Wireshark is a powerful tool for packet capture and analysis, but what if you can’t use it? In this video, I’ll show you alternative methods for packet collection in environments where Wireshark isn't available or practical. Learn how to use native Windows tools like Packet Monitor (pktmon.exe) and Network Shell (NetSH), as well as third-party tools for Windows, Linux, and macOS. We’ll also cover how to analyze your captures with tools like Teleseer and Packet Streamer. Whether you’re on a headless instance, working in a restricted environment, or need to be discreet during a penetration test, these techniques will help you get the data you need. 0:00 What to do you if you don’t have Wireshark? 0:35 Packet Monitor (pktmon) on Windows 1:46 Network Shell (NetSH) for Older Windows Version 3:24 Analysing PCAPs on Teleseer 4:07 Using tcpdump on Linux and Mac OS 4:59 Remote PCAP Capture with SSH 6:20 Distributed Capture with Packet Streamer by Deep Fence 10:03 Conclusion Links: * Microsoft etl2pcapng https://github.com/microsoft/etl2pcapng * PacketStreamer fork (donwload binaries under releases) https://github.com/cyberspatiallabs/PacketStreamer 👍 LIKE AND SUBSCRIBE 👏 #wireshark #Teleseer #Cyberspatial​ #PCAP Get next-gen PCAP visualization and analysis at https://cyberspatial.com

TunnelVision is a new vulnerability that lets any attacker that pretends to be a DHCP server to inject any IP address routes into your computer’s routing table. This potentially lets them redirect traffic so it doesn’t go through your VPN, create a denial of service, or even man-in-the-middle your network traffic. In this video, you’ll see the attack happen live in action, how it works, and bigger cybersecurity consequences for it besides just turning off some someone’s VPN. 0:00 Introduction to Tunnel Vision Vulnerability 0:16 Demonstration of the attack in a lab environment 1:44 Explanation of the attack scenario 2:20 Effects of the Tunnel Vision attack on VPN protection 3:00 Risks associated with the vulnerability 4:10 Potential impact on critical infrastructure 4:33 Mitigation strategies for VPN users 5:00 Using virtual machines for added security 5:18 Considerations for using mobile hotspots 5:28 Setting up firewall rules to prevent attacks 5:40 Endpoint detection response (EDR) solutions 5:50 Network security monitoring tools 6:12 The importance of understanding networking fundamentals 7:03 Conclusion and invitation for discussion CVE: https://nvd.nist.gov/vuln/detail/CVE-2024-3661 Tunnel Vision Code (Try it out): https://github.com/leviathansecurity/TunnelVision More Info: https://www.leviathansecurity.com/blog/tunnelvision 👍 LIKE AND SUBSCRIBE 👏 #TunnelVision #Teleseer #Cyberspatial​ #VPN Get next-gen PCAP visualization and analysis at: https://cyberspatial.com

Analyzing PCAPS is one of the best ways to get bottom- up visibility on network issues and gaining a quick understanding of your network. But how to you collect them in the first place? The three main ways are (1) Directly capturing from a host device, (2) SPAN port on a switch, (3) Network taps. In this video we're going to go over the pros and cons of each method and visualize what the captures look like. 00:00 Introduction 00:25 Direct Packet Capture 04:03 Capturing with a SPAN Port 08:29 Network TAPs 11:35 Comparing Techniques 12:05 Unified Analysis 12:30 Conclusion 👍 LIKE AND SUBSCRIBE 👏 #PacketCapture #Teleseer #Cyberspatial​ Get next-gen PCAP visualization and analysis at https://cyberspatial.com

Whenever you visit a website, your browser could be making hundreds of connections to other URLs in the background. These connections could be loading media, displaying ads, or deliver potentially malicious code. This video will show you how to analyze all the connections your browser makes when you access a website. You’ll learn how to use the browser’s developer tools to record website network traffic, extract URLs using a Powershell script, and analyze any suspicious links with VirusTotal. This workflow is especially useful for incident responders or security researchers who need to understand the various connections a website makes when people connect to it. 00:00 Why You Should Analyze Website Connections 00:44 Using Developer Tools to Record Network Activity 01:36 Analyzing Network Connections Made by a Website 02:38 Individual URL Analysis With Virus Total 03:33 How to Download and Parse HAR Files 04:04 How to Extract URLs from a HAR File in Windows with PowerShell 05:58 What Are The Upsides of using Developer Tools to Record Network Traffic? 06:24 Downsides of Using This Method? The PowerShell script shown in the video and scripts for MacOS and Linux are available here: https://github.com/cyberspatiallabs/idle_computer 👍 LIKE AND SUBSCRIBE 👏 #cyberspatial​ #digitalforensics #malwareanalysis Get next-gen PCAP visualization and analysis at https://cyberspatial.com

