Exploring Information Security Newsletter

July 1, 2018

Squarespace has made a new feature available, email campaigns. I'm intrigued because it this could be a good opportunity to start up a newsletter for the podcast. I'm thinking I'll use the newsletter as a forum to announce things like new podcasts, conferences, and other things. I'd also like to provide something special for people who sign-up. I'm thinking behind the scenes type of stuff, maybe even some extra recorded audio. I sometimes have audio that doesn't quite fit the show but has something insightful or funny.

I'm going to start including a newsletter signup form on all the show notes and blog posts. If there are things you'd like to see hit me up on Twitter (@TimothyDeBlock) or email (timothy.deblock[@]gmail[.]com).

This blog post first appear on Exploring Information Security

Podcast updates: EIS now available on Google Play and a new Astros podcast soon

August 20, 2017

The Exploring Information Security podcast is now available on Google Play Music. I decided to add it to Google Play Music, because a listener requested it. In the past I've put podcasts on multiple podcasting platforms. That is a bit of a pain to manage. With EIS I decided to just put it on iTunes and add it to other podcasting directories when requested. If you have another directory you prefer over iTunes or Google Play Music reach out and I'll get it added to that directory.

For those who enjoyed the Crawfish Boxes podcast (an Astros related podcast) I'll be starting a new Astros podcast soon. I've been toying with the idea for a month or two. I think I've figured out the format, the co-host, the recording time and place. I have some ideas for a name (I might do a Twitter poll). It will be much more casual. Name suggestions are welcome.

I expect to start the new podcast right around the playoffs.

This blog post first appeared on Exploring Information Security.

Exploring Information Security podcast launches

August 9, 2015

A year ago I started a small podcast project called, Exploring Information Security. The idea of the podcast is to explore different topics, ideas, and disciplines within information security. I started the podcast at a horrible time and was thus unable to keep the project going. I've since found myself with more time to pick this neat little podcast idea back up.

iTunes feed: https://itunes.apple.com/us/podcast/eis-podcast-timothy-de-block/id1026428940

Some iTunes ratings would be fantastic and any topic suggestions. I've got a running list of topics I want to cover and guests to interview for those topics, but I'll always take more suggestions. For now, new episodes will release every Monday, starting tomorrow August 10, 2015. I have four podcasts scheduled for the rest of August, with four more ready to be edited.

This post first appeared on Exploring Information Security.

The return of the Exploring Information Security podcast

July 20, 2015

A year ago, I started an information security podcast that explores different topics and disciplines within the field. I stopped producing the podcast because I had too many things going on at the time and my final year of school was about to start. I was overwhelmed and that was an easy project to stop doing. A year later and I've found myself with more time and a desire to continue the project I started a year ago.

This week I have two interviews lined up with more expected in the coming weeks. My plan is to launch in early August. I will be putting the first three episodes I did last year up on iTunes and then begin releasing the episodes weekly. All seven episodes I did last year can be found at http://www.timothydeblock.com/eis/. I will continue to release episodes there, as well as on your favorite podcast directory.

This post first appeared on Exploring Information Security.

Need Exploring Information Security Podcast Feedback

September 17, 2014

I'm at a bit of a crossroads with the Exploring Information Security podcast. I am trying to decide if it's a project I want to continue doing. I currently have seven episodes on the books and I have ideas for other episodes, but something just doesn't feel right with the episodes.

I'm not sure what it is about the podcast, but I am struggling with getting excited about the podcast. I absolutely love all the interviews I've done and even the preparation I put into each episode leading up to the recording, but after that interview it feels more like a chore to produce the episode. I also feel like I'm not asking the right questions to really dig into a topic. I've thought about tweaking it, but I'm not really sure what to tweak. I haven't put the podcast on iTunes yet because of that reason. I don't want to put something up for a handful of episodes and then have it die off.

