I'm 24 years old, working as a Redteam in Telefonica, based in Madrid. Conding since I was 15, my favorite languages are Python, Bash and C. I love hardware hacking and electronics, and I love building electronics for security, I also enjoy teaching and mentoring.
At the beginning of the talk I will explain the security issues I've faced in my job, mostly when talking to app developers and users, as well as from research.
Towards the middle of the talk I want to introduce how freedom of software has provided many tools to cover those issues and then discuss the importance of open cybersecurity in society. At this point, I'll show off some tools and scripts.
Finally, I want to conclude by providing some security tips for developers, along with guidance on how to help security professionals when auditing their companies.
Here is a download link to the talk slides (PDF)
This talk will be presented as part of CodeLand:Distributed on July 23. After the talk is streamed as part of the conference, it will be added to this post as a recorded video.
Top comments (30)
Honestly, I think this is the coolest talk of the day! 💛
Oh wow thank you! Although I loved all the previous talks as well. I'm glad you enjoyed thank you!
@terceranexus6 , how did you get into this career and what is required to get into this career?
I started studying every single day online and actually I posted all my development here in dev.to. I went to all the security events in my country I could afford to go and started to send papers to conferences until they got me, same happened while looking for a job! I'm just passionate about this so I'm happy about studying everyday.
That's truly inspiring. 💙
Thank you, Paula. I will look into your posts.
my love for Computer science was since childhood because of the Anonymous news back then it was a trend. I think a lot of SE/CS also have they inspire from them , also from games. BTW thanks <3.
Thank you!! yes those media resources are a truly inspiration. I'm a lover of "Hacker files" comic series for example. Thank you for attending :)
Is there some kind of sandbox environment to practice these in without messing around with a real website or business?
Sure! try using hackthissite, portswigger academy and hack the box! you should end up being a pro if you get used to those! ;)
Thank you so much!
Great intro to cybersec, thanks, Paula!
Thank you! It's been difficult for me, I could spend hours talking about it hahaha
Hahah I can imagine that! I am very new to the industry, so I'm very excited to check out your publications :)
I was also curious if you are asked to social engineer the employees as part of the pentest? :D
It depends on the project but I've done it, yes. I speak about it widely in this post. I love social engineering.
Loving this security demo!
Thanks!!
Super interested this talk, as I don't know too much about cybersecurity! What are some good outside resources for people who would like to move into this field from more standard programming? Books, websites, etc.
Oh well if you are already a programmer thats a big step there you already took. Portswigger academy, hackthissite and Hack the box are really good labs to get into it, and the best way to learn about sec is to go to events from my point of view, because you can have a beer with speakers and discuss their expertise! (with security distance of course ;)) and books, there are some nice books such as the hacker playbook which updates every year, but it kind of depends on what you want to focus on cybersecurity. DM for a more focused advice if you want :)
Really nice presentation, Paula.
I loved hearing more about your back story and I just learned about red, blue, and purple teams!!
You mentioned you talk on a radio show in Madrid, right? Where is that? I'd love to check it out. :D
Loved your talk & panel! Also, me encanta España y no puedo esperar hasta que es posible a viajar allà de nuevo! 😊
Let's hope that's soon!
Awesome security talk Paula! What's your favorite security tool?
I love the lower level the best, so openssl and nmap are the absolute winners because I can use them in bash scripting so smoothly!
Some comments may only be visible to logged-in visitors. Sign in to view all comments.