Professionally Evil Blog

A blog by experts of penetration testing and other security assessments.
    Einstein Told Us: Why User Awareness is NOT the right focus
      “The definition of insanity is doing the same thing over and over again and expecting different results.” – Einstein (Well, not really!) Every day we hear another reason why user awareness (or better-named security awareness) is critical. We hear an announcement of another breach or social ...
    Learn more

    Never miss a Professionally Evil update!

    How I Became a Security Consultant: AbsoluteAppsec Interview
    How I Became a Security Consultant: AbsoluteAppsec Interview
    Every so often, podcasts and such will invite me to speak on a variety of topics. And this week, I ...
    Learn more
    Building Blocks: Professionally Evil Fundamentals Series
    Building Blocks: Professionally Evil Fundamentals Series
    We at Secure Ideas love security education. What we enjoy even more is affordable security ...
    Learn more
    We take security seriously and other trite statements
    We take security seriously and other trite statements
    Earlier this week, Secure Ideas sent an initial notification regarding an incident targeting us ...
    Learn more
    #AffordableTraining requires change
    #AffordableTraining requires change
      In 2019 Secure Ideas is dedicated to offering affordable security training to everyone. This ...
    Learn more
    Professionally Evil CISSP Certification: Breaking the Bootcamp Model
    Professionally Evil CISSP Certification: Breaking the Bootcamp Model
    ISC2 describes the CISSP as a way to prove “ you have what it takes to effectively design, ...
    Learn more
    Spring Break without Breaking the Bank: Hands On Training
    Spring Break without Breaking the Bank: Hands On Training
    Over the last eight years, one of the main focuses of Secure Ideas has been education.  One ...
    Learn more
    Happy Thanksgiving from Secure Ideas
    Happy Thanksgiving from Secure Ideas
    As we enter the busiest time of year for us (both personally and professionally) we wanted to take ...
    Learn more
    SamuraiWTF 4.0 Finally Released
    SamuraiWTF 4.0 Finally Released
    In February of this year, Mic posted a blog discussing the future of SamuraiWTF. (You can go read ...
    Learn more
    Finding Your Weakness: Triaging Your Domains with SWAT
      I have been involved in IT and security in one way or another for almost 30 years.  I have worked ...
    Learn more
    Professionally Evil Web Application Security Class Live in Charlotte NC
    Professionally Evil Web Application Security Class Live in Charlotte NC
      Are you a developer who wants to better understand web application security?  Are you a security ...
    Learn more
    Professionally Evil Web App Pen Testing 101 Course
    Professionally Evil Web App Pen Testing 101 Course
    UPDATE: Updated the done steps. below.  Also changed the links from S3 to Git. Since our founding ...
    Learn more