Preview Mode Links will not work in preview mode

Brakeing Down Security Podcast

Jun 6, 2016

Earl Carter spends all day researching exploit kits and using that information to protect customers from various malware payloads that spread ransomware.  This week we sit down with him to understand the #Angler EK.

He starts us off with a history or where it came from and how it gained so much popularity, evolving from earlier EKs, like #BlackHole, or WebAttacker. We even discuss how it's gone from drive-by downloads, to running only in memory, to being used in malvertising campaigns. We even get to hear about how the creators "rent" out the EK, and how they also control the malvertising side as well. Great insights into how the EK eco-system operates...

We talk about some of the vulns used by exploit kits. Contrary to popular belief, the vulns used don't always have to be 0day. Blue teamers will learn valuable insights in protecting your networks from this EK.

Direct Link:



Links referenced during the show:

Earl's slides from Bsides Austin:



Comments, Questions, Feedback:

Support Brakeing Down Security Podcast on Patreon:

#Twitter: @brakesec @boettcherpwned @bryanbrake



Player.FM :

#Stitcher Network:

#TuneIn Radio App:

a year and a half ago

Thanks for the great feedback WIlliam! You may be the first person that I've ever approved on here... :)

Earl was a great interview, it's interesting to hear someone so passionate discuss exploit kits and malware. I almost hear a grudging respect and even a tinge of admiration from him about the painstaking steps needed just to detect it, only to lose it again when they change tactics...

I'll definitely check out your blog posts. I also need to post this show to Cybrary as well.. thanks for the reminder :D


Willian Guilherme
a year and a half ago

Hey Guys,
A shout from Vancouver, British Columbia. That's Willian here.

That's was an awesome podcast episode. I have recently written a post on Cybrary and on my Linkedin about exploit kits. I have been involved with endpoint security quite a lot lately, and started to get deep into Exploit kits, and malware payload analysis.

Here are two posts I have published on the subject:
Why Exploit Kits are a Fast-Growing Threat:
End Point Protection: Your First Line Of Defense:

Thank you for always bringing awesome content to this podcast. Keep up the great work.

Willian Guilherme CISSP,C|EH,PCNSE
Senior Security Consultant