security
Surveillance System with No Monthly Fees!
How to setup a home surveillance system without paying for a monthly subscription.
Professionally Evil Insights
Search for keywords or individual blog posts
Posts
application security
LD_PRELOAD: Making a Backdoor by Hijacking accept()
A demonstration on how to use LD_PRELOAD to create a backdoor in processes by hooking the accept() function.
encryption
PowerShell Tips: How do I Mount a VHD or Lock a BitLocker Drive?
A blog post about using Windows PowerShell to quickly mount or lock a VHD, or BitLocker encrypted drive.
Training
Wild West Hackin Fest 2022: The Return
Follow a consultant to Wild West Hackin Fest 2022 - Way West for a new perspective after a year of experience in the field.
network
How to Create Custom Probes For NMAP Service/Version Detection
A post on how-to write NMAP version service probes via the nmap-service-probes file.
how to verify pgp signature
How to verify PGP signatures
This post shows you how to do a pgp signature check with gpg
Vulnerability
Digging Between the Couch Cushions - CouchDB CVE-2021-38295 Breakdown
In this blog post we’re going to take a look at the recent CouchDB vulnerability, CVE-2021-38295, which I was credited with discovering. You can read...
Linux X86 Assembly - How To Test Custom Shellcode Using a C Payload Tester
Overview In the last blog post in this series, we created a tool to make it easy to build our custom payloads and extract them. However, what if we...
It Was The Best Of Times, It Was The Worst Of Times...A Tale of Two Passwords
Good passwords gone bad.
Low Hanging Fruit Ninja: Slashing the Risks of the Human Element
A long time ago in a galaxy far, far away, I was not a Security Consultant. I was a Chef. And I worked as a corporate Chef for an organization that...
How to configure BurpelFish
I recently was doing a pentest and was continuously looking up translations for words, and thought “there has to be a better way…”. That is when I...
Linux X86 Assembly - How To Make Payload Extraction Easier
Overview In the last blog post of the X86 Linux assembly series, we focused on how to make our Hello World payload friendly for use as a payload in...
A New Consultant’s 1st Con - Wild West Hackin Fest - Way West 2021
Last month, I found myself Googling: Is weed legal in Nevada? This was the day after arriving in Reno for Wild West Hacking Fest – Way West 2021. I...
Linux X86 Assembly - How to Make Our Hello World Usable as an Exploit Payload
Overview In the last two tutorials, we built a Hello World program in NASM and GAS for x86 assembly. While this can help us learn x86 assembly, it...
The Best Way to Capture Traffic in 2021
How can we do analysis without Wireshark? For Linux and macOS that utility has been tcpdump for quite a while; In Windows, we can use netsh.
Run as Admin: Executive Order on Cybersecurity
On May 12, 2021, President Biden issued an executive order on cybersecurity. This new order combines many trends we’re already seeing in the Fortune...
Linux X86 Assembly - How to Build a Hello World Program in GAS
Overview In the last tutorial, we covered how to build a 32-bit x86 Hello World program in NASM. Today, we will cover how to do the same thing, but...
Linux X86 Assembly - How to Build a Hello World Program in NASM
Overview A processor understands bytecode instructions specific to that architecture. We as humans use mnemonics to make building these instructions...
AppSec Cheat Code: Shift Left, Shift Right, Up, Down & Start
Seamless and unobtrusive security is the future. We are huge advocates of shifting left and moving security testing earlier in the development...
A Hacker’s Tour of the X86 CPU Architecture
Overview The Intel x86 CPU architecture is one of the most prolific CPU architectures for desktops, laptops, and servers. While other architectures...
Three Excellent API Security Practices Most People Neglect
We are very much in the age of APIs. From widely-used single-purpose products like Slack to cloud-based solutions like Amazon Web Services (AWS) and...
LD_PRELOAD: How to Run Code at Load Time
Today I want to continue the series on using LD_PRELOAD. In previous posts, we covered how to inject a shared object binary into a process, and...
Announcing Burp Co2!
This is for those of you who do web pen testing with Portswigger’s Burp proxy tool! Over the past couple of months I have been using my Java skills...
