The Defender’s Log Podcast

What started as the “phonebook of the internet” is now one of the most critical layers in cybersecurity. In this episode of The Defender’s Log, David Redekop sits down with Cricket Liu—often called the godfather of DNS—to unpack how DNS evolved from a trusted utility into a frontline security control. From the early days of DNS and BIND to the rise of protective DNS, threat intelligence, and zero trust architectures, this conversation traces the real story behind modern network defense. Key Discussion Points 00:00 From “phonebook” to frontline defense: why DNS became critical to security02:20 The origins of protective DNS and response policy zones (RPZ)05:00 Why many organizations still run DNS “wide open”06:30 The evolution of threat intelligence: from feeds to analytics-driven detection09:00 How passive DNS data powers modern security insights12:30 AI’s impact on attackers: customized malware and evasion tactics13:30 DNS encryption (DoT, DoH, DoQ): privacy vs. visibility tradeoffs16:00 Where encryption matters most (and where it may not)20:40 Why protective DNS is still the most overlooked security layer23:30 The risks of “log-only” mode and missed prevention opportunities25:20 Zero Trust DNS and controlling where devices can connect29:50 DNSSEC adoption: why it’s uneven and what it really protects34:00 What we’d change about DNS if we could redesign it today37:00 Why DNS still works 40+ years later40:10 Advice for the next generation: no gatekeepers, no excuses42:20 AI vs. human curiosity: what actually creates breakthroughs At its core, this episode is about one idea: there’s no secret sauce. The tools, the knowledge, and the mechanisms are already available. The difference comes down to how we use them. If you work in security, networking, or IT leadership, this is a grounded, practical look at where DNS fits in the fight—and why it matters more than ever. Don’t forget to:👍 Like this video if it changed how you think about DNS security🔔 Subscribe for more real conversations with leaders shaping cybersecurity💬 Comment: What’s your biggest takeaway—or where is your DNS strategy falling short?🔗 Share this with someone responsible for network or security architecture #CyberSecurity #DNS #NetworkSecurity #ZeroTrust #ThreatIntelligence #InfoSec #AI #CyberDefense #DataSecurity #SecurityArchitecture #TheDefendersLog

Cybersecurity is technical. But the humans behind it? That's where it gets complicated. Nim Nadarajah—CISO and managing partner from Critical Matrix, and one of the sharpest minds in the industry—sits down with host David Redekop for a conversation that goes far beyond firewalls and frameworks. From the psychology of a breach victim who no longer knows who to trust, to cutting a client's SIEM costs by millions through process, not tools, this episode is a masterclass in what it actually takes to protect an organization in today's threat landscape. Nim shares the story behind crowdsourcing the discovery of a gold mine (yes, really), why your crown jewels are probably already inside an AI you didn't approve, and what a five-year-old opening the kitchen sink cabinet taught him about zero trust security. Whether you're a CISO, an MSP, a business owner, or someone who just wants to understand what's actually at stake with agentic AI—this one is for you. Key Discussion Points 00:00 — Intro: Welcome to The Defender's Log 01:34 — Meet Nim Nadarajah: CISO & Managing Partner, Critical Matrix 02:00 — RSAC 2025 recap: 50,000 people, 30,000 steps, and emotional overload 03:18 — The stigma of being hacked: Is the "wall of shame" finally coming down? 05:00 — Competence, confidence, and capability: The 3 Cs of incident readiness 06:04 — Psychology of a breach: The human side of incident response 09:36 — "Who can I trust?" (What it really feels like to be a cyber victim) 12:10 — Nim's origin story: From high school library networks to corporate Canada 15:00 — The Goldcorp Challenge: Crowdsourcing a gold mine before crowdsourcing was a thing 20:31 — Process vs. tools: Why the blank page doesn't care what app you're using 23:00 — AI is everywhere and it's only as good as what you feed it 24:25 — Agentic AI, crown jewels & protecting your intellectual property 26:33 — Shadow AI, 800 firewall rules, and the free-for-all that already happened 29:09 — Zero trust explained through a kitchen sink (and a curious five-year-old) 33:22 — The SIEM transformation that saved millions and paid for itself in a month 37:36 — Dashboard fatigue: Why leaders need signal, not more screens 39:00 — Agentic SOC: Fearfully excited 41:02 — 29 employees, one human: The pure agentic company Nim met at RSAC 43:26 — Vibe coding is real: A salesperson built a privacy app with zero coding experience 46:00 — Ideas are approaching zero value—execution is everything now 46:57 — One sentence for the next generation: "The power of your ideas haven't been created yet." 👍 If this hit home, give it a like — it helps more people find these conversations🔔 Follow The Defender's Log so you don't miss the next one💬 Drop a comment — where are you on the process vs. tools debate?🔗 Tag someone in security or leadership who needs to hear this #CyberSecurity #CISO #IncidentResponse #AIRisk #AgenticAI #ZeroTrust #SIEM #ManagedSecurity #CyberLeadership #DataGovernance #CrownJewels #TechStrategy #ProcessOverTools #CyberResilience #TheDefendersLog #Podcast #CyberPodcast #MSP #InfoSec #DigitalTransformation #AIGovernance #CybersecurityLeadership #ToolFatigue #CyberAwareness #RSAC2025