Hey guys, big news at Cyberspatial. It's been a really long time since I've posted any videos, mostly due to working on a new kind of visual network monitoring and visibility tool called Teleseer. There's a ton of work involved and simply not enough time to build a company and a YouTube channel at the same time. That's why I'll be introducing a special someone to the channel who will be a new face for the channel: Dr. Steve. We'll be collaborating together on more technical tutorials ranging from network security to blue team cyber defense topics. It will be a pivot towards more technical content rather than broad topical ones, but this also means a more steady stream of releases for everyone. I'm incredibly thankful for everyone who's been with us so far. Stay tuned for our future videos, and I look forward to continuing the journey together! 00:00 - Why I Haven’t Been Making Cyberspatial videos 01:00 - Welcoming Dr. Steve to the Channel 01:36 - Steve’s Background in Cybersecurity 02:24 - Steve’s Vision and Educational Approach 03:33 - Steve’s Experiences Learning Content Creation 04:04 - Looking Forward to Making More Videos 👍 LIKE AND SUBSCRIBE 👏 #CyberSecurity #Cyberspatial​ #Teleseer Get next-gen PCAP visualization and analysis at https://cyberspatial.com

Ever wonder what makes Israel so good at hacking? How does a small country like Israel consistently produce some of the world’s best hackers and cybersecurity practitioners? What does it take to make it to elite military cyber units like Unit 8200 and Unit 81? The secret is people, not technology. Israel’s cyber success lies in its human capital development system. Everything from assessing and selecting top talent, retaining them, and concentrating everything in one geographic area. Watch now to see how it’s done! DISCLAIMER: Israel is a polarizing topic. We are only presenting research and analysis of Israel from a cybersecurity perspective and take no stance on its political situation. 🚀 We are launching a one-of-a-kind network forensics and analysis tool called Teleseer. Public beta launch happens in October. It’s gonna be amazing. Sign up now to be notified at teleseer.com 00:00 Hacking Exploits of the Israel Defense Forces 01:55 How Did Israel Become So Powerful at Cyber? 05:00 The Key to Starting a Military Cyber Revolution 06:19 How Israel Recruits the Best Hackers 08:04 Key Personality Traits Top Israeli Hackers Have 09:35 How to Retain Top Cyber Talent 12:42 The Future of Israel’s Cyber Force 13:40 Building a Winning Cyber Army From Scratch 👍 LIKE & SUBSCRIBE! #8200 #Israel #Hacking #CyberSecurity

One of the hardest things about learning cyber security is there’s no formal roadmap and a million different places to start. The more topics you explore, the more rabbit holes you discover. It’s really intimidating. How do you manage this? It all starts with having a strategy and structured plan for learning. This way, you can stay on track and make consistent progress. Here are five simple steps to do this: Step 1: Focus on topics related to your existing meaning structures. Meaning structures are areas of knowledge that we can tap into when learning something new. That’s why transitioning from I.T. or programming into cyber security is more accessible than from most other fields. You already have similar meaning structures in place. If you are from a non-technical background, pick a cyber security subfield that’s most related to what you already know. Step 2: Interleave theory and practice to build competency. Doing this allows you to understand new topics from multiple perspectives. It also lets your brain rest and reorganizes during many sleep cycles over the weeks and months. Humans build competency over time, not in a one-time dose at a boot camp or crash course. Step 3: Use teachers to assign you projects and provide feedback. Don’t rely on them for teaching. Many people think that learning is just a matter of someone telling them or showing them how to do something. Knowledge transfer happens by doing projects with guided feedback along the way from a teacher. Try this approach next time you’re working with a teacher, and you’ll be amazed at the progress. Step 4: Build mental models to help organize your knowledge. Learning is more about knowledge organization than it is about accumulation. That’s why you need to acquire good mental models along the way. They are shortcuts that help you organize new information into a visual representation which acts as a meaningful structure for you to learn cyber security topics faster. Step 5: Use mind maps to help visualize and structure your research process. To manage the overwhelming amount of new ideas and concepts you encounter when learning cyber security, you need to map them out on paper along the way. When you can decompose abstract ideas into visual chunks, it’s much easier to identify which areas to focus on or skip. Enjoyed watching this video and found the content valuable? Share it with someone you know to help them learn cyber security faster! P.S. We’re building a network analysis and visualization platform. Want to get notified when we launch? Sign up now at: https://teleseer.com No spam. We only send the emails you want. 00:00 Why Lots Of People Struggle Learning Cyber Security 02:24 Focusing on Topics Related to Your Existing Meaning Structures 05:15 Interleaving Theory and Practice by Spacing Out Your Learning Schedule 06:46 Using Teachers For Practice and Feedback Not For Teaching 09:09 Building Mental Models and Systems To Help You Organize Knowledge 11:34 Mind Mapping to Help Structure Your Research Process 12:24 My Process For Learning Something New 👍 LIKE AND SUBSCRIBE Discord: https://discord.gg/ZKwR9CV Twitter: https://twitter.com/Cyberspatial_HQ LinkedIn: https://www.linkedin.com/company/cyberspatial Chris Sanders' Website: https://www.networkdefense.co/ https://chrissanders.org/

