Summary In this episode, Eddie Miro shares his hacker origin story and discusses his recently published book. He talks about his journey from a troubled childhood to a life of crime and eventually finding his passion in cybersecurity. Eddie emphasizes the importance of mentorship, creativity, and community involvement in the cybersecurity field. He also highlights the process of self-publishing his book and the impact it has had on his personal growth and the lives of others. Takeaways Mentorship and community involvement are crucial for success in the cybersecurity field. Creativity and authenticity can make a significant impact in the industry. Self-publishing a book can be a cost-effective and fulfilling way to share knowledge and personal experiences. Overcoming shame and embracing vulnerability can lead to personal growth and inspire others. Soft skills and networking are essential for career advancement in cybersecurity. Sound Bites "People didn't care about the social engineering content. What they wanted to hear was my story." "Reach out to mentors and ask for advice and help. Most people are willing to assist." "I feel a lot of empathy for my former self. I don't fear being judged anymore." Resources https://www.linkedin.com/in/theedmiroshow/ Eddie's book: https://www.amazon.com/Outlaw-Summer-Cyber-Dreams-Redemption/dp/B0CZFB2KNM/ref=sr_1_1?sr=8-1

ALT: a black van with the words unsuspecting van written on it

About The Guest:Katerina is the CEO and founder of Exelasis, a cybersecurity organization that focuses on elite pen testing and advanced security testing. She is one of the first female CEOs in the industry, and she is passionate about bringing the elite back into cybersecurity and promoting the importance of pen testing. Summary:Katerina discusses the commoditization of pen testing and the need for organizations to prioritize quality over quantity. She explains the difference between pen testing and red team operations, emphasizing that pen testing is coverage-based while red teaming is objective-based. Katerina also shares her thoughts on the role of AI in pen testing and cybersecurity, highlighting the importance of human expertise and the need for ethical guidelines in AI development. She emphasizes the need for organizations to invest in pen testing and validate their cybersecurity measures to ensure the safety of their digital assets. Key Takeaways: Pen testing is coverage-based, while red teaming is objective-based. AI can enhance pen testing, but it cannot replace the human expertise and ethical decision-making required in cybersecurity. Organizations should prioritize quality over quantity when it comes to pen testing and invest in elite testing to validate their cybersecurity measures. Pen testing is crucial in identifying vulnerabilities and reducing exposure, but it cannot guarantee 100% security. Quotes: "Pen testing really lost the eliteness it could have had. It's become a checklist." - Katerina "Red teaming is an objective-based exercise. It will tell you if the ultimate objective is achievable or not." - Katerina "AI cannot possibly go into an organization and have that logical thinking saying, 'I'm not going to touch that because it's a real customer.'" - Katerina "We want to enhance, not replace. Use AI to enhance, not to replace." - Katerina "Pen testing is not commodity. It's a lot more elite, it's a lot more strategical." - Katerina Socials and Resources: https://www.linkedin.com/in/katerina-tasiopoulou-a71424128/ https://www.linkedin.com/company/exelasis-ltd/ www.exelasis.com

About the Guest: Rob Fuller (Mubix): Rob Fuller, also known as Mubix, is a well-known figure in the cybersecurity community, particularly in the realms of penetration testing and red teaming. As an experienced professional, Fuller has a background in the Marine Corps where he was part of the Marine Corps CERT at Quantico. Fuller has contributed significantly to the community through his work with Hak5 on series like Metasploit Minute and Practical Exploitation. His deep understanding of security concepts, coupled with his engaging teaching methods, has influenced aspiring hackers and professionals worldwide. He now holds a leadership role, guiding and nurturing the next generation of cybersecurity talent. Episode Summary: In this engaging episode of "The Phillip Wylie Show," Phillip Wylie sits down with Rob Fuller, also known as Mubix, a revered figure in the cybersecurity and penetration testing community. The conversation kicks off with Fuller's early experiences that propelled him into the world of hacking, such as his fascination with Game Shark and reverse engineering concepts during his childhood. Fuller elaborates on his journey from the Marine Corps to becoming a renowned penetration tester and red teamer, providing invaluable insights into the practical and psychological aspects of entering the cybersecurity field. Throughout the episode, Fuller emphasizes the importance of content creation and community involvement for career advancement in cybersecurity. He illustrates how blogging, podcasts, or even YouTube channels can showcase one's expertise and help build a personal brand. This episode is packed with actionable advice on certifications, the value of scripting, and the mental fortitude needed to combat imposter syndrome. Listeners are bound to find Fuller's story inspiring and his advice practical for both newcomers and seasoned professionals in cybersecurity. Key Takeaways: Content Creation is Key: Fuller emphasizes the necessity of creating content—whether blogs, videos, or code repositories—to establish oneself in the cybersecurity community and attract job opportunities. Learning Programming Helps: While not a strict requirement, knowing how to code can greatly enhance a pen tester's ability to adapt and overcome challenges during engagements. Select Certifications Wisely: Fuller shares his perspective on the current landscape of cybersecurity certifications, recommending those with practical, hands-on tests like CRTO. Imposter Syndrome is Natural: Fuller advises embracing the learning process and valuing opportunities to be the 'dumbest person in the room' as it's critical for growth. Trust in Community: Fuller underscores that the cybersecurity field thrives on knowledge sharing and cautions against feeding the "try harder" mentality that inhibits communal learning and growth. Notable Quotes: "It's not who you know, it's not what you know, it's who knows what you know." - Rob Fuller "One of the best things you can ever do is start a blog, a video log, a podcast, something to detail your learning experience." - Rob Fuller "If you're ever in a situation where you are the dumbest person in the room, and someone belittles you for it, they're the butthead." - Rob Fuller "As long as you understand basic logic, if this, then that… You can learn programming along the way." - Rob Fuller "Creating content is like investing money. The sooner you start, the better." - Rob Fuller Resources: Rob Fuller (Mubix) on Twitter: @mubix Hak5: Hak5 Website Zero Point Security's CRTO Certification: https://training.zeropointsecurity.co.uk/courses/red-team-ops Security Plus Certification: https://www.comptia.org/certifications/security OSCP Certification: https://www.offsec.com/courses/pen-200/ Don't miss this episode to dive deep into Mubix's fascinating journey through cybersecurity and glean insights that can aid your own career progression.