Cybersecurity and military defense share the same fundamental principle: you can’t go on offense if you don’t have a secure perimeter. Steven Elliott’s journey—from a farming community in Kansas to the U.S. Army’s 75th Ranger Regiment, and later into finance and cybersecurity leadership—reveals how disciplined thinking, clear communication, and preparation for uncertainty shape strong decision-makers. Markets are unpredictable. Technology is complex. Threats—both financial and digital—evolve constantly. The real advantage comes from understanding risk, simplifying complexity, and building systems that help people make better decisions. This conversation explores the lessons learned from military operations, financial advisory work, and cybersecurity leadership—and why defense, preparation, and clarity matter more than ever in today’s digital world. Key Discussion Points 00:00 – Why no one can predict financial markets01:00 – Welcome to The Defender’s Log01:28 – Introducing Steven Elliot03:10 – Growing up in Kansas and studying business05:13 – How 9/11 changed Steven’s life path05:36 – Entering finance before the 2008 financial crisis07:17 – An unexpected entry into cybersecurity09:00 – Why simplifying complex ideas matters11:40 – Learning to communicate through storytelling13:10 – Helping clients understand risk and decisions16:20 – The connection between military defense and cybersecurity19:50 – Joining the Army Rangers22:20 – Defense before offense: military priorities of work24:10 – Why planning matters when things go wrong27:30 – A mission that changed everything31:00 – Leadership lessons from crisis and failure35:30 – Forgiveness, responsibility, and resilience41:00 – Leadership, truth, and transparency under pressure46:30 – The consequences of narrative and public attention50:00 – Lessons for leadership and organizations53:00 – AI, technology, and leadership in uncertain times55:30 – Final thoughts: curiosity over fear If this conversation made you think differently about risk, leadership, or cybersecurity: 👍 Like the video so more people can find it🔔 Subscribe for more real conversations with leaders shaping security and technology💬 Share your biggest takeaway in the comments🔗 Pass this episode along to someone navigating risk, leadership, or cybersecurity #CyberSecurity #Leadership #RiskManagement #MilitaryLeadership #DecisionMaking #CyberDefense #BusinessLeadership #SecurityStrategy #TechnologyLeadership #Podcast

