Professionally Evil Blog
A blog by experts of penetration testing and other security assessments.
Professionally Evil: Self Inflicted Injury at Vendor's Request
It’s an unfortunate and still too common a vulnerability to find administrative interfaces exposed ...
Learn more

SIAM: Custom Testing Machines
Secure Ideas recently made the decision to create custom machines that we could use for penetration ...
Learn more
We Can't Rely on the Browser for Protection
A large part of doing security consulting is providing proper mitigations and recommendations to ...
Learn more
When the flood is going to come...
Most everyone in the U.S. is aware that it's not uncommon for the Mississippi River to flood in ...
Learn more

Burp Extension for F5 Cookie Detection
This past February, my fellow colleague James Jardine wrote an excellent blog post called “Decoding ...
Learn more
Professionally Evil Perspective podcast: Mobile Security Testing - Tips and Tools
I have to say that I really enjoy doing the Professionally Evil Perspective (PEP) podcast with ...
Learn more

Professionally Evil Toolkit - Reconnoiter
In this series of the Professionally Evil Toolkit we will be talking about Reconnoiter. Reconnoiter ...
Learn more
Who We Are: Thom Dosedel
Who am I: Thom Dosedel, Senior Security Consultant at Secure Ideas. What do I do at Secure Ideas: ...
Learn more

Professionally Evil Toolkit - Sqlmap
In this series of the Professionally Evil Toolkit we will be talking about sqlmap. Sqlmap is an ...
Learn more
Who We Are: Jeff Bleich
In this series of posts we are introducing staff members at Secure Ideas to give you a quick ...
Learn more

Your Passwords Were Stolen: What's Your Plan?
If you have been glancing at many news stories this year, you have certainly seen the large number ...
Learn more

Using a Throwing Star to Capture Packets
Mobile applications are a hot commodity these days. It seems like everyone and their ...
Learn more