Network mapping is one of the hardest things to do in cyber security. It’s manual, tedious, and there aren’t any good tools out there to do it. Until now. Introducing Teleseer, a network mapping platform that can save your hours of work every day. Whether you’re doing threat hunting, incident response, threat intelligence, penetration testing, or just sysadmin work, you need to Sign-up now at https://teleseer.com

Ever thought of building a cyber security startup? I did. And it almost ruined my life (in a good way). Here’s some of my lessons learned along the way: Life becomes much more stressful. This is because you go from wearing one hat to wearing a dozen hats. Except you can actually only work on one thing at a time. You need to prioritize tasks based on the amount of time it will take to finish and the overall impact it will have on your startup. Saying “no” to busywork becomes Another useful skill is developing the ability to “zoom’ in and out. This is the ability to pivot from detailed, tactical-level work to big-picture, strategic thinking. There’s 3 business personalities in all of us. Striking the balance between your inner Tech, Manager, and Entrepreneur can help you deliver clear productivity in a world of chaos. Building a business can be long and painful. It adds many projects to your life timeline, compressed in a short period. But in the end, it’s going to be a much richer and colorful experience than just coasting and taking it easy. Which is why I’m going to be working on Teleseer, our network mapping software AND pushing YouTube content out. Visit teleseer.com to find out more. Want to join Teleseer’s private beta program? There’s only 10 slots available so do it today! Sign up here: https://bit.ly/3JqLZ90 00:00 Why Did We Stop Making Cyber Security Videos on YouTube? 01:04 The Big Startup Idea to Make Cyberspace Easy for People to See 03:02 Why Startup Life Is One of the Most Stressful Things You Can Do 04:53 How Life As Entrepreneur Is More Like Slavery Than Freedom 06:17 Dealing with Common Health Issues as a Startup Founder 08:32 Is Building A Cyber Security Startup Worth Doing Again? 09:29 What’s In Store for the Future of Cyberspatial? 👍 LIKE AND SUBSCRIBE 📺 Join the discord: https://discord.gg/2ZxFT8MT Follow our LinkedIn: https://www.linkedin.com/company/cyberspatial — Resources — The E-Myth Revisited by Michael E. Gerber https://www.amazon.com/Myth-Revisited-Small-Businesses-About/dp/0887307280 #CyberSecurity #Startup​ #Teleseer

