[podcast] Pentesting and Defending a Mainframe and Mainframe Security

[embed]https://traffic.libsyn.com/brakeingsecurity/2016-008-mainframe_secruity.mp3[/embed]This week's super-sized episode is brought to us thanks to previous guest Cheryl Biswas. You might remember her from our "Shadow IT" (http:/brakeingsecurity.com/2015-048-the-rise-of-the-shadow-it) podcast a few months ago. She reached out to us to see if we were interested in doing a podcast on mainframe security with her and a couple of gentlemen that were not unknown to us.Of course we jumped at the chance! You might know them as @mainframed767 (Philip) and @bigendiansmalls (Chad) on Twitter. They've been trying to get people to be looking into mainframes and#mainframe #security for years. Mainframes are usually used by financial organizations, or older organizations. In many cases, these systems are managed by a handful of people, and you will have little or no help if you are a red teamer or pentester to make sure these systems are as secured as they possibly can. And many blue team members rely on the 'uber-beardy' guy to understand how they even function.So, Cheryl (@3ncr1pt3d), @bigendiansmalls, and @mainframed767 (Philip) walk us through how a mainframe functions. We discuss what you might see when a scan occurs, that if runs a mainframe OS, and a Linux 'interface' OS.We also discuss methods you can use to protect your organization, and methods you can use as a redteamer to learn more about mainframes.Chad's talk at DerbyCon 2015: https://www.youtube.com/watch?v=b5AG59Y1_EYChad discussing mainframe Security on Hak5: https://www.youtube.com/watch?v=YBhsWvlqLPoLinux for mainframes: http://www-03.ibm.com/systems/linuxone/Philip's talks on Youtube: https://www.youtube.com/playlist?list=PLBVy6TfEpKmEL56fb5AnZCM8pXXFfJS0n Brian and I wish to thank Cheryl for all her help in making this happen. You can find her blog over at Alienvault's site... https://www.alienvault.com/blogs/author/cheryl-biswas Stitcher Network: http://www.stitcher.com/s?fid=80546&refid=stprTuneIn Radio App: http://tunein.com/radio/Brakeing-Down-Security-Podcast-p801582/BrakeSec Podcast Twitter: http://www.twitter.com/brakesecBryan's Twitter: http://www.twitter.com/bryanbrakeBrian's Twitter: http://www.twitter.com/boettcherpwnedJoin our Patreon!: https://www.patreon.com/bds_podcastTumblr: http://brakeingdownsecurity.tumblr.com/RSS FEED: http://www.brakeingsecurity.com/rssComments, Questions, Feedback: bds.podcast@gmail.com**NEW** Google Play Store: https://play.google.com/music/podcasts/portal/#p:id=playpodcast/series&a=100584969**NEW** Listen to us on Player.FM!! : https://player.fm/series/brakeing-down-security-podcast Direct Download: http://traffic.libsyn.com/brakeingsecurity/2016-008-mainframe_secruity.mp3iTunes: https://itunes.apple.com/us/podcast/2016-008-mainframe-security/id799131292?i=363392103&mt=2[caption id="" align="alignleft" width="644"] Visit us at http://www.brakeingsecurity.com[/caption]