I presented at DEFCON’s Red Team Village on August 8th, and the topic was the automation of common Recon and Security activities. More specifically, it was about how to do those things with common tools like Linux, Bash, Cron, Email, and Slack.
My friend Clint Gibler of TL;DR Sec fame graciously created one of his brilliant summaries of the talk, which you can find here.
The central concepts in the talk are the following:
- Turn security tasks into small, granular questions that have answers
- Each answer should be a simple output that can become the input for another process
- Chain these questions and answers together into workflows
- Schedule them with cron
- Alert using Amazon SES
- Iterate as you learn new techniques.