I presented at DEFCON’s Red Team Village on August 8th, and the topic was the automation of common Recon and Security activities. More specifically, it was about how to do those things with common tools like Linux, Bash, Cron, Email, and Slack.
The central concepts in the talk are the following:
- Turn security tasks into small, granular questions that have answers
- Each answer should be a simple output that can become the input for another process
- Chain these questions and answers together into workflows
- Schedule them with cron
- Alert using Amazon SES
- Iterate as you learn new techniques.