Mayhem Blog

Capture the Flag is a game, a community, and a really cool hacker culture. But will we one day stream CTFs like we do World of Warcraft or League of Legends? Whether it’s designing, or just playing, John Hammond knows a lot about the gamification of infosec through CTFs.

After breaches like SolarWinds, companies pledge to improve their digital hygiene. What if they don’t? And what parallels might infosec learn from COVID-19? In this episode, Mike Ahmadi draws on his years of experience in infosec and his years hacking medical devices.

For three years OpenWRT had a severe validation problem with its download package manager, until a fuzz tester found and reported the vulnerability. In this episode, Guido Vranken talks about his approach to hacking, about the differences between memory safe and unsafe languages, and more.

For two years Heartbleed was a zero-day in OpenSSL until fuzz testing exposed it. How many others are in the wild now? And how will we find the next one? In this episode I talk about how Heartbleed (CVE 2014-0160) was found and also interview Rauli Kaksonen.

You’ve probably heard of bug bounties. But did you know there’s an elite group of bug bounty hunters that travel the world? Meet Stok; he’s one of them. In this episode, Stok talks about his beginnings in enterprise security and his transition into the top tier of bug bounty hunters.

While digital voting systems today are more secure today, what about the larger ecosystem, starting from the moment you register until your vote is counted? Who’s keeping those systems secure? In this episode of The Hacker Mind, Dr. Jared DeMott of VDA Labs talks about his work securing voter registration.

No matter how strong we build our browsers that does not prevent hackers from trying to break new things. In this episode, a security researcher explains how he successfully escaped the Chrome sandbox, and how bug bounties are perhaps a good thing resulting in better security for us all.

If you think hacking only involves the use of a keyboard, then you’re probably missing out. What about using light? What about sound? The Hacker Mind talks with University of Michigan's Dr. Kevin Fu.

This The Hacker Mind podcast defines red teams, blue teams, even purple teams, and discusses how hiring professional hackers is now a business necessity.