x

75% of people globally want unbiased news (Pew Research) but are concerned they're not getting that.

Get balanced coverage with Symby. See how stories are covered across diverse outlets and spot when one side covers a story the other skips.

PODCAST

Certified - CompTIA CYSA+ Audio Course

Dr. Jason Edwards

The CYSA+ Audio Course is your complete, exam-focused companion for mastering the CompTIA Cybersecurity Analyst (CYSA+) certification. Designed for learners who are always on the move, this Audio Course transforms the official exam objectives into clear, structured, and easy-to-follow lessons. Each episode helps you understand, retain, and apply key cybersecurity analysis skills—covering threat detection, vulnerability management, security architecture, and incident response. Whether you’re studying

education courses

All Episodes

14:37

Episode 71: Cloud Vulnerability Assessment Tools...

Certified - CompTIA CYSA+ Audio Course ·

2025/07/15

The move to the cloud has redefined how organizations think about security—and how analysts perform assessments. In this episode, we explore cloud-native vulnerability assessment tools like Scout Suite and Prowler, which are purpose-built for auditing cloud infrastructure and identifying misconfigurations, permission risks, and exposed services in platforms like AWS, Azure, and GCP.You’ll learn what makes these tools different from traditional on-prem scanners, how they interface with cloud

en

15:30

Episode 70: Multipurpose Tools for Advanced Analysts...

Certified - CompTIA CYSA+ Audio Course ·

2025/07/15

Some tools do it all—and analysts rely on them for everything from scanning to exploitation to open-source intelligence gathering. In this episode, we examine three powerful multipurpose tools: Nmap for port scanning and host discovery, the Metasploit Framework (MSF) for exploit testing and validation, and Recon-ng for structured OSINT gathering.We’ll show how these tools are used by both red teams and blue teams, how they integrate with broader vulnerability management programs, and how to

en

14:49

Episode 69: Debugging Tools for Vulnerability Analysts

Certified - CompTIA CYSA+ Audio Course ·

2025/07/15

Not every vulnerability is easy to spot—some require stepping into the execution environment itself. This episode introduces you to common debugging tools like Immunity Debugger and GNU Debugger (GDB), which are used to examine running applications, monitor memory usage, and identify how software behaves when it encounters unexpected input.While these tools are more commonly associated with reverse engineering and exploit development, CySA+ expects candidates to understand what they do,

en

14:06

Episode 68: Vulnerability Scanners Explained (Nessus,...

Certified - CompTIA CYSA+ Audio Course ·

2025/07/15

At the heart of vulnerability management lies automated vulnerability scanners—and few are more widely used than Nessus and OpenVAS. In this episode, we break down how these scanners work, what they look for, and how analysts interpret their output. You’ll learn about plugin libraries, scan templates, result severity rankings, and how these tools differentiate between configuration issues and exploitable vulnerabilities.We also examine the risks of misconfiguring scans, how to tune scans

en

15:01

Episode 67: Web Application Scanning Tools

Certified - CompTIA CYSA+ Audio Course ·

2025/07/15

Web applications are among the most targeted assets in modern enterprises—and automated scanning tools are the first line of defense. In this episode, we take a close look at Burp Suite, ZAP (Zed Attack Proxy), Arachni, and Nikto—each of which plays a distinct role in discovering vulnerabilities like injection flaws, insecure cookies, misconfigured headers, and more.We explain how to use these tools for authenticated and unauthenticated scans, how they fit into DevSecOps pipelines, and how

en

13:47

Episode 66: Network Scanning and Mapping Tools

Certified - CompTIA CYSA+ Audio Course ·

2025/07/15

Understanding your network begins with visibility—and that visibility is powered by scanning and mapping tools. In this episode, we introduce key network discovery tools such as Angry IP Scanner and Maltego. You’ll learn how these tools help identify live hosts, open ports, DNS records, and relationships between systems, giving analysts a clear picture of what’s exposed and where risks may reside.We also discuss how these tools are used in reconnaissance phases by attackers, and why

en

14:25

Episode 65: Industry Frameworks for Vulnerability...

Certified - CompTIA CYSA+ Audio Course ·

2025/07/15

Many vulnerability scanning strategies are guided by established frameworks. In this episode, we break down the most widely recognized standards referenced throughout the CySA+ exam and in real-world practice. You’ll learn how PCI DSS, the CIS Benchmarks, OWASP Top Ten, and ISO 27000 inform scanning scope, reporting practices, and remediation priorities.We explain what each framework contributes to risk management and why organizations adopt them for internal governance or regulatory

en

14:34

Episode 64: Security Baseline Scanning Techniques

Certified - CompTIA CYSA+ Audio Course ·

2025/07/15

Before you can identify deviations, you need a baseline. This episode focuses on how security baseline scans compare systems and configurations against established security policies and industry benchmarks. You'll learn how organizations define “secure” settings for operating systems, network devices, and applications—and how to use scanning tools to enforce those standards.We discuss the role of CIS benchmarks, custom configuration policies, and drift detection in maintaining secure

en

14:43

Episode 63: Scanning Critical Infrastructure Systems...

