Ahmad Almorabea
The Cyber Riddler
The Cyber Riddler is a podcast that discusses interesting topics in the field of information security. It explores different areas and situations in real-life cyber security engagements and activities. Episodes feature guests from different backgrounds such as hackers, security analysts, cyber security managers, bug bounty hobbyists and more.
Author
Ahmad Almorabea
Category
Podcast website
Latest episode
Jun 18, 2026
Where to listen?
Podcasts in the app Replaio Radio Coming soonPodcasts are coming to the app soon. Install now and be the first to see a whole new take on podcasts
Episodes
Proof or It Didn't Happen 18.06.2026 14:59
Every vulnerability report has the line we all write: "This results in remote code execution as root." And every time, the engineer on the other side writes back: "It doesn't run as root, it runs as a dedicated, low-privilege account. Where's the PoC?" That gap is the episode: the difference between finding a bug and actually being able to use it. X: @almorabea X: @Cy...
Scoping Nightmares 02.06.2026 9:10
What happens when a penetration test starts without a clear scope? In this episode, we discuss the most common scoping mistakes in cybersecurity engagements, how they impact both clients and consultants, and why a poorly defined scope can turn a simple assessment into a nightmare. From missing assets to unrealistic expectations, we'll explore real-world lessons and best practices for getting...
Logs Don't Lie 21.09.2025 7:48
Dive into the hidden world of Windows Event Logs — where SOC analysts uncover patterns, trace intrusions, and expose how attackers exploit the very logs meant to catch them. Learn how to spot the signals, build timelines, and stay one step ahead of the breach. X: @almorabea X: @CyberRiddler Website: https://thecyberriddler.com
Initial Access 21.11.2024 6:57
In this episode of the cyber riddler, we talked about the critical first stage of cyberattacks: Initial Access. Learn how hackers breach organizations using tactics like phishing, exploiting vulnerabilities, stolen credentials, and supply chain attacks. We’ll explore real-world examples, discuss why initial access is so crucial, and share practical strategies to defend against these threats. Whet...
Threats and Defenses 05.09.2024 12:47
In this episode, we explore the modern cybersecurity threat landscape, examining sophisticated attacks like ransomware-as-a-service, supply chain breaches, and file-less malware. We discuss essential defensive strategies, including the use of Zero Trust architecture, behavioral analytics, and other tools. Alongside these defenses, we emphasize the importance of proactive threat hunting and a stron...
Zero-Day Exploits 04.06.2024 11:33
In this episode of The Cyber Riddler podcast, we venture into the shadowy world of zero-day exploits, one of the most well known threats in the cybersecurity world . Zero-day exploits represent vulnerabilities that can be targeted before they are even known to exist, making them a significant concern for both organizations and individuals. We explore the lifecycle of a zero-day exploit, from disco...
Threat Hunting 26.03.2024 6:33
In this episode, delve into the world of cyber security through the lens of expert threat hunters. As they navigate the complex digital landscape, these skilled professionals employ advanced techniques and tools to investigate systems meticulously. Their mission: to unearth hidden implants and payloads that lurk undetected, posing significant risks. Through a combination of expertise, intuition, a...
Phishing World 06.02.2024 8:14
In this episode of The Cyber Riddler, We dive into the cunning world of phishing scams, focusing on how Normal Users are reacting to these emails and how SOC (Security Operations Center) analysts can expertly analyze suspicious emails. We outline the essential tools and steps for dissecting emails, from examining sender addresses and email headers to scrutinizing links and attachments for malicio...
HTTPS and TLS Tales 30.12.2023 10:23
Explore the world of web security in our latest episode, 'HTTPS and TLS Tales' deep into the mechanisms that differentiate HTTPS from HTTP, uncovering the layers of encryption, authentication, and data integrity that safeguard our online interactions. From the pivotal role of TLS to real-world cases of security breaches and the evolving landscape of cyber threats, this episode offers a...
Threat Intelligence 10.12.2023 7:13
In this episode, we'll dive deep into the world of Threat Intelligence, exploring its critical role in cybersecurity. From the basics of data collection to the challenges of information sharing, we'll cover it all. Discover how Threat Intelligence empowers organizations to detect and respond to cyber threats, and stay ahead of evolving tactics. Join us for a comprehensive discussion that...
Lateral Movement 21.11.2023 8:49
Dive into the shadowy world of lateral movement in cybersecurity. In this episode of The Cyber Riddler. Explore how attackers stealthily navigate networks post-breach, using techniques from credential exploitation to abusing legitimate tools. Featuring real-world scenarios, this episode unveils the strategies behind advanced persistent threats and red team tactics. Learn about essential defenses...
Insider Threat 07.11.2023 8:07
In this episode of The Cyber Riddler, we dive deep into the shadowy world of insider threats. We unravel the complexities of individuals within an organization who pose a risk to its security from the inside. We'll explore real-life cases, dissect the motives behind insider attacks, and discuss the latest strategies and technologies to safeguard your company against this often underestimated...
