Episode Details
Back to EpisodesCapture the Flag for Fun & Profit
Description
Cybersecurity is the only technical, professional occupation I know of where practitioners routinely sharpen their skills through open competitions. The contests are based on the classic capture the flag game – except the flags are all virtual and capturing them involves hacking computers. Also unlike most other technical careers, cybersecurity is a high-paying profession that doesn’t require a university degree or formal training. There are literally hundreds of thousands of unfilled cybersecurity jobs right now. You can also just dabble in cybersecurity, making money from bug bounty programs. Or you can just hack for the fun of it – in a completely safe and legal environment. Jordan will tell you all about it in today’s show!
Jordan Wiens has been a reverse engineer, vulnerability researcher, network security engineer, three-time DEF CON CTF winner, even a technical magazine writer but now he’s mostly a has-been CTF player who loves to talk about them. He has been the CTF expert for the first three years of HackASat and he was one of the founders of Vector 35, the company that makes Binary Ninja.
Interview Links
- Hack-A-Sat 3: https://hackasat.com/
- Satellite hacked using $25 hardware: https://threatpost.com/starlink-hack/180389/
- Decommissioned satellite hacked to broadcast movie: https://www.independent.co.uk/tech/hack-satellite-hijack-def-con-b2147595.html
- Student Rick-Rolls school: https://www.malwarebytes.com/blog/news/2021/10/high-school-student-rickrolls-entire-school-district-and-gets-praised
- Hack-A-Sat 2 interview: https://podcast.firewallsdontstopdragons.com/2021/06/21/hacking-satellites-for-fun-profit/
- Plaid CTF: https://plaidctf.com/
- CTFTime.org: https://ctftime.org/
- Pwnable.kr: https://pwnable.kr/
- Pwnable.tw: https://pwnable.tw/
- Reversing.kr: http://reversing.kr/
- Shodan: https://www.shodan.io/
- Burp Suite: https://portswigger.net/burp
- Wireshark: https://www.wireshark.org/
- Binary Ninja: https://binary.ninja/
- Metasploit: https://www.metasploit.com/
- Nmap: https://nmap.org/
- Live Overflow: https://liveoverflow.com/
- TryHackMe: https://tryhackme.com/
Further Info
- Subscribe to the newsletter: https://firewallsdontstopdragons.com/newsletter/new-newsletter/
- Check out my book, Firewalls Don’t Stop Dragons: https://www.amazon.com/gp/product/1484261887
- Support my work! https://firewallsdontstopdragons.com/support/
- Would you like me to speak to your group about security and/or privacy? https://fdsd.me/speakerrequest
- Gener