Attackers are getting smarter—and the protocol they rely on most isn’t what you think. In this powerful conversation, David Redekop and Johannes Weber break down how modern malware abuses DNS, why attackers prefer DNS tunneling and exfiltration, and the defensive strategies every organization needs in 2026. Johannes brings decades of hands‑on experience as a network security specialist, consultant, packet analyst, and educator. Together, they trace the full threat landscape around DNS and explore the evolving tools, behaviors, and techniques shaping the defender’s playbook.⏱️ Chapters & Key Moments 00:00 – Why 90% of malware still depends on DNS 01:00 – A fun start: German names, dual identities & cultural overlaps 03:00 – Johannes’ origin story: LAN parties → network engineer → security consultant 06:00 – You don’t need to code to thrive in network security 07:00 – DNS basics: recursive resolvers vs. authoritative servers 08:00 – How attackers abuse DNS “as designed” 10:30 – Lookalike domains & deceptive URL patterns 11:00 – DGAs (Domain Generation Algorithms) explained 12:00 – Newly registered vs. newly observed domains 14:00 – Aging domains & reputation‑based defense 15:00 – DNS exfiltration: how attackers sneak data out 16:00 – Step‑by‑step breakdown of DNS exfiltration 18:00 – DNS tunneling: when attackers turn DNS into a VPN 19:00 – Why signature‑based defenses fail 21:00 – Deep Query Inspection & entropy analysis 22:00 – Where DNS security belongs in your architecture 24:00 – TXT, NULL, A/AAAA abuse & blocking strategies 27:00 – DNS spoofing & cache poisoning 30:00 – DNSSEC: authentication vs. confidentiality 33:00 – DOH/DOT: privacy vs. visibility 36:00 – TLS interception & enterprise tradeoffs 39:00 – Securing roaming users in a VPN‑less world 41:00 – What Pi‑hole solves at home (and what it won’t) 43:00 – Johannes’ favorite tools: DNSViz, DNSDiag, DNSPing 44:30 – The Ultimate PCAP collection (15 years, 90+ protocols) 46:00 – Why Johannes teaches — and the next generation of defenders 48:00 – Closing thoughts & community resources 🛠️ Mentioned Tools & Resources DNSViz – DNS trust visualization DNSDiag / DNSPing – Resolver latency + diagnostic toolkit Iodine / DNScat2 / DNS‑tunnel tools – Examples of DNS tunneling tech Ultimate PCAP Collection (Johannes’ blog) – 15 years of protocols for Wireshark trainingIf this helped sharpen your defender instincts: 👍 Like this video to support the channel 🔔 Subscribe for more real‑world security insights 💬 Share your biggest DNS takeaway in the comments 🔗 Send this episode to a teammate or friend who works in network security Together, we make the internet harder to attack — and easier to defend.#CyberSecurity #DNS #DNSSecurity #MalwareAnalysis #DNSExfiltration #DNSTunneling #DNSSEC #DOH #NetworkDefense #PacketAnalysis #Infosec #SecurityPodcast #BlueTeam

Defending the Internet, One Domain at a TimeIn this episode of The Defender’s Log, host David Redekop sits down with Peter Lowe, the creator and maintainer of one of the internet’s most widely used blocklists, a resource quietly protecting users for over 27 years.What started as a personal effort to block intrusive ads has evolved into a critical layer of modern cybersecurity infrastructure. Peter shares the technical, ethical, and human realities of maintaining a blocklist at internet scale, from DNS-based blocking and privacy challenges to dealing with criticism, threats, and constant technological change.The conversation also explores unexpected territory: how language, culture, and communication shape security, why defaults in operating systems matter more than most users realize, and how Apple, Microsoft, and modern platforms influence privacy at scale.This episode isn’t just about blocking domains; it’s about trust, responsibility, and defending the open internet without owning it.

In this episode of The Defender’s Log, host David Redekop sits down with DNS and DDI expert Andreas Taudte, who brings more than 16 years of experience in network security, DNS architecture, and threat mitigation.Together, they unpack the real challenges organizations face with DNS, from evasion techniques and tunneling threats to the growing complexity of legacy systems and hybrid networks. Andreas explains why DNS predictability is essential, how DDI (DNS, DHCP, IPAM) has evolved, and what enterprises must do to build resilient, zero-trust-aligned network foundations.This conversation is packed with real-world stories, practical insights, and actionable strategies for anyone responsible for securing modern infrastructures. If you touch networking, cybersecurity, or cloud architecture; this deep dive is for you.Timestamps - 00:00 Introduction to DNS and DDI 01:20 Meet Andreas: A Deep Dive into DNS 06:22 The Journey into DNS and DDI 06:49 Understanding DDI: DNS, DHCP, and IPAM 09:53 Challenges and Stories from the Field 22:21 Security and Management in DNS and DDI 28:13 External Audits and DNS Management 30:16 Infrastructure as Code and Network Configuration 31:15 Building a Strong Foundation for Networks 31:30 The Reality of Temporary Solutions 32:00 Buzzwords and IT Management 33:34 Zero Trust and Default Deny All 34:25 DNS Threats and Exploits 44:22 Complex DNS Evasion Techniques 46:49 Combining Security Layers for Better Defense 52:03 Predictable DNS Resolution 54:17 Final Thoughts and Advice #DNS #DNSSecurity #DDI #Cybersecurity #NetworkSecurity #ZeroTrust #ITInfrastructure #CyberThreats #IPAM #DHCP #SecurityArchitecture #BlueTeam #NetworkEngineering

