Blog Archive

Check out all blog posts in my blog archive. Click on a headline to read the teaser.

Conferences › InfoSec World 2019
I was at the Magic Kingdom and decided I should go to an InfoSec Conference. Read More ›

Pentesting › Living Off the Land: Opening Powershell When You Can't Open Powershell
When you aren't allowed to open Powershell via normal start menus or links, how do you do it anyway? Read More ›

Pentesting Tools › Web Application Pentesting with Burp Suite (Part 3)
The Next Installment of Pentesting with Burp Suite covers intercepting and modifying requests and responses. Read More ›

Pentesting Tools › Web Application Pentesting with Burp Suite (Part 2)
Continuing the Burp Suite Tutorial Series with a look at Scope, Scanning, and Spidering Read More ›

Pentesting Tools › Web Application Pentesting with Burp Suite (Part 1)
When it comes to pentesting web applications there is nothing quite like Burp Suite. Join me as we dig into Burp Suite with real world practice examples! Read More ›

Pentesting Tools › Selective Proxy Routing with FoxyProxy Patterns
Don't send all your personal traffic to your intercepting proxy when you are testing a web app. Use patterns to choose what gets logged. Read More ›

Travel › The Keys to the Florida Keys
The Florida Keys are a great winter getaway. If you are looking for some tips to help you plan your next trip, take a look! Read More ›

Travel/Lifestyle › Hello World
A little introduction so you know who I am, where I come from, and in a word...why. Read More ›

Pentesting › Living Off the Land With DDE
A pen tester's guide to using native Windows programs and tools, specifically Dynamic Data Exchange (DDE), to excel in your next PenTest! Read More ›

Pentesting › Vulnerable By Design? Apache NiFi
A pentester's guide for combining Apache NiFi, and a hyperdrive to make the Kessel Run (aka execute a reverse shell) in <12 packets! Read More ›

Pentesting › Vulnerable By Design? Cloudbees Jenkins
Achieving Remote Code Execution (RCE) with Cloudbees Jenkins and a little 70s era funk on (my last) your next PenTest! Read More ›

Conferences › WWHF 2018
My first InfoSec Conference was in Deadwood, SD. And it won't be my last. Read More ›