Webinar: Preparing Linux Hosts for Unexpected Threats
February 23, 2021
Webinar: Preparing Linux Hosts for Unexpected Threats Thursday, Mar 18, 2021 | 12:00 PM ET Register Now Overview: Linux has been hugely successful in the enterprise over the past few decades, partially due to the flexibility and extensibility of the operating system. This has lead to upsides and downsides. One upside: powerful instrumentation that can […]
Targeting, Exploiting, & Defending Linux
February 23, 2021
As Linux workloads continue to rise, attacks on Linux continue to increase. During this podcast our Chief Scientist and Co-Founder, Brandon Edwards teams up with Security Weekly to answer: Why is targeting it different on Linux? What types of attacks are used? How can we defend against attacks on Linux? In addition to answering these […]
Linux Tracing – Do You Know What Your Servers Are Actually Doing?
February 3, 2021
There’s a whole world of system tracing, instrumentation, and profiling built into nearly every Linux system that goes untouched by most. While originally developed to help with debugging and performance tuning, the same tools can be used to provide security insights that are difficult or almost impossible to get any other way. This talk will […]
Building Operational Security in the Cloud: The Case for Partnership Between Infosec and Cloud Engineers
January 26, 2021
Following our successful webcast with 451 Research, Divided We Fail: How Security Teams Can Better Engage with DevOps, Fernando Montenegro answers questions in the video below, furthering the case for partnerships between Infosec and Cloud Engineers.
Coffee and Capsule8: Tales from the Cryptomining
November 23, 2020
If you’re curious about cryptomining and are interested in learning what it is, how folks are doing it, and how it could be impacting your organization (like that unexpected AWS bill!), join our live webcast series.
Exit Stage Left: Replacing Theater with Chaos
November 18, 2020
Recorded at Cloud Native Security Day 2020 Capsule8’s VP of Product Management and Product Strategy, Kelly Shortridge explores how security theater leads to increased organizational friction, especially in the realm of software delivery, rather than promoting safety. She’ll contrast these dramatics with a security chaos engineering approach – one which embraces the importance of convenience, […]
Divided We Fail: How Security Teams Can Better Engage with DevOps
November 11, 2020
Join Fernando Montenegro and Kelly Shortridge as they get to the heart of the relationship between security and DevOps and share tips for CISOs to help improve their engagement.
Ramping up with FedRAMP
October 9, 2020
Cynthia Burke, Capsule8 Program Manager, will give a high level overview of the Federal Risk and Authorization Management Program (FedRAMP) landscape and will discuss some of the challenges of and best practices for FedRAMP compliance using specific case study examples to help guide you and your team up the compliance hill with FedRAMP.
The ABCs of PMCs for Attack Detection
September 11, 2020
Deciphering SOC 2 Compliance in Cloud-Native Environments
August 18, 2020
Security Considerations for Cloud Migration During a Crisis
July 14, 2020
An evolving technology landscape can already make a well planned cloud migration strategy seem like a complex task, but as we’ve learned in the past few months, there are often additional challenges thrown into the works.
Linux and Containers: Brandon and Nick Hack Things Live
June 5, 2020
Join Capsule8 researchers Brandon Edwards (@drraid) and Nick Freeman (@0x7674) as they perform live hacking walk throughs of common container escape patterns and what signals they leave behind.
Between 2 Kernels: Joel Fulton – E06
April 15, 2020
Things get a bit macabre in our latest episode of B2K featuring reformed CISO Joel Fulton. The two talk about the problem with products, how being a CISO is like living in a survival horror role playing game, and how a golf course is a metaphor for pursuing security. https://www.youtube.com/watch?v=fiE7pbDaC2I&feature=emb_title Video Transcript Kelly Shortridge: Welcome […]
Rant: Security Teams Are Friends Not FUD
April 14, 2020
Security professionals expect their non-security colleagues to trust them and heed their advice. Yet their everyday practices often undermine any sense of trust and, well, security. From running phishing drills that cross the line from realistic to traumatic, to rolling out tools that break business-critical workflows (and uptime), it can be tough for security teams […]
Between 2 Kernels: Sounil Yu – E05
March 26, 2020
Sounil Yu lays out his framework for thinking about all variety of subjects on the latest episode of Between 2 Kernels with Kelly Shortridge. The two cover his sentiments on useless security products, AI-enabled quantum trust, and giving 3 year olds automatic weapons. https://www.youtube.com/watch?v=qJat6tWdWHs&feature=emb_title Video Transcript Kelly Shortridge: Welcome to Between Two Kernels. I am […]
Container Escape Demo
March 23, 2020
Watch a video demo of Capsule8 Protect in action detecting a container escape exploit. https://www.youtube.com/watch?v=Cit7icD4W2o
Between 2 Kernels: Ian Coldwater – E04
March 19, 2020
Video Transcript Kelly Shortridge: Welcome to another edition of Between Two Kernels. Today’s guest is Ian Coldwater, who has that one secret trick that means that containers hate them. Welcome, Ian. Ian Coldwater: Thank you. Kelly Shortridge: You’re welcome. Ian Coldwater: Really appreciate being here. Kelly Shortridge: So there’s a really big debate that happens […]
A Compendium of Container Escapes – Black Hat 2019
December 13, 2019
Learn the how and why container escapes work, starting from a brief intro to what makes a process a container, and then spanning the gamut of escape techniques, covering exposed orchestrators, access to the Docker socket, exposed mount points, /proc, all the way down to overwriting/exploiting the kernel structures to leave the confines of the […]
Capsule8 Investigations Quick Start with AWS Athena
December 10, 2019
Make It Work: The MITRE ATT&CK Framework and How to Put It Into Practice
November 18, 2019
MITRE ATT&CK is quickly becoming the de facto framework for security teams to strengthen their defenses — but with a constantly changing attack surface, especially when it comes to modern cloud infrastructure, how do you move beyond the theoretical to actually put it into practice? Join Brandon Edwards, chief scientist at Capsule8, and guest speaker […]
Deciphering Cryptominers with Capsule8
October 29, 2019
In this roundtable webinar, Decipher’s Dennis Fisher and Fahmida Rashid are joined by Capsule8’s Kelly Shortridge for an in-depth conversation on cryptomining’s emergence and what it means for cryptojacking as a threat consideration for businesses.