Professionally Evil Insights

Welcome to the Professionally Evil Insights blog by Secure Ideas! In this digital playground, we unravel the complex world of information security with a touch of fun. Our expert-led content ranges from deep-dives into penetration testing to explorations of hardware hacking. Whether you're curious about Secure Ideas or passionate about cybersecurity, this blog is your quick, enlightening, and entertaining guide into the captivating world of information security.

Welcome aboard!

    2016 is shaping up to be an interesting and exciting time at Secure Ideas. We have always done training in one form or another. Many of you may have first heard of Secure Ideas through the training that we have done for organizations such as SANS, DerbyCon, Blackhat, OWASP, MISTI, Princeton ...
    Continue Reading

    Never miss a Professionally Evil update!

    Red Teaming - Not What You May Have Thought
    Lately, I’ve been doing a lot of reading on some less technical topics and I ran across “Red Team: ...
    Continue Reading
    Reading (Slogging) Through the 2015 Verizon DBIR
    When the first data breach investigations report was released by Verizon in 2008, I remember ...
    Continue Reading
    All Your Base Are Belong to #HeartBleed - OpenSSL Heartbeat Overflow
    What You Need to Know and Do About It Unless you’ve been hiding under a rock, I’m sure you have ...
    Continue Reading
    Professionally Evil Speaking: Two Free Events in Salt Lake City, UT and Ogden, UT
    These are a couple of local events for all you folks in the Salt Lake City, Ogden and Provo areas. ...
    Continue Reading
    Xbox One - Network Scans and Traffic Analysis
    This week we are returning back to our analysis of the Xbox One and checking out some of the data ...
    Continue Reading
    Webcast: Defending Against Web App Attacks Using ModSecurity
    Later this month I will be presenting a free webcast on ModSecurity and how we can make better use ...
    Continue Reading
    Xbox One - Capturing the Configuration Traffic
    One of the fun things about working at Secure Ideas are the conversations that we have about ...
    Continue Reading
    MIRcon 2013 - Analyzing Web Attacks with ModSecurity
    Last week I was able speak at MIRcon 2013 about how to use ModSecurity to discover attack activity ...
    Continue Reading
    Analyzing Web App Attacks Using ModSecurity at MIRcon 2013
    I’m extremely excited to announce that I will be speaking at MIRcon2013 on ModSecurity! The ...
    Continue Reading
    Professionally Evil Toolkit - BozoCrack
    This week I’ve been teaching a class on web app security for developers and I remembered a fun ...
    Continue Reading
    Why Do Phishing As Part of Security Testing
    I was recently watching a web cast on incident response and found myself thinking about the cause ...
    Continue Reading