Converting NMAP XML Files to HTML with xsltproc
NMAP is a wonderful network scanner and its ability to log scan data to files, specifically XML, helps quite a bit. This enables the scan data to be...
Solving the November 13th Detective Nevil Mystery Challenge
Overview Each week on Friday, we post a social media challenge known as “Detective Nevil Mystery Challenge”. On November 13th of 2020, we released a...
3 Reasons to Pentest with Brave
Penetration testing is a race against the clock. Often, we only have a few days to examine all the functionality of a web application or an API. That...
Not-So-Random: Using LD_PRELOAD to Hijack the rand() Function
Today I wanted to continue the series on using LD_PRELOAD. In today’s post we are going to use LD_PRELOAD to hijack the rand() function in a...
Boolean Math (NOT Logic) – CISSP Domain 3
Hello everyone. We’ve got another Boolean math session lined up for you today. This time we’re going to take a quick look at the NOT logic and...
The Death and Rebirth of Musashi.js OR How I turned personal failure into better teaching tools.
A little background… As I stood in front of a class of developers trying to explain cross-origin resource sharing (CORS), I knew I wasn’t conveying...
Boolean Math (XOR Logic) – CISSP Domain 3
Hello everyone. We’ve got another Boolean math session to look over today. Our focus this time will be on the XOR logic. The XOR stands for...
LD_PRELOAD - Introduction
Today I wanted to start what I plan to be a small series of blog posts about LD_PRELOAD. LD_PRELOAD is related to Linux based systems and...
Boolean Math (OR Logic) – CISSP Domain 3
Today we are going to take another look at some Boolean mathematics. In particular, we’re going to focus on the OR operational logic, as covered in...
Proxies, Pivots, and Tunnels - Oh My!
Forward When talking about a proxy or a pivot or a tunnel, we could be talking about very different things. However, to me, these terms could mean...
Boolean Math (AND Logic) - CISSP Domain 3
Today we’re going to take a quick look at the AND Boolean logic, which is covered in Domain 3 of the CISSP common body of knowledge (CBK). To begin...
How to configure Android (Virtual) for Mobile PenTest
This post is about setting up an Android Virtual Machine (AVD) for a mobile application penetration test.
Game Hacking Part 1 - Equipping Your Loadout
Why Bother with Video Game Security? Video games are more than just entertainment. Gaming is a massive industry which by some accounts is estimated...
The OPSEC of Protesting
For the past three months thousands of people have been protesting in the United States due to the deaths of George Floyd, Breonna Taylor, Tony...
Encryption – CISSP Domain 3
We’re circling back to some more CISSP-related materials. Today’s topic will be encryption, which can be found in CISSP Domain 3. By its very...
Encoding – CISSP Domain 3
Today we’re going to take a quick look at encoding, as covered in Domain 3 of the CISSP common body of knowledge (CBK). There is often some confusion...
Summer Internship at Secure Ideas
This past summer, I worked as an intern for Secure Ideas. My role at the company was that of software developer, designing applications to streamline...
Bash Tips and Tricks
I know I definitely identify with being a visual learner, and I am happy to help where I can with creating content for the security/sysadmin (system...
Hashing Functions – CISSP Domain 3
Today we’re going to take a quick look at hashing functions, as covered in Domain 3 of the CISSP common body of knowledge (CBK). There is often some...
Visual Learner? Look no further!
Secure Ideas has been in the business for 10 years and over the last ten years we have found that everyone learns differently. There is no set way...
best practices
Waving the White Flag: Why InfoSec should stop caring about HTTPOnly
As a company that is constantly working with our penetration testing clients on understanding where they should focus their efforts, qualifying risk...
Proxying HTTPS Traffic with Burp Suite
This is easy to fix. All we need to do is tell our browser that the Burp CA can be trusted. Because every new installation of Burp generates a...
Einstein Told Us: Why User Awareness is NOT the right focus
“The definition of insanity is doing the same thing over and over again and expecting different results.” – Einstein (Well, not really!) Every day we...
Cooking up Better Security Incident Communications
I am fond of meal kits. I enjoy the entire experience: the scrolling through delicious-looking meal descriptions, the excitement of receiving a...
Asset Discovery
The first step in securing any organization is to understand what you have. Unless you have a strong understanding of the systems and services on...