So what I am looking for with this post is to garner some feedback of the podcast: Do you like it? do you hate it? Would it be better with some tweaks? or any other nice/awful thing you can say about it. I want to hear it. If you have no idea what I'm talking about click the link below:

Exploring Information Security Podcast

Listen to a few episodes and let me know what you think. You can leave feedback in the comment section below, contact me on Twitter (@TimothyDeBlock) or contact me via email (timothy.deblock[at]gmail[dot]com).

This post first appeared on Exploring Information Security.

Exploring Information Security: How to ZAP your websites

September 11, 2014

In the seventh edition of the Exploring Information Security (EIS) podcast, I talk with Zed Attack Proxy (ZAP) creator and project lead Simon Bennetts.

Simon is the project lead for ZAP an OWASP Open Web Application Security Project. He has a developer background and originally built the tool to help developers build better applications. The tool was so good that it caught the eye of the security community and is now used by developers, people just getting into security and veteran pen testers. You can follow him on Twitter @psiinon and find out more on the tool by going to the project site on OWASP.

In this interview we cover:

What is ZAP and how did the project get started?
Who should utilize ZAP?
What skill level is need to start using ZAP?
Where should ZAP be used?
How you can get involved in the project.

Music by Alan Read

Leave feedback and topic suggestions in the comment section below.

This post first appeared on Exploring Information Security.

Exploring Information Security: What is threat modeling?

August 13, 2014

In the fifth edition of the Exploring Information Security (EIS) podcast, I talk with J Wolfgang Goerlich, Vice President of Vio Point, about threat modeling.

Wolfgang has presented at many conference on the topic of threat modeling. He suggests using a much similar method of threat modeling that involves threat paths, instead of other methods such as a threat tree or kill chain. You can find him taking long walks and naps on Twitter (@jwgoerlich) and participating in several MiSec (@MiSec) projects and events.

In this interview Wolfgang covers:

What is threat modeling?
What needs to be done to threat model
Who should perform the threat modeling
Resources that can be used to build an effective threat model
The life cycle of a threat model

Leave feedback and topic suggestions in the comment section below.

This post first appeared on Exploring Information Security.

Exploring Information Security: What is cryptography

July 30, 2014

In the fourth edition of the Exploring Information Security (EIS) podcast, I talk to the smooth sounding Justin Troutman a cryptographer from North Carolina about what cryptography is.

Justin is a security and privacy research currently working on a project titled, "Mackerel: A Progressive School of Cryptographic Thought." You can find him on Twitter (@JustinTroutman) discussing ways in which crypto can be made easier for the masses. Be sure to check out his website for more information.

In the interview Justin talks about

What cryptography is
Why everyone should care about cryptography
What some of it's applications are
How someone would get started in cryptography and what are some of the skills needed

Leave feedback and topic suggestions in the comment section below.

This post first appeared on Exploring Information Security.

Exploring Information Security Podcast: How to get into information security

June 25, 2014

I've been wanting to do a podcast, for a while now, on information security. I wasn't sure what I wanted the objective of the podcast to be. Most of the information security podcasts out there, or at least the ones I listen to, usually do a guest interview and cover some of the latest news and happenings within the information security. I didn't want to spin up, yet, another one of those.

Instead I've decided to spin up a podcast that explores the world of information security. One of the things I've been hearing the infosec community needs are people to teach security to those inside and outside the community. I am still very much in the early stages of my career as an information security professional and trying to learn as much as I can. I thought a podcast that allowed me to share what I've learned and explored would make for a great podcast. So here we are and my first podcast is about how to get into information security.

Jimmy Vo presenting at BSides Asheville - How To Win Friends and Influence Hackers

To explore that topic I decided to do an interview with VioPoint consultant and roundhouse master Jimmy Vo (@JimmyVo). We covered how he got into information security and also talked about some of things people on the outside looking in can do to get into information security.

Feedback is very much appreciated and wanted. Leave them in the comment section or contact me via email.

This post first appeared on Exploring Information Security.