2022 PEN-210 and OSWP Exam Review
TL;DR: A clutch win with three minutes to spare. Simple mistakes eat dozens of minutes. PEN-210 is an up-to-date course
Continue readingCategory: Member Article
Security research. A broader work covering a project or exploring a aspect of security, privacy, or policy. Not an opinion.
Finding Unique Ways to Grow Skills
Most skills take time to hone and master. I’m not only referring to technical but also soft skills related to
Continue reading
Exfiltrating Information with Docker
Overview Mitre ATT&CK calls out Exfiltration Over Web Service: Exfiltration to Code Repository as technique https://attack.mitre.org/techniques/T1567/001/. While it specifically gives an
Continue reading
Security Testing With Web Developer Tools
Burp Suite is the go-to tool to slice and dice web interactions. But sometimes loading up Burp (with all the
Continue reading
Pimp Your Kali
There are many people who download, install, and run Kali in it’s default state. Out of the box, Kali comes
Continue reading
Playing with Numbers in the MUD (Part 1)
Preface This article is not specific to Information Security or covering any ethical hacking topic. Read on if you have
Continue reading
AV Setup for Meetings
A portion of the monthly meeting features recording of both audio and video. This post documents the setup from the
Continue readingPassword Reuse is a Terrible Idea
“76 percent of employees at the world’s largest companies reuse passwords across personal and professional accounts” Chip Witt, SpyCloud I
Continue readingDynamic Public Cloud Server for the Win
TL;DR. Prevent your home IP from being banned Simple, cheap Linux server with dynamic, public IP address Route DNS, HTTP,
Continue reading
Path to Penetration Tester
Path to Penetration Tester My path to penetration tester is definitely not a straight line. Looking back, it’s circular. In
Continue reading