Getting Started API Penetration Testing with Insomnia
In our blog series on Better API Penetration Testing with Postman we discussed using Postman as the client for testing RESTful service APIs. Insomnia...
[Update] Using Components with Known Vulnerabilities
When an organization has a breach, you would like to imagine that the attacker crafted a new exploit, leveraging a zero-day vulnerability that no one...
Kubernetes Security - A Useful Bash One-Liner
Whether you’re an administrator, pentester, devop engineer, programmer, or some other IT person, chances are that you’ve heard of Kubernetes (k8s)....
Training
How I Became a Security Consultant: AbsoluteAppsec Interview
Every so often, podcasts and such will invite me to speak on a variety of topics. And this week, I was very excited to join @cktricky and @sethlaw on...
Once upon a time there was a WebSocket
This is the story from one of our recent penetration testing engagements. Still, the story is a familiar one for those who are testing newer web...
Building Blocks: Professionally Evil Fundamentals Series
We at Secure Ideas love security education. What we enjoy even more is affordable security education. So we decided to start a Professionally Evil...
Fiddling with Windows: Proxy tools for Win10
If you have been following along with us, you know how to set up a Windows 10 Virtual Machine (VM) for web app pentesting. But now we have run into...
It's Okay, We're All On the SameSite
With Google’s recent announcement that all cookies without a SameSite flag will be treated as having SameSite=Lax set by default in Chrome version...
Top 10 Blog Lists
We have written a lot over the past year and beyond, and we wanted to provide you with our Top 10 lists! Take a look and gain some new knowledge for...
In Case of Fire: Break Windows
When a client calls us to pentest a web application that is only available in Internet Explorer. I cringe. I don’t know if it’s flashbacks from the...
IAM Access Analyzer Review
TL;DR – This is a free tool that helps solve one of the biggest security problems when working in AWS. Turn it on. Turn it on now! Instructions are...
Security Review of Nest Camera
I love tinkering with home automation and security solutions. The simplicity of turning on a light bulb with a voice command makes me giddy, and I...
IAM Root: AWS IAM Simulator Tutorial
If you needed yet another reason to be paranoid about your personal information being exposed, the recent Capital One breach should be sufficient...
My Experience in the CISSP Mentorship Program
A little while back, I was talking with a friend of mine about the different services that Secure Ideas offered, and one of the topics that came up...
Game Console Hacking: Part 1 Lab Setup
This is the first in a series of blog posts on my journey through video game hacking and security. I plan to go through any aspect of this domain...
Using Components with Known Vulnerabilities
[Note: There is an updated version of this article] When dealing with cyber vulnerabilities, there are lots of threats that are unknown and ever...
Better API Penetration Testing with Postman – Part 4
This is the final part of this series on putting together a better API testing tool-chain. In Part 1, I covered a basic introduction to Postman and...
pentesting
Computers are People Too
There are those rare times during pen tests, when you are on a client’s network and you don’t have any valid domain credentials but you do have local...
OWASP's Most Wanted (Continued)
In my last blog I talked about Command Injection and OS InjectionOWASP’s Most Wanted, and will now discuss SQL Injection. So as before, I will be...
Taming the Jungle: Hardening your AWS infrastructure
After nine tutorials, sixteen posts on stack overflow, and several hours or workweeks of effort you’ve finally done it. You’ve finally got something...
10 Tips for Engaging a Security Services Vendor
The Information Security market brought in an estimated $167 billion in 2019 and that’s expected to double in the next 4-5 years according to some...
encryption
File Encryption Using VHD and BitLocker
When I was thinking of topics to write about, the idea of protecting the data we work with came to mind. There’s always some sort of data that we...
pentesting
Automating Red Team Homelabs: Part 2 – Build, Pentest, Destroy, and Repeat
api, automation, devops, home lab, Kali, packer, pentesting, redops, vagrant Now that we understand what the goal is from my first blog post, we can...
Post-Quantum Cryptography Series
Perhaps you have heard of quantum key distribution, or perhaps you are curious as to what quantum computers with sufficient qubits and quantum error...
Welcome to the New Secureideas.com
We are excited to announce the launch of the new Secure Ideas website. It is located at the same url: https://www.secureideas.com. We hope you like...