Passing a cyber security certification takes work. Hard work. But what if you’re short on time? Like REALLY short? I passed a cyber cert from SANS in under 5 days just to see if it could be done. And here’s what I learned: SANS cyber training and GIAC certs are two gold standards in cyber security. Weighing in over $7000, they’re what employers look for when hiring cyber talent. Failure can be an expensive option. So whether you’re long or short on time, good prep and planning makes all the difference. Cyber security certifications are hard because there’s so much info to learn. Students often describe cyber security training from SANS as drinking from a firehose. There’s so much content that the GIAC exams are open book! So where should you even start? Here’s some of study tips I like to use: - Backwards plan a study routine from test day - Create tabs, index, and note sheets - Most of your learning happens during sleep - Do something active during breaks - Rehearse practice tests like it’s real - Repeated exposure over time At the end of the day, certs aren’t the most important thing in cyber security. Strong skills and relationships will make you much more successful. When it comes to cyber security certifications, invest in the study process to gain foundational knowledge. Then apply that knowledge in the workplace or home lab. 00:00 SANS and Cyber Security Certs In a Nutshell 01:24 The 5 Day Challenge 03:03 How to Backwards Plan Your Exam 04:08 The Best Way to Study for a SANS Test 06:54 Dealing with Distractions and Losing Motivation 08:30 Tips from a SANS Instructor 09:38 What to do When You Fail 11:34 The No Books Challenge 13:12 Lessons Learned from the Certification 👍 LIKE & SUBSCRIBE!

Commercial VPNs probably hurt your privacy and security more than they help. Behind the layers of marketing sits a darker side of the industry. Ask yourself questions like: - Why trust a VPN company and their ISP over my own? - Who’s actually running these companies? - Why so many VPN ads on YouTube? - What’s up with all the review sites? VPNs are designed to transport devices from a network of low trust to high trust. Or bridge traffic between high and high trust. A site-to-site or corporate VPN both fall in this category. With commercial VPNs, you’re more likely to be transporting your Internet to a network of lower or uncertain trust. Rather than just your ISP seeing your traffic, you grant this privilege to the VPN provider and their ISP too. Most of the providers out there are owned by just a few parent companies. Many of them have hidden ownership and conflicting motivations. Many “no-logging” VPN companies have turned out to be doing the opposite. You shouldn’t use a VPN if: - You want to encrypt your traffic. Most of your traffic is already encrypted because most common sites support HTTPS. Encrypting your DNS queries is becoming standard too in web browsers. - You want to hide your identity. There’s all kinds of other metadata in your network packets available to track you. Advanced actors can correlate them to track and discover your location. There are some cases where using a VPN does make sense though. - You want to mask your IP address. - Circumventing IP blocks to watch Netflix - Getting around national firewalls - Bypassing download limits - Performing offensive security assessments - Conducting OSINT and research If you do need a VPN, the best option is to do-it-yourself. Tunnel back to a home server. Set up a cloud server. Open-source software like Wireguard, Shadowsocks, and SSH makes this easy. Not to mention the hundreds of guides out there to follow. 👍 SUBSCRIBE AND FOLLOW 🤝 SHARE THIS VIDEO: https://badvpns.com 📖 Additional Reading: https://overengineer.dev/blog/2019/04/08/very-precarious-narrative.html https://krebsonsecurity.com/2017/03/post-fcc-privacy-rules-should-you-vpn/ https://twitter.com/SwiftOnSecurity/status/854131577353367554 https://drewdevault.com/2019/04/19/Your-VPN-is-a-serious-choice.html You might be asking at this point, 00:00 Should You Stop Using VPNs? 01:00 The Mysterious History of Snake Oil 02:09 The Problem With VPNs 03:46 How People Think VPNs Work 04:59 What They Don't Tell You About VPNs 07:42 BadVPNs 08:10 How the CIA used CryptoAG to Spy on the World 10:13 How Spy Agencies Would Use VPNs 11:35 When Should I Use a VPN? 13:41 Signs of a Trustworthy VPN Provider #VPN #Privacy #Security

