Under Utilized Tools/Resources #1

Many resources, especially web apps/sites used for OSINT come and go as I've mentioned before. However there is one resource I discovered a few years ago and still exists. It is a unique resource but still useful. It's useful for OSINT or just to monitor trends in blackhat circles, but rarely will you find something … Continue reading Under Utilized Tools/Resources #1 →

So you want to be a penetration tester, security consultant, ethical hacker, red teamer or any other offensive cyber security professional? #1

This one is going to be quick, that is because I'm just linking my lecture where I go over where higher education and academia as a whole should move towards as well as provide a general overview of what it means to work professionally within offensive cyber security. Consider this my kick-off post for further … Continue reading So you want to be a penetration tester, security consultant, ethical hacker, red teamer or any other offensive cyber security professional? #1 →

PoC for CVE-2017-16744 and CVE-2017-16748

Wow, so it's been two years or so since I found these two vulnerabilities in an Industrial Control System (ICS) while doing an external penetration test. Before we continue, if you're unsure what an ICS is, here is a link with a definition. With that out of the way, here we go! I fixed up … Continue reading PoC for CVE-2017-16744 and CVE-2017-16748 →

Burp Suite Extensions

Burp Suite is definitely the most used tool for me on a daily basis since I started my new job. Which is funny in a way because in my old job, I found myself relying too heavily on it and trusting it way too much. That said, it is also my favorite tool. Don't get … Continue reading Burp Suite Extensions →