Ep. 130, Exploring cybersecurity with PowerShell and John Hammond
Aired August 5, 2024 | 59 min
In this episode of The PowerShell Podcast, we sit down with renowned security researcher John Hammond. Recorded in person in Utah, we delve into John's unique insights on PowerShell and its role in cybersecurity. John shares his experiences with PowerShell attacks, discussing how hackers use PowerShell in malware, and he touches on the importance of implementing security features like constrained language mode and script block logging. He highlights practical tips for making PowerShell environments more secure and emphasizes the need for continuous learning and experimenting within safe environments. We also explore how to transition into security-focused roles, with John providing valuable advice for those looking to combine their PowerShell skills with a career in cybersecurity.
Meet our guest
John Hammond
John Hammond is a cybersecurity researcher, educator, and content creator. As part of the Research & Development Threat Operations team at Huntress, John spends his days analyzing malware and making hackers earn their access.
Previously, as a Department of Defense Cyber Training Academy instructor, he taught the Cyber Threat Emulation course, educating both civilian and military members on offensive Python, PowerShell, other scripting languages, and the adversarial mindset. He has developed training material and information security challenges for events such as PicoCTF and competitions at DEFCON US.
John speaks at security conferences such as BsidesNoVA, to students at colleges such as the US Naval Academy, and at other online events, including the SANS Holiday Hack Challenge/KringleCon. He is an online YouTube personality who showcases programming tutorials, CTF video walkthroughs, and other cybersecurity content.
Meet our host
Andrew Pla
Andrew Pla, a seasoned IT professional with over 10 years of experience, has spent the last 5 years mastering PowerShell. An ardent member of the PowerShell community and a Microsoft MVP, he loves sharing his knowledge and leveraging automation to solve complex problems. You can always find him connecting with others on the PDQ Discord and troubleshooting, with the firm belief that a problem shared is a problem halved.
