help them! 

Finally, We are holding a contest to win a ticket to DerbyCon, full instructions are below. We are giving away two tickets. 

DerbyCon 1st Ticket contest expires 31 July 2015. Full instructions are at http://brakeingsecurity.com/2015-032-incident-response-effective-communication-and-derbycon-contest

  #infosec   #podcast   #derbycon   #DFIR   #hackerspaces  
2
Add a comment...

Bryan Brake

Shared publicly  - 
 
Roxy, who we interviewed a few months ago on our podcast about hackerspaces, is back with us this week to discuss a project she is working on, called 'Big Brown Cloud'. If you've ever wanted to setup your own fake blog and send people to it to gain information on possible attacks, you've come to the right place.  

 

We also get an update on the hackerspace that Jarrod, Sean, and Roxy were getting setup a few months ago. They've come a long way, and they are about to move into their new facility

https://thelab.ms/

http://directory.libsyn.com/episode/index/id/3657921

#activedefense   #infosec   #podcast   #hackerspaces   #cloud   #wordpress   #brakeingdownsecurity  
Roxy, who we interviewed a few months ago on our podcast about hackerspaces, is back with us this week to discuss a project she is working on, called 'Big Brown Cloud'. If you've ever wanted to setup your own fake blog and send people to it to gain information on possible attacks, you've come to the right place.     We also get an update on the hackerspace that Jarrod, Sean, and Roxy were getting setup a few months ago. They've come a long way,...
1
Add a comment...

Bryan Brake

Computer security  - 
 
+Michael Gough   joined us to discuss malware detection techniques on Windows systems. We talk about how you can modify Powershell's defaults to allow for better logging potential. Also, we find out some hidden gems that pretty much guarantee to let you know that you've been infiltrated. 

Stay for the powershell security education, and you also learn some new terminology, like "Malware Archaeology", Malwarians, and 'Log-aholic', to name a few...

#malware   #archaeology   #detection   #infosec   #podcast   #Malwarians   #logfiles   #intrusions   #DetectiveControls  
1
Add a comment...

Bryan Brake

Shared publicly  - 
 
This week, we discuss various methods of enabling companies to move applications to cloud based platforms. 

We discuss containers, like Docker, and how various hosting services handle converting businesses from a traditional data centers to a secure. cloud based entity.

We even discuss securing the data in the cloud, preventing bad guys from accessing it, as well as the cloud provider themselves, who can be served with a subpeona to hand over data.

Brakeing Down Security would like to thank FireHost for allowing Chase and Mike to join us.

#infosec   #security   #managedservices   #cloudcomputing   #podcast  
This week, we discuss various methods of enabling companies to move applications to cloud based platforms.  We discuss containers, like Docker, and how various hosting services handle converting businesses from a traditional data centers to a secure. cloud based entity. We even discuss securing the data in the cloud, preventing bad guys from accessing it, as well as the cloud provider themselves, who can be served with a subpeona to hand over d...
1
Add a comment...

Bryan Brake

Discussion  - 
 
I just want to say that I'm glad to be back using Carbon Rom, after purchasing my Nexus 6 and promptly rooting that mother.  Using the latest build (CARBON-LP-5.1.1-UNOFFICIAL-20150612-1220) and it's awesome.  I really needed Wifi tether, and it's going solid as it was on my Note 2. Just glad I could come back to a solid ROM. After my LG G3 ,which lasted less than 6 months, during which the ROM I was using just stopped being dev'ed because the creator 'moved on'.  Nice to have some stability back...
3
Ateek Ujjawal's profile photoChristopher Murphy's profile photo
2 comments
 
On the same build and its flawless you guys make a kick ass ROM, I alternate between Carbon and brokenos which is another great ROM and its fun to play with rro layers. Anyway you guys will implement layers over the theme engine or are you staying cm based?
Add a comment...

Bryan Brake

Shared publicly  - 
 
Sometimes, employing tools that antagonize, hamper, and stymie pentesters and bad guys sounds glamorous, but the little things like log analysis, and checking your IDS can go a long way to detect intrusions. We talk more about defensive theory this week with Mick Douglas.
#infosec   #blueteam   #penetrationtesting   #security  
We had the opportunity to discuss with Mick Douglas the fact that there is a stigma of blue team always being on the losing end of the security. Is it because there are more tools for the pentesters or bad guys, or that it takes a massive IT budget to be secure? We don't believe so... Great insights into how a blue team can protect their network.
1
Add a comment...
Have him in circles
156 people
Bryan Brake's profile photo
Blake Kaufman's profile photo
Matthew Ruth's profile photo
Farid Mokraoui's profile photo
Derek Gelinas's profile photo
David Novak's profile photo
William Arndt's profile photo
Michael Althauser's profile photo
Michael Tumey's profile photo

Bryan Brake

Discussion  - 
 
I've seen a lot of posts online about the call history attempting to ID numbers, but every is showing up as "unknown", which means that you cannot call back nor can you add an 'unknown' number to your contacts. Has anyone had an issue with this? Is there a setting I'm missing that I can toggle that won't require me to try a factory reset, which "says" will fix it?
1
Bryan Brake's profile photo
 
So, after a factory reset, that did not fix the issue... anyone else have ideas? I'm running a Nexus 6 with the "CARBON-LP-5.1.1-UNOFFICIAL-20150612-1220" build.
Add a comment...

