Professionally Evil Insights

Welcome to the Professionally Evil Insights blog by Secure Ideas! In this digital playground, we unravel the complex world of information security with a touch of fun. Our expert-led content ranges from deep-dives into penetration testing to explorations of hardware hacking. Whether you're curious about Secure Ideas or passionate about cybersecurity, this blog is your quick, enlightening, and entertaining guide into the captivating world of information security.

Welcome aboard!

    Flipper Zero: A Hardware Hacking Multitool Webcast
    The Flipper Zero is known as a hacking multitool. It can cover a range of hacking from sub-ghz radios, to NFC and door tags, USB attacks, and hardware attacks. Back in August, we did a webcast that provided a high level overview of what Flipper Zero can do. It was more of a sampler of rapid-fire ...
    Continue Reading

    Never miss a Professionally Evil update!

    Unleashing the Power of Flipper Zero: A Hacker's Multitool Webcast
    Training  |  wireless  |  webcast  |  flipper zero
    In the ever-evolving world of technology, the Flipper Zero has emerged as a game-changer, making ...
    Continue Reading
    Understanding Server-Side Template Injection (SSTI)
    Web applications play a vital role in delivering dynamic content to users. To achieve this, ...
    Continue Reading
    Introducing SamuraiWTF 5.3: A Powerhouse for Web App Pen Testing
    Testing  |  Training  |  samuraiWTF  |  web penetration testing  |  application security  |  professionally evil  |  Secure Ideas  |  hacking  |  OWASP  |  Project
    We are thrilled to announce the release of SamuraiWTF (Web Training Framework) version 5.3! This ...
    Continue Reading
    Introducing BILE - Groundbreaking Classification for Web App
    As a seasoned web application penetration tester, I've always felt that there should be a more ...
    Continue Reading
    Is the CISSP Mentorship for me?
    Training  |  CISSP
    “Knowledge is power.” That quote has been said more times than you can count because it’s true. The ...
    Continue Reading
    How to iterate through advfirewall rules
    Training  |  professionally evil  |  Secure Ideas  |  Windows 10  |  Windows 11  |  sysadmin  |  system administration  |  cmd  |  powershell  |  firewall rules
    There are several ways to pull firewall information from a Windows system. Today we will leverage ...
    Continue Reading
    Working With Data: IP and Port Filtering
    Training  |  professionally evil  |  Secure Ideas  |  technology tips and tricks  |  sysadmin  |  data  |  data manipulation  |  excel  |  spreadsheet  |  filtering
    During our day-to-day work, there’s a lot of data that we interact with. In order to make good use ...
    Continue Reading
    Coming Soon - Twelve Days of ZAPmas
    In December of 2018, I published a twelve-day series of cross-site scripting tips, tricks, and ...
    Continue Reading
    View Wireless Profile Password Information Using PowerShell or CMD
    Training  |  professionally evil  |  Secure Ideas  |  hacking  |  Windows  |  Windows 10  |  Windows 11  |  sysadmin  |  system administration  |  cmd  |  wireless  |  wifi  |  wifi password  |  powershell  |  wireless profile
    There are a couple different ways for you to access your Windows wireless password information. If ...
    Continue Reading
    JuiceShop Workshop in less than 5 minutes
    Training  |  application security  |  OWASP  |  AWS  |  IaC  |  JuiceShop  |  Containers  |  AWS_ECS  |  workshops  |  Vagrant  |  AWS-CDK
    Have you ever deployed 10-30 containers in AWS with the single stroke of a key? (well if you don’t ...
    Continue Reading
    How to allow multiple RDP sessions
    The goal of this article is to walk through how to set up a Windows host to allow multiple remote ...
    Continue Reading