cybersecurity

Since I've made my career on the AppSec and research side of the fence I do have a few recommendations on that side of things:

Absolute AppSec - Discussion of the week sort of podcast, from a couple of experience AppSec guys. I originally came across them because they seem to be one of the few resources really talking details about source code review (they offer a training on it). Which is just one of those areas that kinda easy to talk about but really hard to teach (imo). But yeah they'll generaly just discuss a few topics from recent news and how it impacts AppSec. Good variety here, sometimes offensive, sometimes defensive, sometimes its something else. The hosts occasionally will disagree and will have some solid discussions on it.

Critical Thinking: Bug Bounty Podcast - More of a bug bounty focus. While priorities differ between more general AppSec assessments and bug bounty, there is enough overlap to make the podcast worthwhile. Fairly discussional podcast, kinda a discussion of the week sometimes riffing off of recent vulnerability disclosures but also getting into other aspects like tooling and methodology.

Dayzerosec - I cohost this podcast with a friend, we both work in vulnerability research and exploit development so we are kinda just doing a podcast on what we would find interesting. talking about root causes, and exploitation of whatever interesting bugs were disclosed in the last week-ish. Its a very technical podcast and we don't really tend to cover news/attacks. We do two episodes a week, one focused on "bug bounty" style issues, just higher-level appsec and websec stuff, and one lower-level memory corruption and occasionally hardware layer attacks. Though we also put out summaries of many of the vulnerabilities we cover https://dayzerosec.com/vulns

The ones I often listen to:

• Cyber Security Headlines: https://podcasts.apple.com/gb/podcast/cyber-security-headlines/id1527478719
• Darknet Diaries: https://podcasts.apple.com/gb/podcast/darknet-diaries/id1296350485
• Down the Security Rabbithole: https://podcasts.apple.com/gb/podcast/down-the-security-rabbithole-podcast-dtsr/id466659176
• Risky Business: https://podcasts.apple.com/gb/podcast/risky-business/id216478078
• SANS Internet Stormcenter Daily: https://podcasts.apple.com/gb/podcast/sans-internet-stormcenter-daily-cyber-security-podcast/id304863991

A lot of these will try to shill you new cysec silver bullets, but it's a small price to pay for overall decent entertainment ;)

malicious.life

darknetdiaries

Smashing Security Podcast is a great one, too. Less technical, more fun. Plus, they're on Mastodon: @[email protected]

Twit Security Now is a classic

I really like the Black Hills podcast: https://www.blackhillsinfosec.com/podcasts/

They dig into topics from the news over the past week and have a good sense of humor.

2.5 Admins https://2.5admins.com/ https://podcastaddict.com/podcast/25-admins/2898178 https://podcasts.apple.com/gb/podcast/2-5-admins/id1509561572

I have a podcast if you're interested in checking it out. Im in the process of retooling it a bit so there hasn't been a new show in a bit but that is set to change soon. Check it out the back catalog if you're interested! https://shellsharks.com/podcast

For me though, the only infosec podcast I'm subscribed to right now is the "Application Security Podcast"