The Lazarus Group 20.09.2023 6:58
In this episode we've talked about The Lazarus Group, Which is a cybercrime group made up of an unknown number of individuals run by the government of North Korea. We've discussed about their latest campaign where they targeted security researchers. and how they did the same act in the past. hope you like the episode. Twitter: @almorabea Twitter: @CyberRiddler Website: https://thecyberri...
Malware Analysis - Karsten Hahn 06.09.2023 35:30
In this episode we've covered the basics of malware analysis. Things that malware authors want to hide in their malware. How they want to make it hard for malware analysts to do their job. Our guest today has an extensive experience in malware analysis. He publishes many videos on malware reverse engineering on his channel and he is very knowledgeable when it comes to this field. Full Intervi...
Kernel Drivers - Yarden Shafir 23.08.2023 47:27
In this episode we've talked about kernel drivers, We covered a variety of different topics like how to load a driver, signing process, HVCI and others, and we closed with Intel CET and Shadow stack. Yarden has a very great experience when it comes to windows internals topics, her work mainly in the defending side, she previously worked at SentinelOne and CrowdStrike and currently she is a se...
Vulnerability Research - Kevin Backhouse 26.07.2023 1:02:23
Dive into cybersecurity's captivating world with our latest episode on Vulnerability Research! Discover the secrets of ethical hackers, uncover different vulnerabilities, and explore responsible disclosure processes. Get insider tips and tricks to level up your cybersecurity knowledge. Our guest Kevin is a renowned cybersecurity specialist and ethical hacker with years of experience and a ke...
Windows Internals - Pavel Yosifovich 16.07.2023 45:26
This Week's episode is about Windows Internals in depth, we've talked about things from an offensive and defensive perspective. Things like Hooks, Kernel callbacks, how security companies are using them and how Red Teamers are leveraging them as well. We've talked about many other concepts such as user space mode and kernel space mode, Patch Guard and many others. This episode is pa...
Getting started with DFIR - Paula Januszkiewicz 12.07.2023 44:00
In this episode we talked about Digital forensics and Incident response aka DFIR, how to get started, and how crucial it is to deal with incidents. We also talked about various topics including memory dump and analysis, ransomeware and stories from the past about interesting incidents. This episode was starring Paula Januszkiewicz, CQURE CEO. Who's Paula? https://thecyberriddler.com/person/pa...
DNS - Attacks 10.06.2023 6:15
This week's episode talks about DNS in general and DNS attacks, we barely scratched the surface. DNS is playing a major role in our network communication and hackers take advantage of DNS attacks for their own gain. Twitter: @almorabea Twitter: @CyberRiddler Website: https://thecyberriddler.com
LoLBins - Living Off The Land Binaries 20.05.2023 6:03
LoLBins or Living Off The Land Binaries are binaries within the operating system it doesn't matter if it's a windows or unix based system. these binaries are heavily utilized by hackers to avoid detections, in this episode we will be diving into the world of LoLBins and we will discover how hackers are using them. Twitter: @almorabea Twitter: @CyberRiddler Website: https://thecyberriddl...
Browser Exploitation 16.04.2023 6:40
In this episode we scratched the surface of browser exploitation methods and we went through different techniques used by the attackers to gain access to your device. We also went through different old CVEs that have been used in the past. We hope you enjoy the episode. Twitter: @almorabea Twitter: @CyberRiddler Website: https://thecyberriddler.com
Ransomware with Lance James 22.03.2023 59:02
In this episode we talked about cryptography in general and then we dived into the world of ransomware starting from when ransomware approximately started and then we talked about ransomware tactic and delivery mechanisms , evasion techniques and then we talked about the zeppelin ransomware and how lance and his team were able to recover and reconstruct the keys by doing some RSA factorization an...
Episode 4 [En]: PRNGs and Randomness 17.02.2023 6:14
Today's episode is about Pseudo Random Number Generators and how we can achieve Randomization. We also explain how applications can suffer big time when they don't have random values generated in their crypto systems Twitter: @almorabea Twitter: @CyberRiddler Website: https://thecyberriddler.com
Episode 4 [Ar]: PRNGs and Randomness 17.02.2023 8:16
Today's episode is about Pseudo Random Number Generators and how we can achieve Randomization. We also explain how applications can suffer big time when they don't have random values generated in their crypto systems Twitter: @almorabea Twitter: @CyberRiddler Website: https://thecyberriddler.com
Episode 3 [EN]: Juicy Exploits 01.02.2023 9:43
Exploit code are amazing, But sometimes the technique behind it is what makes it shiny, In this episode I want you to look at exploit codes from different perspective. not just finding vulnerabilities for the sake of finding vulnerabilities. always change your mindset when you do R&D from finding one vulnerability to finding one technique that works for majority of vulnerabilities Reference :...
Similar podcasts
Replaio is not a podcast publisher; show names, artwork and audio belong to their authors and are distributed through public RSS feeds.