In this episode of The Defender’s Log, host David Redekop sits down with Tim Adams, DNS threat intelligence expert and founder of ScoutDNS, to uncover the evolving world of DNS security. From his early days running a wireless network integrator to building a resilient DNS resolver service, Tim shares lessons in innovation, resilience, and the art of staying ahead of cyber threats. They discuss everything from DNS over HTTPS (DOH) and threat intelligence to balancing privacy, compliance, and encryption in a rapidly changing digital landscape. Whether you're a cybersecurity professional, MSP, or privacy advocate, this conversation offers an unfiltered look into the next frontier of internet defense.#Cybersecurity #DNS #ThreatIntelligence #DataPrivacy #InternetSecurity #NetworkSecurity #TechInnovation #Encryption #DOH #DOT #ScoutDNS #MSP #CyberDefense #TheDefendersLog #Podcast #Technology #Infosec #DigitalPrivacy #CyberThreats #TechLeadership

In this episode of The Defender’s Log, host David Redekop sits down with Sami Khoury, the Head of the Canadian Centre for Cyber Security, for an inside look at the battle to protect national infrastructure from unseen digital threats.From his beginnings as a research engineer in 1992 to leading one of Canada’s most critical cybersecurity agencies, Sami shares lessons from three decades of defense — from combating ransomware to promoting “secure-by-design” innovation.Discover how public-private collaboration, education, and technology are shaping the next frontier of digital security. Whether you’re a cybersecurity professional, policymaker, or tech enthusiast, this episode will leave you with a new appreciation for the people protecting the digital realm.🧠 Key Takeaways:Ransomware and the evolution of modern cyber threatsWhy “secure-by-design” is the foundation of cyber resilienceThe power of collaboration between government and private sectorsBuilding a cybersecurity culture through awareness and innovationInsights into the mindset of a lifelong defender of the digital realmTimestamps / Chapters00:00 — The Original Spark: Passion for Problem-Solving 01:01 — Welcome to The Defender’s Log 01:17 — Meet Sami Khoury: Canada’s Cybersecurity Leader 03:34 — The Journey from Engineer to Cyber Chief 06:34 — A Day in the Life of a National Cyber Defender 08:55 — Cyber Policy and the Power of Innovation 12:19 — Inside the Cyber Center: Strategy and Collaboration 28:50 — Ransomware: The Evolving Threat Landscape 34:19 — Building a Culture of Cyber Resilience 40:59 — Recognitions, Reflections, and Lessons Learned 44:42 — A Call to Action: The Future of Cyber Defense