"That looks ODD" Securing your workspace
When you look at “security” and the big picture, it always seems to come down to the decisions made by the Chief Security Officer (CSO) and Chief...
Better API Penetration Testing with Postman – Part 3
In Part 1 of this series, we got started with Postman and generally creating collections and requests. In Part 2, we set Postman to proxy through...
We take security seriously and other trite statements
Earlier this week, Secure Ideas sent an initial notification regarding an incident targeting us that took place at a vendor. The initial notification...
Better API Penetration Testing with Postman – Part 2
In Part 1 of this series, I walked through an introduction to Postman, a popular tool for API developers that makes it easier to test API calls. We...
Security Misconfigurations
The configuration of web and application servers is a very important aspect of web applications. Often times, failure to manage proper configurations...
Better API Penetration Testing with Postman - Part 1
This is the first of a multi-part series on testing with Postman. I originally planned for it to be one post, but it ended up being so much content...
Android App Testing on Chromebooks
Update: As of March 2021, I’d recommend using Android Virtual Devices over Chromebooks. Chromebooks still work (in many cases) but the AVDs are much...
OWASP's Most Wanted
So you ask who is this OWASP and why do I care? Well, let’s hear it directly from them: “Open Web Application Security Project (OWASP) is a...
How to Test Your Security Controls for Small/Medium Businesses
We often get contacted by small businesses requesting their first penetration test because of compliance reasons, or because of “industry best...
HIMSS 2019 - Champions of Security Unite
Organizations of all sizes and industries face increasing challenges in safeguarding vast amounts of sensitive data, with Health Care being no...
Cave of Broken Mirrors: 3 Issues with AWS Cognito
Secure Ideas is currently working on a revamp and redesign of our website and client portal, to promote a better user experience for our clients....
Cracking WPA Pre Shared Keys
Cracking WPA Pre Shared Keys This is intended to be part 2 of a previous blog (Intro to Wireless Security), which was designed to introduce people to...
Three C-Words of Web App Security: Part 3 – Clickjacking
This is the third and final part in this three-part series, Three C-Words of Web Application Security. I wrote a sort of prologue back in April,...
Fuzz Testing
If you have a brand new piece of software, a program, a network, or an operating system, you will want to test it for any bugs, coding errors or...
#AffordableTraining requires change
In 2019 Secure Ideas is dedicated to offering affordable security training to everyone. This concept has been one of our core goals and passions...
What is Physical Security?
What’s Physical Security? Ok, I’m just going to say it, I’m a physical security guy in a IT security world. So why physical security for IT? Easy,...
Stored XSS: What Is It
In the cyber security world, there are a number of vulnerabilities to be aware of. Today we’re going to look at a specific one; Stored Cross-Site...
2018 Year in Review
As we put the finishing touches on another tremendous year, and look toward the New Year, we at Secure Ideas wanted to take a moment to reflect upon...
hacking
A Container Hacker’s Guide to Living Off of the Land
Sometimes as a pentester you find yourself in tricky situations. Depending on the engagement, you might want to avoid making a lot of noise on the...
The Ignorant Human: Data’s Biggest Threat
For all the money spent on expensive software solutions and expert consultation; an organization is still at a tremendous risk if it is not...
Twelve Days of XSSmas
This series of daily mini-posts, running from December 12, 2018 to December 24, 2018, is intended to provide cross-site scripting (XSS) related tips....
Professionally Evil CISSP Certification: Breaking the Bootcamp Model
ISC2 describes the CISSP as a way to prove “you have what it takes to effectively design, implement and manage a best-in-class cybersecurity...
Teaching an old dog new tricks
We all get older, and technology is always changing. With changes in technologies, we are continually faced with new ways we perform tasks in our...
Network Check Ups
Most people know that taking care of your personal health is important. We get regular check ups and try to keep ourselves as healthy and free of...
Compliance is not Security
Many folks get confused about the difference between security and compliance. Many, especially those less technically inclined, assume that...
Spring Break without Breaking the Bank: Hands On Training
Over the last eight years, one of the main focuses of Secure Ideas has been education. One responsibility we take very seriously is that of growing...
