In this part of the lecture on Cybersecurity, Bogdan explains the process of collecting information for penetration testing and security auditing, focusing on both external reconnaissance and internal cloud security assessments. External Reconnaissance Internet Scanning Services: Tools like Shodan, ZoomEye, and Censys are used to scan the internet and gather information about hosts. These services identify open ports, SSL/TLS certificates, and underlying technologies (e.g., Nginx, Apache). Information Leakage: SSL/TLS certificates can inadvertently expose subdomains if not managed correctly. Protocol Analysis: Identifying protocols on specific ports, such as port 25 for SMTP, provides potential attack vectors. Security professionals may use tools like telnet to grab service banners for further investigation. Domain Information: "Whois" lookups are a basic component of reconnaissance, providing contact information and location details related to domain registration. Purpose: The primary goal of this reconnaissance is to determine the "attack surface" of a target system before starting an assessment. Cloud Security Auditing Automated Auditing: Tools like ScoutSuite can be used to audit cloud environments. By providing API keys for cloud services, these tools connect to the environment and check configurations against security templates. Common Misconfigurations: A frequent issue is the accidental exposure of services (such as S3 buckets or databases) to the public internet. Developers may not realize their infrastructure is publicly accessible after deployment. Internal vs. External Checks: While penetration testers perform external checks to find what is exposed, organizations should also perform internal audits using checklists to ensure that services are not inadvertently opened to the public. Check out our workshops and events calendar at: https://luma.com/calendar/manage/cal-NHAHHepuTWOYDae/events

A voice agent that runs in the cloud, knows your business well enough to answer customer questions and close deals while you sleep. 📞🌙 At AI Start Academy we hand you the tools, the stack, and the live deployment — in one day. Here’s what you walk away with: ☎️ A real phone number — AI picks up every call 🗓 Google Calendar integration — books appointments automatically 🗣️ Cloned human voice — powered by ElevenLabs 🔄 n8n workflows — running 24/7 without you 🧠 RAG system — AI trained on YOUR business data

Penetration testing, also known as "pentesting," is a legitimate and controlled assessment where a specialist is hired by a company to perform hacking activities. Because pentesters and hackers share the same tools and techniques, this process allows for the identification of security weaknesses in a way that mimics real-world threats. Key Phases of Penetration Testing While methodologies can vary, the process generally follows eight main steps: Planning and Preparation: The scope is defined, covering areas such as websites, internal networks, cloud environments, or mobile applications. This stage involves legal agreements, including Non-Disclosure Agreements (NDAs) and clear "rules of engagement" that dictate when testing can occur and what limitations are in place (e.g., bandwidth restrictions). Reconnaissance: The specialist passively collects data about the target, such as emails, domains, and credentials. Scanning and Enumeration: An active phase where the specialist performs tasks like port scanning and searching for open directories, backups, or potential leaks. Vulnerability Assessment: Automatic web vulnerability scanners are utilized to detect known security flaws. Exploitation: The specialist exploits the discovered vulnerabilities. This is a critical stage where they may pause to confirm with the client whether they should continue or stop. Post-Exploitation: After successfully hacking a system, the specialist may attempt to elevate privileges to become an administrator or expand access to other systems. Reporting: Documentation of the findings for the client. Remediation: Addressing the identified issues. Tools and Technical Concepts Scanning Tools: Tools like NMAP are commonly used to identify open ports. Commercial tools such as Acunetix, Nessus, and Burp Suite are also employed to generate vulnerability reports. Ports and Protocols: There are 65,535 possible ports for both TCP and UDP protocols. Since a full scan is time-consuming, specialists often focus on the "top 100" most commonly used ports.

In this lecture Pavel Spesivtsev discusses OpenClaw, a highly popular GitHub repository, focusing on its rapid growth and the significant security risks associated with its agentic AI architecture. Overview of OpenClaw Rapid Popularity: OpenClaw gained 150,000 stars on GitHub in just 70 hours, an unprecedented rate that surpassed major projects like Linux, Google's Docker orchestration systems, and various operating systems. Functionality: While not considered revolutionary by some software engineers, it utilizes AI agents in a loop to repeatedly execute missions based on user input. Architecture: It incorporates smart and conventional choices in memory architecture that are difficult to achieve with other automation tools. Security Concerns "Security Disaster": The default setup is described as extremely dangerous because it can expose total control of a user's workstation, including microphones, cameras, files, passwords, and credit cards. The Lethal Trifecta: Pavel explains that OpenClaw's danger stems from a combination of three factors: Action Execution: The ability to execute commands and send data. Untrusted Inputs: Receiving information from sources like emails, messages, or web pages. Sensitive Information Access: Having the ability to read private files and sensitive data. Uncontrollable Risk: If all three of these aspects are present, the system becomes "totally out of control," and currently, no methodology can guarantee 100% security for this type of agentic AI. Defense Strategy Sandboxing: To mitigate these risks, the suggested strategy is to isolate the AI in a "sandbox" or "jail" environment. Limiting Access: By ensuring the AI has no access to sensitive information while it executes actions and receives inputs, its potential to cause harm is significantly limited. ━━━━━━━━━━━━━━━━━━━━━━ Want to go deeper? Join our next AI Automation Bootcamp cohort — in-person in San Francisco or online via Zoom. Next Cohort: May 11 | https://luma.com/93k9zm39

AI Start Academy was born in San Francisco, right in the heart of innovation and world-changing ideas. Our mission is simple: bring the latest knowledge from top Silicon Valley minds to the world. We invite leading experts, founders, and engineers to our SF classroom for live lectures, hands-on workshops, and behind-the-scenes insights. Every lesson is captured, refined, and shared with our global community — so you can access the same cutting-edge thinking that fuels the Valley. This community exists to ignite a new wave of entrepreneurs, builders, and professionals who want to learn, create, and grow together. 🌍✨ Let’s build a bright future together