From Black Hat to Bug Bounties [Pt. 2] with Thomas DeVoss
Hacker Valley Studio8 Syys 2022

From Black Hat to Bug Bounties [Pt. 2] with Thomas DeVoss

We’re joined again by the hacker’s hacker, Tommy DeVoss, aka dawgyg. Bug bounty hunter and reformed black hat, Tommy dives back into a great conversation with us about his journey in hacking and his advice to future red team offensive hackers. We cover everything we couldn’t get to from part 1 of our interview, including his struggles with burnout, his past hacking foreign countries on a bold quest to stop terrorism, and his future in Twitch streaming to teach you how to be a better bug bounty hunter.

Timecoded Guide:

[02:57] Fixating on hacking because of the endless possibilities and iterations to learn

[09:54] Giving advice to the next generation of hackers

[17:17] Contacting Tommy and keeping up with him on Twitter

[21:43] Planning a Twitch course to teach hackers about bug bounties using real bugs and real-world examples

[24:57] Hacking in the early 2000s and understanding the freedom Tommy has to talk about any and all illegal hacking he’s done now that he’s gone to prison

Sponsor Links:

Thank you to our sponsors Axonius and PlexTrac for bringing this season of HVR to life!

Life is complex. But it’s not about avoiding challenges or fearing failure. Just ask Simone Biles — the greatest gymnast of all time. Want to learn more about how Simone controls complexity? Watch her video at axonius.com/simone

PlexTrac is pleased to offer an exclusivecRed Team Content Bundle for Hacker Valley listeners. This bundle contains both our "Writing a Killer Penetration Test Report" and "Effective Purple Teaming" white papers in ONE awesome package. Head to PlexTrac.com/HackerValley to learn more about the platform and get your copy today!

Do you ever struggle with burnout when it comes to hacking?

Hacking has maintained Tommy’s interest longer than anything else because of the constant changes in technology and the ever-evolving issues in the online world. However, just because hacking is his passion, doesn’t mean that burnout or frustration never happens. Currently, Tommy is taking more of a break with hacking, letting his current day job and his passion for gaming have a front seat. However, he’s still firmly in the industry, passionately developing learning opportunities for future hackers and answering questions from cyber professionals of all backgrounds.

“I do get burned out sometimes…When it comes to bug bounty hunting, I try and make it so it averages out to where I make at least $1,000 an hour for my effort. It doesn't always work. Sometimes I'm more, sometimes I'm less, but I try and get it so it averages out to about that.”

What hacking advice would you give the younger version of yourself?

Although his black hat ways resulted in prison time for Tommy, he doesn’t regret his past and instead seeks to teach others the lessons he’s learned. When we asked Tommy for advice for new hackers, he was clear that success is a longer journey than people assume it is. Tommy’s success was not a fluke, it took years of hands-on learning and patience with failures in order to develop his bug bounty skills. Nothing is actually automatic or easy with hacking, especially as the technology continues to change and evolve. Tommy wants hackers to take every opportunity to try out their skills, even if it's a complete failure.

“Don't expect success overnight. Also, don't let failure discourage you. When it comes to hacking, you're going to fail significantly more than you're going to succeed. And the people that are successful in bug bounties are the ones that don't let those failures discourage them.”

What do you think about the “media obsessed” stereotype many people have about black hat hackers?

Wrapping up today, Tommy tells us that he’d be happy to be back in the Hacker Valley Studio again some time. Although the stereotype of a black hat hacker wanting attention from the media is disproven, Tommy believes that he definitely has craved that media attention for a large majority of his hacking career. Starting in the early 2000s, after 9/11, Tommy had one of his first brushes with fame in an interview with CNN about hacking Middle Eastern companies. Although his hacking and his politics have changed since then, Tommy enjoys having in-depth conversations about hacking and explaining the intricacies of what he does.

“We loved the attention back then, and I still love the attention now, it's nice. The good thing about now is, because I already got in trouble for everything that I've done, I've done my prison time, I don't have anything that I did illegally on the computer anymore that I can't talk about, because I've already paid my debt to society.”

What are the best ways for people to keep up with what you’re doing?