Happy Thanksgiving from Secure Ideas
As we enter the busiest time of year for us (both personally and professionally) we wanted to take a moment and reflect on where we are and why that...
ISC2 Security Congress 2018
Some of the Secure Ideas team headed down to the “Big Easy” last month for (ISC)2’s 2018 Security Congress, and it was a BIG hit. From the various...
Three C-Words of Web App Security: Part 2 – CSRF
This is the second in a three-part series, Three C-Words of Web Application Security. I wrote a sort of prologue back in April, called A Brief...
SamuraiWTF 4.0 Finally Released
In February of this year, Mic posted a blog discussing the future of SamuraiWTF. (You can go read it here if you don’t remember). As we discussed...
Silencing Firefox's Chattiness for Web App Testing
Firefox is one chatty browser! Even if you don’t actually use it for anything, it’s constantly making requests out to the internet for things like...
Not Just Another Notch in Your Belt: Organizational Challenges of PCI Compliance
As an account manager in the world of security, I am constantly confronted with questions surrounding PCI compliance and the challenges organizations...
Gosh Darn Policy Requirements
The Internet was built to be a platform to share information remotely. Since it was created, sharing everything about ourselves and others has...
A Brief Introduction to MFA
If you are reading this, then you are becoming a cybersecurity geek, or you already are one and you just can’t get enough. You wake up at four in...
Automating Red Team Homelabs: Part 1 - Kali Automation
Part 2: /2019/05/automating-red-team-homelabs-part-2-build-pentest-destroy-and-repeat.html Homelab infrastructure got you down? Well, not anymore!...
Still SMiShing You - SMS Scams.
Have you ever gotten a strange text message on your phone that you don’t recognize? Well, be careful because you don’t have to use a computer to be...
Preventive Security for You
-Preventive Security for You- As you go through everyday life, how do you think about your own security? Are you the type of person that may...
Security on the Go!
The use of mobile devices is steadily growing. With this increase comes the need for the users to learn how to safely operate their devices. Just...
Introduction to Wireless Security with Aircrack-ng
Introduction to Wireless Security with Aircrack-ng Today we’re going to walk through a few WiFi testing examples using Aircrack-ng, which is a...
Escaping the Whale: Things You Probably Shouldn’t Do With Docker (part 2)
This post is part 2 of a series of blog posts on container hacking. If you haven’t read the part1, you should check it out. Today I’m going to tell...
Finding Your Weakness: Triaging Your Domains with SWAT
I have been involved in IT and security in one way or another for almost 30 years. I have worked full time for organizations and consulted in a wide...
Defending the Wall: Strong Passwords
Strong passwords are an important part of maintaining accounts and of any organization’s security infrastructure. They are the first line of defense...
Tips for Penetration Testing a PCI environment
Hello everyone! I put together a list of things to help me keep my PCI testing on track, not to mention just as a guideline to start discussions...
Three C-Words of Web App Security: Part 1 - CORS
For those less versed in web applications and how they’ve evolved, I wrote a sort of prologue to this post back in April 2018, titled A Brief...
Watching yOUr Permissions
Often, one of the main goals of a pen tester is to get Domain Admin (DA) rights in a client’s Windows network. But why do we want to get that level...
Going the distance with Burp
Welcome to the 5th blog on Burp Suite, and Happy 4th of July! Please visit Secure Ideas’ previous blogs on using Burp Suite at the following links:...
Ethics of Ethical Hacking
Ethical hacking uses the principles and techniques of hackers to help businesses protect their infrastructure and information (You could also say it...
Checking Under the Bed
I’ve got four kids and part of their chores involve cleaning up their bedrooms. Inevitably, their understanding of “clean enough” never quite matches...
Why are software updates important?
We have all seen the alert that “updates are available,” or “software update needed.” How often have we just clicked “cancel” because it pops up at...
The “Human Sensor” Continuum
The “Human Sensor” Continuum How people can counteract suspicious activity and crime in the workplace As a security professional for over 20 years...
The Importance of Log Reviews
Most companies have logs that are generated daily, but not all companies think to review these or know the importance of them. Log reviews are an...
Escaping the Whale: Things you probably shouldn't do with Docker (Part 1)
In this blog post, I won’t spend too much time explaining what Docker is and is not. You can do some research on your own if you want to learn more...