"Am I going to spend my life trying to get the thing that I need, or am I going to spend my lifedoing the thing that I want?"In this deeply insightful episode of The Defender's Log, host David Redekop sits down with WillEarp, a veteran developer whose career journey began with an Amiga 600 in 1998. Theyexplore the profound philosophy that has guided Will's path from a freelance web developer to alead engineer at a charity dedicated to online child safety.Will shares his belief that a career isn't a clear path but a "foggy staircase," where you can onlysee one or two steps ahead. He explains how choosing to follow passion over apaycheck—whether running his own business for a decade or contributing to open-sourceprojects—led to unexpected doors opening, including his involvement with the prestigiousInternet Engineering Task Force (IETF).This conversation goes beyond code and cyber defense, touching on the importance of legacy,the unique challenges of protecting children in the digital age, and the simple but powerfuladvice to find what you love and go do it.In this discussion, you will learn about:● The "Foggy Staircase" approach to navigating your career path.● Pivoting from general web development to a mission-driven role in cybersecurity.● The profound choice between pursuing passion versus financial security.● How open-source work and personal projects can become your greatest career assets.● The unique challenges and responsibilities of protecting children vs. adults online.● Key insights on modern defense, including Zero Trust in DNS.● Invaluable advice for the next generation of cybersecurity defenders.● Why the ultimate goal is building a life and a legacy you can be proud of.Join us for a conversation that will inspire you to think differently about your own career, thechoices you make, and the impact you want to have on the world.Chapters00:00 - Intro01:18 - Welcome & How Will Herp Got Started in Tech05:09 - The "Foggy Staircase" of a Tech Career07:25 - Finding a Mission-Driven Career in Child Safety09:28 - The Difference Between Protecting Kids vs. Adults Online13:27 - Philosophy, Human Nature, and Long-Term Thinking18:44 - Choosing Passion Over Money: The Journey to Open Source21:20 - The British Perspective on Policy and Culture28:18 - Innovations in Cyber Defense: Zero Trust in DNS31:48 - Advice for the Next Generation of Defenders36:07 - Finding Balance in Markets, Technology, and Bitcoin41:34 - Final Message: Find What You Love and Go Do It44:20 - Outro#CareerAdvice #Cybersecurity #SoftwareDevelopment #OpenSource #TechPhilosophy#PassionVsMoney #DeveloperLife #TechCareer #IETF #ZeroTrust #WillEarp #DavidRedekop#adamone #adamnetworks

In today's episode of the Defender's Log, we welcome special guest Tommy Jensen, an internet technologist with expertise in IPv6, Zero Trust, and standards. The episode covers Jensen's career journey from an AppleCare contractor to a pivotal role in advancing internet technologies. The discussion delves into the importance and challenges of migrating to IPv6, and the need to overcome legacy systems in enterprise networks. Jensen shares insights into his focus on DNS and Zero Trust, stressing the balance between privacy and security. The episode also explores the benefits of encrypted DNS, the drawbacks of TLS termination, and the broader implications for the future of the internet. Finally, Jensen emphasizes the significance of using the internet to connect and understand diverse cultures and circumstances.00:00 Introduction and Guest Introduction02:18 Tommy Jensen's Background and Career Path07:09 The Importance of IPv608:00 Challenges and Benefits of IPv6 Adoption18:08 DNS and Zero Trust39:21 The Future of the Internet and Final Thoughts

In the inaugural episode of 'The Defender’s Log,' host David Redekop converses with cybersecurity veteran Chester Wisniewski to explore the dynamic field of cybersecurity. They discuss the differentiation between privacy and security, the evolution of hacking from the 1980s to the present, and pivotal moments that reshaped information security. Chet shares anecdotes from his extensive career, offering a deep dive into the challenges and successes of defending against cyber threats. Listeners will learn about the importance of defense-in-depth, the impact of pivotal virus outbreaks, and the emergence of profitable cybercrime. Chet also provides valuable advice on navigating a career in cybersecurity, emphasizing the significance of practical problem-solving and mentorship. Tune in to gain actionable insights and a positive perspective on securing the digital world.Timestamps - 00:00 Introduction01:08 Welcome to the Defender's Log01:47 Guest Introduction: Chet Wisniewski05:21 Early Days of Cybersecurity09:05 Evolution of Cyber Threats15:10 Challenges in Cybersecurity21:08 Personal Stories and Sacrifices25:33 Advice for Aspiring Cyber Defenders33:08 Closing Thoughts and Future Events#Cybersecurity #Infosec #AIethics #HackingHistory #VR #ChetWisniewski #DigitalDefense #PrivacyVsSecurity #TechPodcast #DefendersLog #Cyberwarfare #CyberCrime #FutureOfTech #CyberEthics #EthicalHacking