Testing at the Speed of Attackers

Episode Details:

In this episode of the Hack Responsibly podcast, NetSPI VP of Research Karl Fosaaen talks with James Albany, Senior Director of Network Penetration Testing. They discuss why continuous testing is augmenting point-in-time assessments and how AI is compressing timeline in offensive security.

What You’ll Hack Away With

What newcomers get wrong about AI
Why attackers aren’t using new tricks (just more of them, faster)
The underrepresented attack surfaces defenders keep overlooking
Breaking into a data center with a credit card and a fire escape map

About the Speakers

Host: Karl Fosaaen | VP, Research

As a VP of Research, Karl is part of a team developing new services and product offerings at NetSPI. Karl previously oversaw the Cloud Penetration Testing service lines at NetSPI and is one of the founding members of NetSPI’s Portland, OR team. Karl has a Bachelors of Computer Science from the University of Minnesota and has been in the security consulting industry for over 15 years. Karl spends most of his research time focusing on Azure security and contributing to the NetSPI blog. As part of this research, Karl created the MicroBurst toolkit (https://github.com/NetSPI/Microburst) to house many of the PowerShell tools that he uses for testing Azure. In 2021, Karl co-authored the book “Penetration Testing Azure for Ethical Hackers” with David Okeyode.

Guest: James Albany | Senior Director of Network Penetration Testing
As Senior Director of Infrastructure Pentesting, James Albany is responsible for driving continuous testing service offerings, overseeing the growth and operations of infrastructure services, and contributing to the development of automation capabilities for the NetSPI team.

In his 11-year career in cybersecurity, James has experience in security operations as well as leading multiple offensive security teams at NetSPI and his former organization.

James has contributed to the security community through workshops at DEFCON on Active Directory attack and defense and has led sessions at BlackHat Arsenal and Defcon Demo Labs.

Empower your strategic decisions with these additional resources:

Service Overview: Network Penetration Testing
Technical Insights: Hack Responsibly Blog
Tools: NetSPI Open Source Tools

What You’ll Hack Away With

What newcomers get wrong about AI
Why attackers aren’t using new tricks (just more of them, faster)
The underrepresented attack surfaces defenders keep overlooking
Breaking into a data center with a credit card and a fire escape map

About the Speakers

Host: Karl Fosaaen | VP Research

As a VP of Research, Karl is part of a team developing new services and product offerings at NetSPI. Karl previously oversaw our Cloud Pentesting Service Lines and is a founding members of our Portland, OR team. Karl has a Bachelors of Computer Science from the University of Minnesota and has been in the security consulting industry for over 15 years.

Karl spends most of his research time focusing on Azure security research, including the MicroBurst toolkit to house many of the PowerShell tools that he has built. In 2021, Karl co-authored the book “Penetration Testing Azure for Ethical Hackers” with David Okeyode.

Guest: James Albany | Sr. Director of Infrastructure Services

As Senior Director of Infrastructure Services, James Albany is responsible for driving continuous testing service offerings, overseeing the growth and operations of infrastructure services, and contributing to the development of automation capabilities for the NetSPI team.

In his 11-year career in cybersecurity, James has experience in security operations as well as leading multiple offensive security teams at NetSPI and his former organization.

James has contributed to the security community through workshops at DEFCON on Active Directory attack and defense and has led sessions at BlackHat Arsenal and Defcon Demo Labs.