Cyber defense is much more than security. “Security” can be misleading since it encourages people to think in terms of secure or insecure. This way of thinking leads to an overemphasis on preventative measures. Just like the human body, you need many more layers than that. A good cyber defense will also focus on deception, detection, and response in addition to prevention. In this video, we cover the four most important principles of cyber defense. #1 Security Architecture: You can’t defend what you can’t see. It’s really hard to build strong cyber defenses if the foundations aren’t sound. Security architecture is about improving visibility in the network through segmentation. You also want to maintain a good asset inventory and map to quickly identify what’s even there. Implementing policies like blocking removable media or blocking protocols are also architectural in nature. #2 Security Monitoring: Every asset connected to the network needs to generate telemetry. This gives you visibility into the activity occurring on them. Network traffic itself should also be sent to an IDS sensor like Snort or Zeek to generate security data from it. These logs should be aggregated and synced to a centralized location for monitoring. A team of analysts can build systems to detect and alert on anything anomalous. This team serves as the backbone of the network’s cyber defense. #3 Implement Choke Points For effective security monitoring, it’s key to limit the paths devices can communicate on. Blocking outbound traffic by default is the best way to do this. What is allowed to traverse the network then needs closer inspection. The best way to do this is to force clients to use a local DNS resolver or web proxy to access the Internet. Any traffic not destined for these inspection points is automatically suspect. What does go through can then be analyzed against blocklists or a reputation scoring service. Choke points not only restrict an attacker’s maneuverability but also make it easier to conduct proper cyber defense. #4 Harden Systems with a Security Baseline Systems running default configurations are highly vulnerable to generalized attacks. Deploying a security baseline on your assets ensures a consistent level of hardening against them. It also helps with managing change configuration on your network. Authorities like CIS, NIST, DISA, or vendors will all provide recommendations for different types of systems. These include operating systems, applications, phones, and network appliances. Whether it’s scripts, Group Policy Objectives, or Ansible playbooks, they’ll also offer ways to automatically apply baselines too. 00:00 Intro: How to Improve Cyber Defense For Your Network 01:11 The Biggest Misconception in Cyber Security 02:52 Traditional v. Modern Cyber Defense 05:02 Security Architecture & Building a Defensible Network 07:44 Principles of Security Monitoring: Assets & Endpoints 09:40 Create Choke Points In Your Network For Inspection 12:11 Collect Traffic With Network Security Monitoring 14:13 Hardening Systems with a Security Baseline 16:52 Strategies for Implementing Your Cyber Defenses 👍 LIKE AND SUBSCRIBE 📺 ----- Resources ----- Rob Joyce’s talk at USENIX Enigma 2016: https://www.youtube.com/watch?v=bDJb8WOJYdA #CyberDefense #DFIR #Cyberspatial

Want to win the cybersecurity interview? Learn how to fail first. In a recent interview with Stephen Semmelroth, he shared excellent advice on helping cyber professionals ace their job interviews. In this video, we recap some key takeaways but flipped to reasons why people fail. Some of the reasons why include: - Not conveying a deep and broad understanding of the cyber domain when answering technical questions. - Not demonstrating passion and self-learning abilities through projects outside of work. - Not aligning and contextualizing your application to the job description and company needs. - Poor audiovisuals and personal optics for a virtual interview - Social faux pas and basic etiquette. - Insufficient due diligence about a company Preparation doesn't necessarily mean doing everything right. More often than not, it's avoiding mistakes. Knowing what to avoid during your preparation helps you avoid mistakes. Be prepared. Learn how to fail a cybersecurity interview. FULL INTERVIEW: https://bit.ly/3aLii2y Remote Work Secrets: https://bit.ly/3oWrZjq 00:00 Intro - How to Fail a Cybersecurity Interview 00:37 Not being able to answer the "DNS Question" 02:10 Not having an active side project 03:24 Getting filtered out before the interview 05:19 Failing because of Quiet, Clothes, Camera 06:17 Not doing your due diligence on the company 08:20 Personality and Decency Issues #CyberSecurity #InterviewTips #Cyberspatial

The interview is one of the most crucial parts of applying for a cyber security position. It’s your window of opportunity to start or advance your career. You’ve probably already heard it all: make eye contact, look sharp, research the company... But interviewing for a cyber security position is a little bit different. The technical gap makes it hard for HR professionals to find talented candidates. Just parsing a resume for the right keywords is difficult since terms and definitions in the cyber security industry is inconsistent. In this interview with Stephen Semmelroth, we talk about the recruiting world and considerations when preparing for a cyber security interview. Stephen is a military veteran who’s transitioned from leading top cyber teams to now, the recruiting division at StrataCore, a cyber consultancy. He shares tips and real-life experiences on how to ace the interview, be shortlisted in the process, and get hired for the cyber security job. Several key takeaways Stephen emphasizes when you’re interviewing for a cyber security job include: Alignment. Do your personal goals and abilities align with what the company is looking for? Tailor your resume and interview responses accordingly. Due Diligence. If you’re chatting with a non-technical interviewer, frame your technical abilities in terms of driving business outcomes. Use your OSINT skills to find out the business reasons why a company is looking to fill a position. Decisiveness. Many candidates expect the company to tell them their role. Rather, be decisive about the role you want and communicate with authority why you’re the right person. Appearance. It matters. In virtual interviews factors, like camera, quiet, and sound make a huge impact on the impression for the interviewer. Find an internal referral. This greatly increases the chances of your resume actually being read by a human. Referrals are much less expensive and risky for companies, and they tend to have higher success rates. 00:00 Introduction - Stephen Semmelroth 01:51 What do employers look for in a cyber security candidate? 03:07 How to craft a good cyber security resume 08:27 Do your former titles and responsibilities matter? 10:32 Spraying applications vs. sending targeted ones 13:02 How is a cyber security interview structured? 19:28 What hiring systems do cyber security employers use? 25:06 Using OSINT to research your target company 28:14 The DNS question 35:50 Important non-technical factors of a cyber security interview? 39:31 Reasons people fail a cyber security interview 43:43 Successful cyber security candidates 46:51 Get in touch with Stephen Semmelroth LIKE AND SUBSCRIBE! #CyberInterview #CyberSecurityInterview #Cyberspatial