Certified - CompTIA CYSA+ Audio Course ·

2025/07/15

Operational technology (OT) environments—such as industrial control systems (ICS) and SCADA platforms—pose unique challenges for vulnerability management. In this episode, we explore the risks of scanning sensitive industrial networks, where uptime is critical and legacy systems are common. You'll learn why traditional scanning tools may not be safe or effective in these environments, and what alternative methods are used to assess security.We also discuss segmentation, read-only protocols,

en

15:18

Episode 62: Static vs. Dynamic Analysis Techniques

Certified - CompTIA CYSA+ Audio Course ·

2025/07/15

Some vulnerabilities are embedded in code—others appear only at runtime. In this episode, we unpack the distinction between static and dynamic vulnerability analysis. You’ll learn how static analysis tools examine source code or binaries without executing them, identifying risky functions, insecure libraries, and violations of secure coding practices.Dynamic analysis, by contrast, observes application behavior during execution—surfacing flaws that may not appear in code but manifest during

en

15:07

Episode 61: Passive vs. Active Vulnerability Detection

Certified - CompTIA CYSA+ Audio Course ·

2025/07/15

Not all scanning involves direct interaction. In this episode, we explore the differences between passive and active vulnerability detection techniques. You'll learn how active scanning probes devices directly for open ports, known vulnerabilities, and misconfigurations—while passive methods quietly monitor network traffic to uncover risks without making a sound.We discuss the benefits and limitations of each, including detection capabilities, safety profiles, and their respective roles in

en

14:28

Episode 60: Credentialed vs. Non-Credentialed Scans

Certified - CompTIA CYSA+ Audio Course ·

2025/07/15

Credentials can change everything. In this episode, we explore the differences between credentialed and non-credentialed scans—and why access matters when identifying vulnerabilities accurately. You’ll learn how non-credentialed scans test from the outside, simulating an attacker’s view, while credentialed scans offer deeper access to system internals, configuration issues, and patch status.We’ll also cover how to manage credentials securely within scanning tools, how false positives and

en

14:48

Episode 59: Agent-Based vs. Agentless Scanning

Certified - CompTIA CYSA+ Audio Course ·

2025/07/15

Should you deploy agents on every device, or scan remotely without them? In this episode, we compare agent-based and agentless vulnerability scanning approaches and explore their respective strengths, limitations, and use cases. You’ll learn how agents provide deep telemetry and offline scanning, while agentless approaches are easier to deploy at scale but may miss key system-level insights.We also examine how hybrid approaches combine the best of both worlds, and what CySA+ expects you to

en

14:43

Episode 58: Internal vs. External Scanning Strategies

Certified - CompTIA CYSA+ Audio Course ·

2025/07/15

Where you scan from is just as important as what you’re scanning. This episode breaks down the difference between internal and external vulnerability scans—what each one reveals, why both are necessary, and how attackers exploit gaps between them. You’ll learn how external scans simulate a threat actor’s perspective, while internal scans evaluate risks from compromised users, insiders, or lateral movement.We’ll also look at common mistakes like relying on one scan type exclusively,

en

16:17

Episode 57: Vulnerability Scanning – Special...

Certified - CompTIA CYSA+ Audio Course ·

2025/07/15

Not all scans are created equal. In this episode, we explore the many considerations that go into planning and executing a vulnerability scan without disrupting business operations. You’ll learn about scan scheduling, network segmentation, regulatory constraints, performance impact, and how sensitivity settings can affect both coverage and safety.We also explain how to coordinate scanning activities with operations teams to avoid scanning critical systems at the wrong time, and how to

en

15:18

Episode 56: Asset Discovery in the Wild

Certified - CompTIA CYSA+ Audio Course ·

2025/07/15

Before you can scan for vulnerabilities, you need to know what assets you’re protecting. In this episode, we focus on the first step of the vulnerability management lifecycle: asset discovery. You’ll learn how analysts use map scans and device fingerprinting to build an accurate inventory of hardware, software, and services within a network—information that is critical for everything that follows.We’ll explore how this discovery process varies across enterprise, cloud, and OT environments,

en

15:20

Episode 55: Domain 2 Overview – Vulnerability...

Certified - CompTIA CYSA+ Audio Course ·

2025/07/15

Welcome to Domain 2: Vulnerability Management. In this foundational episode, we set the stage for everything you’ll learn in the coming sessions—from scanning tools and techniques to validation, prioritization, and secure development practices. You’ll learn how vulnerability management bridges the gap between detection and prevention, and how analysts evaluate risk and recommend effective remediation.We also explain why this domain represents 30% of the CySA+ exam—a strong signal of its

en

14:54

Episode 54: Single Pane of Glass: Visibility in the SOC

Certified - CompTIA CYSA+ Audio Course ·

2025/07/15

In complex environments, visibility is everything. But when your tools are spread across different dashboards and platforms, critical context can be lost. This episode introduces the concept of a “single pane of glass”—a unified interface that aggregates security data from across your infrastructure to support efficient detection and decision making.We’ll talk about what makes a single-pane dashboard effective, how data normalization works behind the scenes, and how to avoid information

en

16:16

Episode 53: Integrating APIs and Plugins for Efficiency

Certified - CompTIA CYSA+ Audio Course ·

2025/07/15

Modern security platforms rarely operate in silos. In this episode, we explore how APIs, webhooks, and plugins allow your tools to communicate—enabling integrations that speed up investigation, automate response, and support real-time correlation. You’ll learn how analysts and engineers use these integrations to extend visibility and automate information sharing across systems.We discuss use cases like sending SIEM alerts directly to ticketing systems, triggering containment actions via

en

16:18

Episode 52: Streamlining with SOAR and Threat Feed...

Certified - CompTIA CYSA+ Audio Course ·

2025/07/15

Security Orchestration, Automation, and Response (SOAR) platforms help security teams move faster and more intelligently. In this episode, we go deeper into how SOAR solutions connect with your SIEM and other tools to automate triage, enrich alerts with contextual threat intel, and reduce response times across the board. You’ll learn how data from multiple feeds is consolidated to support a single decision point—and how false positives are filtered out more efficiently.We also cover how

en

131 results

Similar Podcasts

Science Talk

Albert Einstein College of Medicine

五分钟心理学

柠檬心理

Daily Facts

Amalia Dupray and Montgomery Jones.

Les dents et dodo

BFMTV

Veterinary Clinical Podcasts

The Royal Veterinary College