Considering Tommy’s success, it’s understandable that a lot of cyber professionals and amateurs have tons of questions for him. When it comes to getting in contact with Tommy, he recommends tweeting him on Twitter publicly so that he can not only answer your question, but help others with the exact same questions. Education is key, and Tommy is so dedicated to teaching other hackers that he’s currently developing a recurring Twitch stream centered around helping others learn about bug bounty hunting.

“I don't know how successful we're going to be in finding the bugs, but I think it'll be fun to teach people [on Twitch] and do it that way, so that they can actually spend some time learning it. The best way to actually learn this stuff is to actually try and do the hacking.”

-----------

Links:

Stay in touch with Thomas DeVoss on LinkedIn and Twitter.

Check out the Bug Bounty Hunter website.

Keep up with Hacker Valley on our website, LinkedIn, Instagram, and Twitter.

Follow Ron Eddings on Twitter and LinkedIn

Catch up with Chris Cochran on Twitter and LinkedIn

Purchase a HVS t-shirt at our shop

Continue the conversation by joining our Discord

Jaksot(408)

We Are Here Part 2: A Tech Titans Roundtable

We Are Here Part 2: A Tech Titans Roundtable

In this whopper of an episode, Chris and Ron join the panel again to discuss diversity, equity and inclusion. The panel includes Marianne Budnik, CMO at CrowdStrike, Shawn Henry, CSO at CrowdStrike, powerhouse educator and influencer Olivia Herriford, and MK Palmore, Director with the CISO division at Google. Stay tuned for a masterclass in DE&I, how they differ and how we can keep pushing the ball forward.    Key Takeaways: 01:53 Bio- Marianne Budnik 02:34 Bio- MK Palmore 03:36 Bio- Olivia Herriford 04:53 Bio- Shawn Henry 06:20 The panel discusses their first interest in diversity 21:36 Equity & Inclusion- how is it different, and what are some ways to incorporate them? 32:25 Finding influence from all types of people 37:12 Planning for DE&I 41:23 Advice to the people who strive to make a difference 59:20 Get in touch   Links: Hacker Valley Studio: Swag | LinkedIn | Twitter | Instagram | Email Ron & Chris | Website  Marianne Budnik: Website | LinkedIn Shawn Henry: Website | LinkedIn Olivia Herriford: Website | LinkedIn MK Palmore:  Twitter | LinkedIn Support Hacker Valley Studio on Patreon Join our monthly mastermind group via Patreon We Are Here is proudly presented by CrowdStrike. Join the Crowdstrike team here.

9 Marras 202153min

We Are Here Season 2 Premiere with Minda Harts

We Are Here Season 2 Premiere with Minda Harts

Minda Harts is an Adjunct Assistant Professor of Public Service of NYU’s Robert F. Wagner Graduate School of Public Service and the founder of The Memo LLC, a career development company for women of color. On top of her impressive work resume, she is the award-winning and best-selling author of The Memo: What Women of Color Need To Know To Secure A Seat At The Table. Join Ron, Chris and Minda as they navigate through some of the toughest issues troubling our workplaces today.   Key Takeaways:   01:58 Bio 03:08 The last straw 05:53 Minda’s journey in writing & reflecting 07:50 Staying humble and making a real difference 10:25 Workplace trauma- What is it? 14:32 Advice for businesses opening back up 17:26 Being authentic at work 19:40 The new book – Right Within 25:46 Reminding people they have a voice 28:24 Get in touch with Minda   Links:   Hacker Valley Studio: Swag | LinkedIn | Twitter | Instagram | Email Ron & Chris | Website  Minda Harts: Website | LinkedIn | Twitter Buy her new book Right Within here! Support Hacker Valley Studio on Patreon Join our monthly mastermind group via Patreon We Are Here is proudly presented by CrowdStrike. Join the CrowdStrike team here.

