Professionally Evil Blog

A blog by experts of penetration testing and other security assessments.
    Professionally Evil: Self Inflicted Injury at Vendor's Request
    It’s an unfortunate and still too common a vulnerability to find administrative interfaces exposed ...
    Learn more
    SIAM: Custom Testing Machines
    SIAM: Custom Testing Machines
    Secure Ideas recently made the decision to create custom machines that we could use for penetration ...
    Learn more
    We Can't Rely on the Browser for Protection
      A large part of doing security consulting is providing proper mitigations and recommendations to ...
    Learn more
    When the flood is going to come...
      Most everyone in the U.S. is aware that it's not uncommon for the Mississippi River to flood in ...
    Learn more
    Burp Extension for F5 Cookie Detection
    Burp Extension for F5 Cookie Detection
    This past February, my fellow colleague James Jardine wrote an excellent blog post called “Decoding ...
    Learn more
    Professionally Evil Perspective podcast: Mobile Security Testing - Tips and Tools
    I have to say that I really enjoy doing the Professionally Evil Perspective (PEP) podcast with ...
    Learn more
    Professionally Evil Toolkit - Reconnoiter
    Professionally Evil Toolkit - Reconnoiter
    In this series of the Professionally Evil Toolkit we will be talking about Reconnoiter. Reconnoiter ...
    Learn more
    Who We Are: Thom Dosedel
    Who am I: Thom Dosedel, Senior Security Consultant at Secure Ideas.   What do I do at Secure Ideas: ...
    Learn more
    Professionally Evil Toolkit - Sqlmap
    Professionally Evil Toolkit - Sqlmap
    In this series of the Professionally Evil Toolkit we will be talking about sqlmap. Sqlmap is an ...
    Learn more
    Who We Are: Jeff Bleich
      In this series of posts we are introducing staff members at Secure Ideas to give you a quick ...
    Learn more
    Your Passwords Were Stolen: What's Your Plan?
    Your Passwords Were Stolen: What's Your Plan?
    If you have been glancing at many news stories this year, you have certainly seen the large number ...
    Learn more
    Using a Throwing Star to Capture Packets
    Using a Throwing Star to Capture Packets
    Mobile applications are a hot commodity these days.  It seems like everyone and their ...
    Learn more

    Never miss a professionally evil update!