Episode
130: Jason's Pen Test
45:50
Published: Tue Dec 13 2022
Description
Join us as we sit down with Jason Haddix (https://twitter.com/Jhaddix), a renowned penetration tester who has made a name for himself by uncovering vulnerabilities in some of the world’s biggest companies. In this episode, Jason shares his funny and enlightening stories about breaking into buildings and computers, and talks about the time he discovered a major security flaw in a popular mobile banking app. Sponsors Support for this show comes from Linode. Linode supplies you with virtual servers. Visit linode.com/darknet and get a special offer. Support for this show comes from Arctic Wolf. Arctic Wolf is the industry leader in security operations solutions, delivering 24x7 monitoring, assessment, and response through our patented Concierge Security model. They work with your existing tools and become an extension of your existing IT team. Visit arcticwolf.com/darknet to learn more. Learn more about your ad choices. Visit podcastchoices.com/adchoices
Chapters
A former employee shares his story of using his shoe to trick the electronic eye in a company's parking garage to get a better parking spot.
00:00 - 01:43 (01:43)
Summary
A former employee shares his story of using his shoe to trick the electronic eye in a company's parking garage to get a better parking spot.
Episode130: Jason's Pen Test
PodcastDarknet Diaries
The speaker talks about how one can fall into a new hobby or obsession, such as 3D printing, through experimentation and access to resources like printers and templates.
01:43 - 11:36 (09:53)
Summary
The speaker talks about how one can fall into a new hobby or obsession, such as 3D printing, through experimentation and access to resources like printers and templates.
Episode130: Jason's Pen Test
PodcastDarknet Diaries
A hacker tells the story of how he used a blow-up doll to hack a building with an electronic door lock.
11:36 - 17:23 (05:47)
Summary
A hacker tells the story of how he used a blow-up doll to hack a building with an electronic door lock.
Episode130: Jason's Pen Test
PodcastDarknet Diaries
The speaker talks about his experience performing security testing on a mobile banking app for a bank by examining the app to see if he could obtain any customer or sensitive information and testing a new check deposit feature.
17:23 - 21:50 (04:26)
Summary
The speaker talks about his experience performing security testing on a mobile banking app for a bank by examining the app to see if he could obtain any customer or sensitive information and testing a new check deposit feature.
Episode130: Jason's Pen Test
PodcastDarknet Diaries
The use of mobile check deposits allows for convenient banking, but potentially raises security concerns as sensitive information may be stored in open storage buckets on AWS.
21:50 - 26:10 (04:20)
Summary
The use of mobile check deposits allows for convenient banking, but potentially raises security concerns as sensitive information may be stored in open storage buckets on AWS.
Episode130: Jason's Pen Test
PodcastDarknet Diaries
The speaker talks about how they were able to hack into a live cam website and gained access to internal IPs to access transaction and customer data.
26:10 - 33:19 (07:09)
Summary
The speaker talks about how they were able to hack into a live cam website and gained access to internal IPs to access transaction and customer data.
Episode130: Jason's Pen Test
PodcastDarknet Diaries
The weak password policies of a website can be exploited by hackers to gain access to user accounts by resetting their passwords, especially if the website generates short passwords.
33:19 - 44:05 (10:45)
Summary
The weak password policies of a website can be exploited by hackers to gain access to user accounts by resetting their passwords, especially if the website generates short passwords.
Episode130: Jason's Pen Test
PodcastDarknet Diaries
The speaker reflects on how penetration testing and security testing have become some of the coolest jobs nowadays amidst all of the protection and opportunities available in the area of cyber security.
44:05 - 45:55 (01:50)
Summary
The speaker reflects on how penetration testing and security testing have become some of the coolest jobs nowadays amidst all of the protection and opportunities available in the area of cyber security.