Information Security: A Strategy for Small Business
The Internet’s importance to businesses of all sizes and across all industries is indisputable. Beyond optimizing efficiency internally, the...
cybersecurity
Social Engineering - Why hack it, when people are just giving away their information!
In today’s technologically driven society, more and more criminals have turned to cyber crime as a means to steal information and intrude on other...
A Brief Evolution of Web Apps
Author’s Note: This was actually meant to be the first part of a series called Three C-Words of Web App Security, dealing with CORS, CSRF, and...
The Report
Being a pen tester is a cool job, we get to break into companies (with permission), steal stuff, and then tell them how we did it. Many testers focus...
Ever Run a Relay? Why SMB Relays Should Be On Your Mind
Time is never on your side when you’re onsite with a client and trying to get the first good foothold, with admin privileges, can seem impossible....
Burp Suite continuing the Saga
Welcome to the fourth blog introducing and exploring the features of Burp Suite. Please visit Secure Ideas’ previous blogs on using Burp Suite at the...
Professionally Evil Support: Educating your family on the basics
For the longest time, I was in my own echo chamber, where everyone knew basic user security and all we discussed were the finer details of...
These Aren't the Password Guidelines You're Looking For
“You don’t need to see his identification.” It’s a classic line. With a flick of the wrist old Ben Kenobi deftly bypasses the identity & access...
Current State of Security in Healthcare
Healthcare organizations are a prime target for many malicious individuals and organizations in the information age. Identity thieves, blackmailers,...
Professionally Evil Web Application Security Class Live in Charlotte NC
Are you a developer who wants to better understand web application security? Are you a security practitioner who needs to delve into web app...
The Future of SamuraiWTF
Samurai Web Testing Framework, if you’re not familiar with it, it’s a linux environment that is primarily now used for teaching web application...
Professionally Evil Web App Pen Testing 101 Course
UPDATE: Updated the done steps. below. Also changed the links from S3 to Git. Since our founding in 2010 Secure Ideas has always tried to focus on...
Security Concerns around Remote Employees
In the cloud-based economy, businesses of every size are hiring remote employees. Remote employees may decrease their capital costs, free the...
Ransomware and Scareware Pop-ups
Every computer owner has had the heart-stopping moment where a popup comes up and says that your computer has been infected. Most people know that...
Full disclosure debate.... again?
The full disclosure debate has raged over the years again and again. While I am sure that many people are tired of hearing about it, sometimes...
Equifax Breach: Why I am not surprised
The Equifax breach, announced in September 2017, is said to potentially impact some 143 million Americans. At this point in time Equifax has not...
Targeted Pineapple Setup (7 easy steps to gather credentials onsite)
The WiFi Pineapple Tetra is a wireless auditing tool from Hak5 that simplifies and automates the process of performing many wireless attacks.
Are You Ready for Your Pen Test?
It is day three of a five-day penetration test engagement and we still don’t have all the information we need to proceed with the test. This...
Ransomware Intelligence Briefing
Ransomware Intelligence Briefing Media reporting on the WannaCry ransomware campaign has contained exaggeration, bad information, and fear tactics....
Protecting your Kids from Online Threats
“The greatest gifts you can give your children are the roots of responsibility and the wings of independence.” — Denis Waitley As information...
Place Your Right Hand On This Glass
One of the hassles of the Yahoo! breach was clearly the coming-home-to-roost quality of the mega-stupid 90’s era “something about you” secret...
You Must Be This Tall . . .
Imagine going in to do an incident response at a fairly large customer that has no visibility within their firewalls, no intrusion detection, no...
An Introduction to Javascript for XSS Payloads
I recently got the opportunity to speak at B-Sides Charleston on cross-site scripting (XSS) payload development. For me, this was a really enjoyable...
Statement by Nick Selby on Bishop Fox / Muddy Waters Report
FOR IMMEDIATE RELEASE: Statement by Secure Ideas Response Team Director Nick Selby on the Report Issued Today by Security Consultancy Bishop Fox...
Cloud-Base Host Discovery Is Easier Than You Think!
During a recent conversation at DerbyCon it occurred to me that some security folks who are just dipping their toes into AWS are struggling a lot...