8 Marras 202128min

Hacker Valley Red is Back! Episode 1 Sample

Hacker Valley Red is Back! Episode 1 Sample

Follow the new channel here: https://hackervalley.com/show/hacker-valley-red/   Christopher Hadnagy is the founder and CEO of Social-Engineer, LLC. He created the world’s first social engineering framework, as well as hosted the first social engineering-based podcast. Chris is an adjunct professor of Social Engineering for an NSA Cyber School of excellence at University of Arizona. Chris is also a well-known author, having written five books on social engineering. Chris’ new book, “Human Hacking: Win Friends, Influence People and Leave Them Better Off for Having Met You”, released January 5, 2021. Join both Chris’ and Ron for an episode of self-analyzation, empathy and understanding.   Key Takeaways 02:52 Bio 06:20 Exploring the title of Chris’ book 08:40 What’s the difference between manipulation and influence? 10:36 A contract in a book. Why? 14:33 What books describe Chris?  21:48 The importance of Empathy 26:48 The science  30:57 Chris’ conference: The Human Behavior Conference     Links: Hacker Valley Studio: Swag | LinkedIn | Twitter | Instagram | Email Ron & Chris | Website  Chris Hadnagy: Twitter | LinkedIn | Facebook | Book | Conference Support Hacker Valley Studio on Patreon Join our monthly mastermind group via Patreon This episode is sponsored by Axonius Hype Cycle

4 Marras 202139min

Episode 181 - The Calling of Cyber with Jerich Beason

Episode 181 - The Calling of Cyber with Jerich Beason

Jerich Beason, SVP & CISO at Epiq, joins Chris and Ron to talk passion, purpose and how that plays a part in cyber. Jerich sits on panels, speaks at conferences and events & contributes to white papers and security articles. He also serves as a Board advisor to security startups. Jerich is currently the host of Epiq’s podcast, Cyberside Chats which has the mission of increasing knowledge and awareness of cybersecurity within the legal industry.   Key Takeaways:   02:50 Bio 03:48 Choosing an education in cyber 05:00 Origin story – why cyber? 09:58 Jerich touches on why some cyber veterans are discouraging newcomers 12:26 Inspiring the future generation 15:20 Talking passion & calling 17:17 A day in the life of Jerich 20:10 Avoiding burnout & fulfilling purpose 23:15 Zero-Trust 26:34 The future in security program building     Links: Hacker Valley Studio: Swag | LinkedIn | Twitter | Instagram | Email Ron & Chris | Website  Jerich Beason: LinkedIn | Podcast | Twitter Support Hacker Valley Studio on Patreon Join our monthly mastermind group via Patreon This Episode is sponsored by CrowdStrike. Find a home with CrowdStrike here.

2 Marras 202131min

The Pod Pack feat. Allan Alford, Dave Bittner, Graham Cluley and Jack Rhysider

The Pod Pack feat. Allan Alford, Dave Bittner, Graham Cluley and Jack Rhysider

This week, we’re switching it up. We’ve invited a few friends and collogues to the studio to talk business. On the mics with Chris and Ron we have Dave Bittner from The CyberWire, Graham Cluley from Smashing Security, Jack Rhysider from Darknet Diaries, and our brother-in-arms, Allan Alford from The Cyber Ranch podcast. Want to see behind the scenes? This episode has you covered. Do you want to start a podcast? This is a master class. Get answers to questions that haunt all aspiring podcasters: What is good content and how do you keep coming up with it? What drives podcasters and why do they fail? Hear from seasoned veterans in this round table of podcasting wizardry. In addition to this content, Hacker Valley has opted to donate cash to the non-profit of the guests’ choice. Please follow the links below to support these charities. Key Takeaways: 03:12 Dave – Intro and podcasting history 04:54 Graham – Intro & podcasting history 07:08 Jack – Intro & podcasting history 09:31 Common misconceptions about podcasting 14:96 The most and least favorite part of podcasting 20:44 What does the word ‘podcast’ actually mean? 22:05 Horror stories and lessons learned 31:50 Allan Alford joins the show – Intro & podcasting history 32:50 What inspires you to podcast? What influences you? 37:19 Why being authentic is the only way 44:10 Questions from podcasters to podcasters 50:57 Realistic expectations & the drive 52:12 Stay in touch, and donate to charity! Hacker Valley Studio: Swag | LinkedIn | Twitter | Instagram | Email Ron & Chris | Website Dave Bittner: LinkedIn | Twitter | The Cyberwire | Donate to The Rotary Foundation Graham Cluley: Website | LinkedIn | Twitter | Smashing Security | Donate to Mencap Jack Rhysider: Twitter | LinkedIn | Darknet Diaries | Donate to EFF Allan Alford: LinkedIn | Twitter | Cyber Ranch | Donate to Black Girls Code Huge thank you to our friends and sponsors Axonius and Uptycs. Support Hacker Valley Studio on Patreon Join our monthly mastermind group via Patreon

