Media

Lectures

I’m going to work on getting some of my more up-to-date materials (and perhaps audio/video) on here.

Podcasts

Recently I’ve been invited as a guest on some security podcasts. I’ve really enjoyed it, so it’s something I’m willing to do again.

• PaulDotCom Security Weekly Episode 104 – mp3 | show notes – I really enjoy listening to PSW, so it was a lot of fun to be able to participate in this episode. I covered msramdmp in a technical segment, and stayed on past the break to comment on the various security news stories that were covered.
• Securabyte Episode 1 – mp3 | show notes – The Securabyte episodes of the Securabit podcast are spur-of-the-moment podcasts they put on when there’s breaking news to cover. I was invited by mubix to join in on the first one, to cover the details of Kaminsky’s DNS flaw the day the details were publicly leaked.

Quotations

• Computerworld – IT Risks Rise on USB Drives
• CSO Online – Threat Watch – Cold Boot: Should New Attack on Encrypted Disks Change the Way Lawmakers Approach Disclosure Legislation “Safe Harbors”?
• SC Magazine – Home-grown scanner mimics Princeton’s “cold-boot” tool
  • I felt that SC Magazine took several things from the interview out of context, and did a less-than stellar job of the research. I posted a comment to that article clarifying some of these issues, and they had the nerve to delete the comment. Twice. I have posted that comment here.
• Facebook’s (futile) malware exorcism – can social networks fight back?
  • This was easily my favorite interview for an article. I had a great time talking about the various issues involved, and the resulting piece is very well written.

Misc

I’m not in this one, but a creation of mine, msramdmp, is. Tom Liston and Sherri Davidoff of Intelguardians demonstrate the use of msramdmp with their own memory analysis tool, Daisy Dukes: