.NET Rocks! Coding for Security with Chris Ayers
5 snips
Mar 25, 2026 
Chris Ayers, an Azure reliability engineer focused on resiliency and distributed systems, and international speaker on cloud architecture and security. He explores MITRE ATT&CK, logging and anomaly detection, supply chain risks, CVE prioritization, and build-time defenses like SBOMs and signing. Short, practical takes on detection, pipeline hardening, and dev-ops collaboration.
AI Snips
Chapters
Books
Transcript
Episode notes
ATT&CK Reframes Security Around Attacker Behavior
- MITRE ATT&CK frames security as attacker-centric tactics and techniques rather than checklist vulnerabilities.
- Chris Ayers explains ATT&CK catalogs real attacker behaviors like reconnaissance, lateral movement, and persistence to shape detection and defense.
Credentials Can Be Valid But Behavior Reveals Compromise
- Valid credentials alone don't prove legitimate use; focus on behavioral differences of compromised accounts.
- Chris Ayers and hosts note attackers may stealthily alter logs or fill disks to hide activity, so monitoring behavior matters more than mere authentication success.
Side Channel Hacks Can Leak Activity Through Lights And Sounds
- Richard recounts a stealth attack that leaked information via side channels like light or audio capturing correlated activity.
- He references research showing sensors and cameras can infer server activity from environmental changes, illustrating non-obvious exfiltration paths.