Bryan Brake

Shared publicly  - 
 
Join us again on the Brakesec podcast with +Michael Gough 

 In this podcast, you'll learn about:

Log analytics software techniques that can be used to parse system logs for naaty malware

Detecting Malware artifacts

learn about windows directory locations

looking for indicators like packing, changed hashes, etc

Tips for capturing malware using tools like RoboCopy

Learn about what code caves are and how malware hides inside them (http://www.codeproject.com/Articles/20240/The-Beginners-Guide-to-Codecaves)

 

SANS DFIR poster - https://www.sans.org/security-resources/posters/windows-forensics-evidence-of-75 

#malware   #infosec   #splunk   #loganalytics   #podcast   #windows  
In this podcast, you'll learn about: Log analytics software that can be used to parse system logs for naaty malware Detecting Malware artifacts learn about windows directory locations looking for indicators like packing, changed hashes, etc Tips for capturing malware using tools like RoboCopy Learn about what code caves are and how malware hides inside them (http://www.codeproject.com/Articles/20240/The-Beginners-Guide-to-Codecaves)   SAN...
1
1
Michael Gough's profile photo
Add a comment...

Bryan Brake

Shared publicly  - 
 
+Michael Gough  joined us again to discuss malware detection techniques on Windows systems. We talk about how you can modify Powershell's defaults to allow for better logging potential. Also, we find out some hidden gems that pretty much guarantee to let you know that you've been infiltrated. 

Stay for the powershell security education, and you also learn some new terminology, like "Malware Archaeology", Malwarians, and 'Log-aholic', to name a few...

#malware   #archaeology   #detection   #infosec   #podcast   #Malwarians   #logfiles   #intrusions   #DetectiveControls  
1
2
Michael Gough's profile photoStephanie Robertson's profile photo
Add a comment...

Bryan Brake

Off Topic (Nothing to do with Carbon)  - 
 
I noticed this issue with my LG G3 and I appear to have the same issue on my Nexus 6. I want to make a call, so I plug my headphones in. Shure SE215 earbuds. I make a call, and I can hear the people on the other end of the line... but the problem is that they don't hear me through the mic on the phone. I used to be able to use my headphones and the phone mic on my Note2 (using Carbon Rom), but once I upgraded to LP, and to newer phones, this functionality appears to have disappeared.  

I don't see an option to enable this, stock or otherwise... is there an app or setting I'm missing that will allow this to function as I mentioned above? It's almost like they require earbuds with the phone mic on it...
1
Add a comment...

Bryan Brake

Discussion  - 
 
Question for the group. I live in Seattle, and frequently go to Canada, because reasons...  I know that when I traveled to France with my Note 2 last year, I was unable to connect to phone or data networks there and make calls. Obviously, calling Verizon to ask for help was impossible without the phone being back on stock. So, does anyone use Carbon, across international borders (specifically US > other countries) using current LP builds with no issues? Like make calls, data, etc.  I get international calling plans activated when I go, so price isn't an issue.  I just want to know that I won't have to go back to stock when I travel...
1
Matt Bloomfield's profile photoElric Erekose's profile photoBryan Brake's profile photo
6 comments
 
I bought it off Amazon and it was advertised as 'unlocked'
Add a comment...

Bryan Brake

Shared publicly  - 
 
With last week's revelation from Microsoft that they will support SSH, understanding powershell has become more important than ever as a tool to be used by blue teamers, both for adminstration, and to understand how bad guys will use it for nefarious deeds on your network.

Part 2 of our interview with +Michael Douglas  discusses a bit more about the DEV522 class that he teaches for SANS, and why it seems that blue team (defenders) are not getting the training they should.  By being deficient in necessary skills, the knowledge between bad guys and the defenders widens. 

#infosec   #powershell   #microsoft   #blueteam   #defense  
1
Add a comment...
People
Have him in circles
156 people
Bryan Brake's profile photo
Blake Kaufman's profile photo
Matthew Ruth's profile photo
Farid Mokraoui's profile photo
Derek Gelinas's profile photo
David Novak's profile photo
William Arndt's profile photo
Michael Althauser's profile photo
Michael Tumey's profile photo
Basic Information
Gender
Male
Story
Introduction
I'm a CISSP that loves working in the security field.
Bragging rights
I lived on the island of Diego Garcia.
Links
Contributor to