Secure AF - A Cybersecurity Podcast
Think like a hacker. Defend like a pro.
Welcome to the Secure AF Cybersecurity Podcast — your tactical edge in the ever-evolving cyber battlefield. Hosted by industry veterans including Donovan Farrow and Jonathan Kimmitt, this podcast dives deep into real-world infosec challenges, red team tactics, blue team strategies, and the latest tools shaping the cybersecurity landscape.
Whether you're a seasoned pentester, a SOC analyst, or just breaking into the field, you'll find actionable insights, expert interviews, and unfiltered discussions with Alias team members and top-tier guests from across the cybersecurity spectrum.
Stay sharp. Stay informed. Stay Secure AF.
Episodes
96 episodes
🚨 Record-Shattering DDoS Attack Alert 🚨
Hackers just unleashed the largest DDoS attack in history, peaking at 7.3 Tbps and 4.8 billion packets per second. In just 45 seconds, it pummeled its target with the data equivalent of over 9,000 HD movies, a...
•
11:41
Secure AF SOC Brief #5 - Chrome CVE-2025-6554
In this episode of The SOC Brief, the team unpacks a critical zero-day vulnerability in Google Chrome (CVE-2025-6554) that’s being actively exploited. Learn how attackers use type confusion bugs to hijack browser memory, what makes thi...
•
9:04
Ep 91: The Engineers React to Breach News
In this episode, our security engineers break down the latest cybersecurity headlines, from the real scoop behind the “16 billion password” leak to the rise of hacker groups like Scattered Spider. 🕷️We discuss how attackers bypass MFA, ...
•
45:27
Secure AF SOC Brief #4 - False Positives
In this episode of The SOC Brief, Andrew and Dax dive into the world of false positives – those misleading alerts that flood security teams with noise. They discuss how misconfigurations, lack of context, and overly sensiti...
•
12:25
Secure AF SOC Brief #3 - IOCs
🔐 New SOC Brief Episode: Tracing the BreadcrumbsCybercriminals always leave a trail, if you know where to look. In this episode, we break down Indicators of Compromise (IOCs) and how they help security teams detect and resp...
•
14:46
Episode 90: Global Wars - Cyber Strikes Back
🎙️ New Secure AF Episode: Global Wars: Cyber Strikes Back 🌐⚔️How does global news shape cybersecurity operations? In this episode, we dig into how real-world events influence the threats we track, the way we respond, and ...
•
50:11
Secure AF SOC Brief #2 - SafePay
🎙️ This Week on the SOC Brief:Join Andrew and Dax as they dive into the emergence of a new threat actor known as SafePay 🕵️♂️💻. They break down the latest tactics, techniques, and procedures observed from this group, offer...
•
10:57
Episode 89: Meet the Alias SOC - on the Battlefront of Cybersecurity
🔐 Inside the SOC 🔐Go behind the scenes with the Alias Security Operations Center (SOC) team to learn how they operate, collaborate, and tackle today’s top cyber threats ⚔️.Find out why a SOC matters, and how organizations c...
•
29:57
Secure AF SOC Brief #1 - SOC Life
Welcome to 🎙️The SOC Brief 🎙️our byte-sized mini series bringing you weekly updates straight from the Security Operations Center.In this episode, Andrew, Dax, and Dylan break down what life in the SOC...
•
11:25
Episode 88: Two-Time CISO Showdown Champion (and Chad)
Alias Cybersecurity Jonathan Kimmitt is joined by Chad Kliewer to discuss the exciting CISO Showdown competition between Chief Information Security Officers (CISOs) at BSidesOK. They delve into the history of the showdown, how it works, and hig...
•
Episode 88
•
46:05
Episode 87: Securing Patient Data with HIPAA's New Security Rules
Alias Cybersecurity CISO Jonathon Kimmitt is joined by Derrac Page to discuss the new changes to the HIPAA security rules being set in place this year. Listen as they go over many of the biggest points raised from the 660+ page guidelines and d...
•
Episode 87
•
53:31
Episode 86: How to make your pen test training not suck
Following BSides Oklahoma where Tanner gave an 8 hour training on the basics of penetration testing, Tanner and Keelan give advice on how to present red team/pen test training... specifically how to make the trainings not suck. Sponsored by AFC...
•
Episode 86
•
33:05
Episode 85: Is SANS the overpriced dinosaur of cybersecurity training?
On this week's Secure AF podcast, Tanner poses a controversial question: is SANS the overpriced dinosaur of cybersecurity training? The answer is not a simple one. Listen in as Tanner and CISO Jonathan Kimmitt go in depth on the pros and cons o...
•
Episode 85
•
43:24
Episode 84: New Years Cyber Resolutions Part 2
As we step into the new year, it's essential to reinforce our defenses against cyber threats. Join Jonathan Kimmitt and Todd Wedel for part 2 of their discussion of cyberresolutions.Their list includes: - **Data Inventory**: Kn...
•
52:37
Episode 83: New Years Cyber Resolutions Part 1
🚀 Kickstart 2025 with Cybersecurity Resolutions! 🔐 In our latest podcast episode, Todd and Jonathan discuss crucial strategies for a secure year ahead. Tune in for more insights and make this year your most secure yet...
•
37:34
Episode 82: Leaving It All On The Table - The What, How, and Why of Tabletop Exercises
Ready for an IR? You may have controls, policies, and procedures, but how do you know they exist? Are robust? Followed and adhered to? Join Jonathan Kimmitt and Alexandria Hendryx as they discuss what a tabletop is, how to conduct one effective...
•
43:37
Episode 81: IR Aversion, Part 2
Join Jonathan Kimmitt and Todd Wedel as they continue discussing how to practice IR aversion tactics. 'Tis the season for IRs and best practice cybersecurity.
•
40:05
Episode 80: IR Aversion, Part 1
'Tis the holiday season! A time for family...and breaches. Want to be cyberprepared to spoil the hacker's celebration? Listen to our 2 part series where Jonathan Kimmitt ensures your festivities are without incident.
•
26:53
Episode 79: Firewall Follies
Firewalls are an often overlooked or unmanaged part of a network infrastructure. Listen as Andrew Hickman and Keelan Knox discuss what they are, why you should pay attention to them, what we've seen on incident responses, and what you need to d...
•
55:34
Episode 78: S3CCON Debrief
Attend S3CCON? Enjoy experiencing the recap. Miss S3CCON? Hear what was awesome, what we learned, and what to look forward to in 2025!
•
26:28
Episode 76: Losing the Cyberwar Through Marketing, Part 2
Jonathan and Todd continue the conversation about how the way we talk about cybersecurity puts us in a deficit against the malicious actors and how we might reframe to better equip the defenders.
•
55:19
Episode 75: Losing the Cyberwar Through Marketing, Part 1
Are hackers really as successful as they appear? Or is it that they have better messaging? Join us for a conversation about how marketing around cybersecurity might play a part in the hacker mystique.
•
43:50