A Brief BeEF Overview
BeEF, the Browser Exploitation Framework, is a testing tool that allows the penetration tester to look past hardened network perimeter and client...
Burp Repeater
As a consultant for Secure Ideas there are many tools I use often in my daily tasks. One of the many great tools I use in web application testing is...
Hours After The Penetration Test, This CSO Revealed Something That Will Leave You In Tears
We all recognize clickbait when we see it. And yet thousands still click on the links. In today’s world of social media and ad-funded news, a range...
SQLMap Beginnings: What and How
Testing web based applications is not only fun but is often multi-faceted and challenging. Often times a web front end will have places for data...
Announcing Tactical Sec Ops: Cloud Edition Online
2016 is shaping up to be an interesting and exciting time at Secure Ideas. We have always done training in one form or another. Many of you may have...
Wireless Attacking EAP-TTLS with Kali 2 and ALFA AWUS051NH
Is your corporate wifi as secure as you think it is? A common configuration for WPA Enterprise wireless networks is to use a combination of PEAP...
Whose Code Are You Running?
One of my favorite ways to eat Oreo cookies is to twist the two halves apart, carefully set the filling aside, eat both chocolate halves, and then...
Professionally Evil Insights: 2015
Are you interested in knowing which vulnerabilities are the most commonly discovered in penetration tests? How about which industries are doing the...
Reversing Type 7 Cisco Passwords
While working on a recent pen test, I came across a few Cisco routers sitting on an internal network. The fact that they were using default...
We're Just Like the NSA, and Nothing Like Them
During penetration tests, and especially scoping calls, we often get quizzed about what secret, proprietary techniques we’ll use to gain access to...
Red Teaming - Not What You May Have Thought
Lately, I’ve been doing a lot of reading on some less technical topics and I ran across “Red Team: How to Succeed By Thinking Like the Enemy”...
Five Outdated Security Excuses
The Security Industry as a whole has been known to criticize businesses large and small with respect to how they manage security. Why does it so...
Introduction to Metasploit Video
The Metasploit Framework is a key resource for security assessors. Whether you’re goal is to become a commercial penetration tester, to demonstrate...
Introducing Burp Correlator!
This one is for you web penetration testers! This new Burp extension is designed to help with efficiency when you are testing a complex application...
Practical Pentest Advice from PCI
The PCI Security Standards Council released a Penetration Testing Guidance information supplement in March 2015. This document, while geared towards...
Tip: Running BurpSuite on a Mac
Here’s a quick tip I use to save some time when spinning up Burp Suite on a Mac. I use Burp Suite frequently enough that having an icon on my task...
SamuraiWTF 3.2 RELEASED!
We are really excited to announce that SamuraiWTF 3.2 is now available publicly. This release is available at...
Patching binaries with Backdoor Factory
When was the last time you downloaded a binary file from the Internet or grabbed one off of a network share that is used by your organization to...
Burp Suite
And Now... Introducing: Burp BS!
Burp BS… where the “BS” stands for BeanShell. “What on earth is BeanShell?” you may ask? BeanShell is a very old Java library that was designed to...
Reading (Slogging) Through the 2015 Verizon DBIR
When the first data breach investigations report was released by Verizon in 2008, I remember thinking how awesome it was to get some actual data...
Installing Splunk: First stop on the road to log analysis
First thing’s first: What is Splunk and why do I want or need it? The short is answer is Splunk is a data analytics tool that indexes system logs...
MobiSec 2.0 Awesomeness Unleashed!
MobiSec has undergone a major reconstruction and version 2.0 (actually 2.0.1) is now available for download on SourceForge. The popular mobile...
Don't Forget the Little Things!
On January 31st, Deusen disclosed what was described as a Same Origin Policy Bypass flaw called “Universal XSS (U-XSS)” in IE 9 through 11 on Full...
CarolinaCon 11 Slides for Anatomy of Web Client Attack
For those who have asked – my slide deck for Anatomy of Web Client Attacks can be downloaded here. Jason Gillam is a Senior Security Consultant with...
Adventures in LDAP Injection: Exploiting and Fixing
Every pen tester looks forward to that next encounter that includes one of those uncommon vulnerabilities that ultimately result in an exciting...