27 Loka 202156min

Episode 179 - Management VS Leadership in Cyber Major General (Retired) Brett T. Williams

Episode 179 - Management VS Leadership in Cyber Major General (Retired) Brett T. Williams

Major General (Retired) Brett T. Williams is a co-founder of IronNet Cybersecurity. IronNet delivers the power of collective cybersecurity to defend companies, sectors and Nations. He served nearly 33 years in the U.S. Air Force and his last assignment was Director of Operations, U.S. Cyber Command. General Williams is a highly experienced fighter pilot with more than 100 combat missions in the F-15C. Join Chris, Ron and Brett for a jam-packed episode of leadership and purpose.   Key Takeaways: 03:05 Bio 05:48 Brett’s military origin story 07:33 Transitioning from fighter pilot to cybersecurity practitioner. 14:55 Understanding strengths through experience 20:10 Advancement through leadership 22:23 Being a leader - mission vision & resources  25:44 What keeps driving you to be better? 31:20 Advice for aspiring and active leaders 35:14 Get in touch with Brett   Links: Hacker Valley Studio: Swag | LinkedIn | Twitter | Instagram | Email Ron & Chris | Website Brett Williams: LinkedIn | Website Support Hacker Valley Studio on Patreon Join our monthly mastermind group via Patreon This episode is sponsored by Living Security

26 Loka 202136min

Metaversable: Exploring the metaverse thru NFTs, NFT Art, and Cryptocurrency

Metaversable: Exploring the metaverse thru NFTs, NFT Art, and Cryptocurrency

We have a new show! In episode one, Ron and Chris explore NFTs and digital art with Jason also known as 0xBanana. 1:18: What is the Metaverse? 2:04: Tumbling down the Metaverse “rabbit hole.” 3:00: What are Non-fungible Tokens (NFTs) all about? 5:55: Is this just a fad? What’s the future of NFTs? 7:44: What future technologies/art are on the horizon? 9:30: What makes NFTs so exclusive/valuable? 11:34: How do art royalties work? 12:16: How do you verify authenticity for art, media, etc? 14:20: What is Solana and how does it relate to NFTs? 15:31: What is the NFT and Solana community like?  16:55: How can we break into the Solana space? 18:33: What is the significance of a “drop?” 20:19: Flipping art  21:52: NFT art drop best practices  24:25: How does one become an artist in the space?  26:01: Life changing realization Follow this show on your favorite platform here: https://hackervalley.com/show/metaversable/

22 Loka 202128min

Episode 177 - Winning in a Human-Centric Cyber Market with Nathan Burke

Episode 177 - Winning in a Human-Centric Cyber Market with Nathan Burke

Welcome to this live episode of Hacker Valley Studio! Nathan Burke, CMO at Axonius, is a general in the fight to humanize cybersecurity through practical, engaging content and solid foundations. Join Ron, Chris and Nathan as they sit together for a masterclass in startups and technological advancements. In addition to an episode full of golden nuggets, learn how Chris and Ron became a part of Axonius and why they all make a great team.    Key Takeaways: 2:49 Bio 9:48 Unexpected victories 15:07 Successful tendencies for a successful startup 19:04 Axonius + HVS – Why?  25:41 Keeping the momentum in technological advancement 30:21 Bleeding orange: A tattoo. A bet. 32:45 Advice for a budding marketing professional   Hacker Valley Studio: Swag | LinkedIn | Twitter | Instagram | Email Ron & Chris | Website Nathan Burke: LinkedIn | Blog | Twitter Support Hacker Valley Studio on Patreon Join our monthly mastermind group via Patreon This episode is sponsored by Axonius Hype Cycle

21 Loka 202135min

Suosittua kategoriassa Koulutus

rss-murhan-anatomia
voi-hyvin-meditaatiot-2
psykopodiaa-podcast
psykologia
adhd-podi
rss-duodecim-lehti
rss-valo-minussa-2
rss-niinku-asia-on
rss-vapaudu-voimaasi
kesken
jari-sarasvuo-podcast
rss-ai-mita-siskopodcast
aamukahvilla
rss-luonnollinen-synnytys-podcast
rss-narsisti
rahapuhetta
rss-koira-haudattuna
rss-arkea-ja-aurinkoa-podcast-espanjasta
rss-rouva-keto
ensihoidon-ja-pelastustyoncast