Build your own pentesting tools and master red teaming tactics | Ed Williams

Cyber Work
02/06/2025 34 min
Build your own pentesting tools and master red teaming tactics | Ed Williams

Listen "Build your own pentesting tools and master red teaming tactics | Ed Williams"

Descargar episodio Ver en sitio original

Episode Synopsis

Get your FREE Cybersecurity Salary Guide: https://www.infosecinstitute.com/form/cybersecurity-salary-guide-podcast/?utm_source=youtube&utm_medium=podcast&utm_campaign=podcastEd Williams, Vice President of EMEA Consulting and Professional Services (CPS) at TrustWave, shares his two decades of pentesting and red teaming experience with Cyber Work listeners. From building his first programs on a BBC Micro (an early PC underwritten by the BBC network in England to promote computer literacy) to co-authoring award-winning red team security tools, Ed discusses his favorite red team social engineering trick (hint: it involves fire extinguishers!), and the ways that pentesting and red team methodologies have (and have not) changed in 20 years. As a bonus, Ed explains how he created a red team tool that gained accolades from the community in 2013, and how building your own tools can help you create your personal calling card in the Cybersecurity industry! Whether you're breaking into cybersecurity or looking to level up your pentesting skills, Ed's practical advice and red team “war stories,” as well as his philosophy of continuous learning that he calls “Stacking Days,” bring practical and powerful techniques to your study of Cybersecurity.0:00 - Intro to today's episode2:17 - Meet Ed Williams and his BBC Micro origins5:16 - Evolution of pentesting since 200812:50 - Creating the RedSnarf tool in 201317:18 - Advice for aspiring pentesters in 202519:59 - Building community and finding collaborators 22:28 - Red teaming vs pentesting strategies24:19 - Red teaming, social engineering, and fire extinguishers27:07 - Early career obsession and focus29:41 - Essential skills: Python and command-line mastery31:30 - Best career advice: "Stacking Days"32:12 - About TrustWave and connecting with EdAbout InfosecInfosec's mission is to put people at the center of cybersecurity. We help IT and security professionals advance their careers with skills development and certifications while empowering all employees with security awareness and phishing training to stay cyber-safe at work and home. More than 70% of the Fortune 500 have relied on Infosec to develop their security talent, and more than 5 million learners worldwide are more cyber-resilient from Infosec IQ's security awareness training. Learn more at infosecinstitute.com.

More episodes of the podcast Cyber Work

From stealing servers to saving lives: Working in red teaming | Jim Broome 18/08/2025
Why Hackers Are Stealing Encrypted Data Now To Decrypt Later | David Close 11/08/2025
Working in ransomware response, investigation and recovery | John Price 28/07/2025
From security audits to privacy consulting: Building a GRC practice | Will Sweeney 21/07/2025
From "dead-end job" to CEO: Building an IT consulting business | John Hansman 14/07/2025
From FBI Cyber Agent to Police Tech Innovator | Andre McGregor 16/06/2025
The Future is Cloud: Master Azure Certs for Cybersecurity Success | Guest Wilfredo Lanz 12/05/2025
Cloud career roadmap: Azure Administrator vs Security Engineer certs | Guest Wilfredo Lanz 05/05/2025
When AI Goes Rogue: API Security in the Age of AI Agents | Guest Sam Chehab 21/04/2025
Why Medical Device Security Needs Transparency: The SBOM Revolution | Guest Ken Zalevsky 14/04/2025
© 2003-2025 ZARZA | AHEAD OF OUR TIME
privacy policy
In God we trust In God we trust
PreSales Questions? Click Here
or call our toll-free line at +1-888-5002068 Miami, Florida, USA