Professionally Evil Training Event: Multiple classes being offered in Orlando FL April 6-9 2015
Secure Ideas is very excited to announce their training event for April. We have worked with the Core Group and TrustedSec to create an event that...
Web Penetration Testing with Burp and CO2
Start 2015 right with a free web session to learn all about the Burp CO2 plugin! This training is scheduled for Thursday, January 8th, 2015 at 2pm...
SamuraiWTF 3.0 and into the future!
We are really excited to announce that SamuraiWTF 3.0 is now available publicly. (We did a previous release but found some issues and so that was...
Burp CO2 now sports some Laudanum Scripts!
There have been a number of updates to the Burp CO2 extension suite over the past couple of months but the most exciting one is the addition of...
Beware of Holiday Scams
It is that time of year and we need to be ready for the fraudsters to be out in full effect. The holidays are approaching and it is a time for joy...
Tactical Burp Suite Webinar
We have decided to try something new here at Secure Ideas. We have a long history (as long as the company actually) of doing webcasts and...
SQLite: the good, the bad, the embedded database
SQLite is an embedded, open-source, lightweight SQL database engine. The C based library is transactional, self-contained, and highly compact. It’s...
Thumb Drives.. Can you tell the difference?
During a physical penetration test, it is not uncommon for the tester (attacker) to drop usb thumb drives out in the parking lot or someplace within...
CORS Global Policy
I recently noticed an uptake on Cross-Origin Resource Sharing (CORS) findings showing up in automated scanning tools, which would not have been a...
Professionally Evil Courses: Ride Along Penetration Testing
Secure Ideas is excited to announce the latest class in our Professionally Evil Course series: Ride Along Penetration Testing. This course will be...
The ABC's of ASV's & PCI
Secure Ideas’ prides itself on providing the highest level of service to our customers. We are tirelessly searching for new tools, and methods to use...
Egress Filtering: Are you authorized to leave?
One of the first concerns with protecting a network is stopping outsiders from being able to enter into the internal network. Of course, this does...
Logging Like a Lumber Jack
Turn on any news outlet or visit any news site and you will most likely see an announcement of yet another data breach. On the DTR podcast we...
Policy Gap Analysis: Filling the Gaps
In today’s world, something never seems to be true unless it is written down, and even then it is a guideline. In the business world there are...
New Data Security Breach Laws in Florida
Since many organizations are collecting what many would consider personal, non-public, information, it is very important that they protect this...
Too Small to Hack: Small Business and Security
If you are paying attention to the news, security is a big topic. At least that’s what CNN and the Wall Street Journal think. And I would happen to...
What Do You Expect From A PenTest?
There are many reasons that a company has a penetration test performed. Maybe it is due to regulatory compliance, like HIPAA, or they are just take...
Ebay Falls Victim to Breach: Source Forge Updates Password Storage
It was just recently announced that eBay suffered a breach that led to the compromise of user details including: username encrypted password email...
Is that a Shark? - Common Security Mistakes Organizations Make
At Secure Ideas, we work with a large number of organizations. These range from small mom-and-pop businesses to international corporations and...
Comprehensive Testing: Red and Blue Make Purple Video
James Jardine and I held the Comprehensive Testing (Purple Teaming) webcast yesterday. In this webcast we discussed how red teaming works, what it...
Carolina Spring Security Events
It seems that Spring is “prime time” for security professionals in the Carolinas, and Charlotte seems to be at the center of it at least...
Professionally Evil Web Penetration Testing Class
Ever thought about being able to test the security of your web applications? Wanted to know how the Professionally Evil hack web services and...
Webcast: Comprehensive testing: Red and Blue Make Purple
Secure Ideas is excited to announce a webcast scheduled for May 13th, 2014 on the topic of Purple Teaming. James Jardine and Kevin Johnson will...
Professionally Evil Training: Advanced Tactical Burp Webinar
Secure Ideas is excited to announce its latest upcoming online training. We will be offering a two-hour session exploring advanced topics related to...
Purple Teaming for Success
You know what blue teams and red teams are. Red is our attack side, or the adversaries, and Blue is the defense side. Unfortunately, we don’t see...