Reading the Mandiant APT1 Report
Like a lot of folks, I downloaded and read through the Mandiant APT1 report as soon as I could. ...
Continue Reading
Active Defenses?
Active defense, often mistakenly called hacking back, is a common topic thrown around the security ...
Continue Reading
Grab a CORS Light
Many of you already know that any cross-site HTTP requests invoked from scripts running within a ...
Continue Reading
Laudanum by Example: Shell
Previously, I wrote a post providing a brief introduction to Laudanum. If you haven’t read it, or ...
Continue Reading
Introduction to Laudanum
As a security consultant, there are so many scenarios that I run into every day that there is no ...
Continue Reading
Hi, I'm with IT and I'm Here to Steal From You
Beware of the Unknown IT Grunt I decided to continue on with the same theme as Kevin’s post about ...
Continue Reading
Spear Phishing: "You guys are Shady!"
This post is part of our Professionally Evil series of posts that discuss some of the experiences ...
Continue Reading
Happy New Years!
As we finish 2012 and look forward to 2013, Secure Ideas’ staff would like to wish everyone a happy ...
Continue Reading
Don’t Trust the Replacement Delivery Guy
Here at Secure Ideas we have had a ton of fun experiences during our work. When we teach or ...
Continue Reading
Installing RatProxy on Windows - Video Uploaded
A few months ago I did the original Installing RatProxy on Windows blog post that describes both ...
Continue Reading
Grey Box Penetration Testing
A common question I get from potential clients is “what is grey box testing and why do we need it?” ...
Continue Reading