Episode Summary

Adrian is the nerd brought in to talk to other nerds. He did not have a direct path to Security, but every role he had in his career helped him in his next role and in security. He shares some hilarious stories as well as

Episode Notes

Adrian is a Sr Sales Engineer with Splunk who focuses on security. He has worked for various security startups in the bay area for the past 15 years from vulnerability management, to endpoint investigation, to ML based threat hunting.

Notes:

  • Had an interest in security early on, starting with opening binaries on Sierra's King's Quest games and looking for hints.

  • Took any opportunity he got to get exposed to security

  • His job as an instructor was very useful during support and later as a sales engineer

  • Keeps a Trello board for his lab!!

  • Adrian expenses (deducts) what he spends on his lab from his taxes. (Consult a tax attorney)

  • He mentions an awesome hack for installing Kali on a chromebook (~22 mins)

Quotes:

  • "I remember the first time I found Phrack, my mind exploded a little bit."

  • "Experience is experience, everything that you use [skills] will get used later on."

  • "...figure out what pieces their missing, so you can fill them in."

  • "Go through the CIS top 20 critical controls"

  • "Be less focused on the whizbang fun stuff, and more focused to get you the most return."

Links:

Please thank my guests for sharing their time with us and let them know if this episode helped you.

Adrian Kaylor on Twitter: https://twitter.com/AdrianKaylor

Adrian Kaylor on LinkedIN: https://www.linkedin.com/in/adriankaylor/

Phrack Magazine: http://www.phrack.org/

Lack Rack: https://www.google.com/search?q=ikea+lack+rack&source=lnms

ISS: https://www-03.ibm.com/press/us/en/pressrelease/20468.wss

Splunk Dev License: http://dev.splunk.com/

CIS 20 Controls: https://en.wikipedia.org/wiki/The_CIS_Critical_Security_Controls_for_Effective_Cyber_Defense

JA3: https://github.com/salesforce/ja3

Irongeek: http://www.irongeek.com/

Netsec Reddit: https://reddit.com/r/netsec

SANS Holiday Hack Challenge: https://www.holidayhackchallenge.com/2018/

Garage Door Hack by Samy Kamkar: http://samy.pl/opensesame/

Sam Bowne's Class: https://samsclass.info

Adrian's Presentation on YouTube: https://www.youtube.com/watch?v=8LF96Oq_pgo (Picture of lab at 24:05)

Intro Music by Trash80:

Outro Music (Liberation Theology - Exploitation is Sin): https://open.spotify.com/album/0oc93ZsbMluxL8H994U9MW

Learning Resource Mentioned:

https://www.youtube.com/watch?v=6MYF6Zo6i6A based on:

https://www.coursera.org/learn/it-security

Getting Into Infosec:

Twitter: https://twitter.com/coffeewithayman

YouTube: https://www.youtube.com/channel/UCg6gV_gdfc188HZdN8LUx4A

Book: https://www.amazon.com/Breaking-Step-Step-Starting-Information-ebook/dp/B07N15GTPC/

About the Show

Entertaining stories of how others got into Information Security (aka cybsersecurity), their experiences, lessons learned, and advice about getting in.

JOIN MY NEWSLETTER FOR ADVICE, TIPS, AND UPDATES!!

Listen for an "Easter Egg" in each show!

If you're looking to break into infosec, I wrote a little guide! Check it out:

“I purchased the kindle book last night and just finished it. It was a great “mini-mentoring” session, and I felt encouraged to persevere. I plan to listen to the podcasts regularly. As a woman getting into InfoSec, I feel as though I have been alone my entire life, learning and self-teaching with no real guidance or mentorship.”

If you benefited from an episode, please take a moment to thank our guests for taking the time and sharing their story.