Russ Memisyazici is a DevSecOps engineer and cloud architect with 30+ years experience in IT and cyber security. From coaching US CyberPatriot teams to building the Virginia Cyber Range, he's got quite the colorful career. By-the-way, it’s pronounced: my-mish-yah-zuh-juh. In this interview, Russ shares his knowledge on: - Cloud risks - Future cloud technologies - Thoughts on cyber certifications - His personal journey in cyber security. There's also advice for starting a DevSecOps career too! DevSecOps combines cyber security with traditional DevOps to help developers deliver secure apps. As a DevSecOps engineer, you’ve got to be well-versed in both software development, IT operations, and cyber security. Whether it’s application security assessments, cloud deployments, or coding, you need a wide range of skills. It’s system administration on steroids. A common DevSecOps workflow would be defining your entire infrastructure and deployment cycle as code. Then you would automate the tests, security assessment, and deployment with a CICD tool like Jenkins. DevSecOps personnel are very sought after in the startup world. When it comes to building scalable infrastructure and deploying apps, DevSecOps folks are commandos of the tech world. It’s a fast-moving domain, with terminology and technology changing from one day to the next. Soon the term “DevSecOps” might even be replaced with “GitOps.” But the most important thing that Russ highlights is to focus on the basics. Fundamentals like networking, scripting, or system administration, don’t change as much. Fancy new technologies that are coming out are all built on top of these skills. But they do take reading books and good old-fashioned keyboarding to acquire. 00:00 Introduction - Aras "Russ" Memisyazici 01:36 What is DevSecOps? 04:10 Why Is DevSecOps Critical for Cybersecurity? 07:24 Role of DevSecOps in Securing Infrastructure 10:04 What Technologies and Skills are Important for DevSecOps? 13:04 How Much Does DevSecOps Pay? 15:47 Roles & Opportunities for DevSecOps 17:25 Books and Resources for Learning DevSecOps 23:20 What is the Cloud? 27:57 What Risks are Associated with the Cloud? 32:22 What's the Future of Cloud Technology? 37:0 How Important Are Cybersecurity Certifications? 44:29 What Is the Value of Cybersecurity Programs? 50:10 What are Shortcomings of Cyber Education Currently? 55:50 Russ's Personal Cybersecurity Journey 1:05:58 Get in Touch with Russ Memisyazici LIKE and SUBSCRIBE ----- Resources ----- Phoenix Project, Gene Kim https://www.amazon.com/Phoenix-Project-DevOps-Helping-Business/dp/0988262592 The DevOpSec Book, Jim Bird https://www.oreilly.com/library/view/devopssec/9781491971413/ Hands-on Security in DevOps, Tony Hsiang-Chih Hsu https://www.amazon.com/Hands-Security-DevOps-continuous-deployment-ebook/dp/B07FNXVKCH Agile Application Security, Laura Bell https://www.amazon.com/Agile-Application-Security-Enabling-Continuous/dp/1491938846 Site Reliability Engineering (SRE) Workbook, https://sre.google/workbook/table-of-contents/ The Site Reliability Workbook, O’Reilly https://www.oreilly.com/library/view/the-site-reliability/9781492029496/ #DevSecOps #DevOps #Cyberspatial