Professionally Evil Insights

Welcome to the Professionally Evil Insights blog by Secure Ideas! In this digital playground, we unravel the complex world of information security with a touch of fun. Our expert-led content ranges from deep-dives into penetration testing to explorations of hardware hacking. Whether you're curious about Secure Ideas or passionate about cybersecurity, this blog is your quick, enlightening, and entertaining guide into the captivating world of information security.

Welcome aboard!

Coming Soon - Twelve Days of ZAPmas

Training | web penetration testing | application security | web application security

In December of 2018, I published a twelve-day series of cross-site scripting tips, tricks, and ...

Quick Bites Ep 4 - Let's Talk About SSRF, Baby!

web penetration testing | web application security | SSRF | exploits

Let’s talk about you and (application) secur-i-ty! Let’s talk about all the good things and the bad ...

Why your application needs a Content Security Policy (And How to Build One)

web application security

As a web application owner, it is crucial to understand the concept of a content security policy ...

Quick Bites Episode 2 - HTTP Security Headers and Why You NEED Them

security | application security | web application security | methodology | technology tips

Hi everybody! So, after some feedback about the last “quick” Quick Bites (thanks Josh!), I’ve ...

Wild West Hackin Fest 2022: The Return

Man, San Diego is beautiful. I don't know exactly why John Strand and Black Hills Information ...

Waving the White Flag: Why InfoSec should stop caring about HTTPOnly

best practices | web application security | cookies

As a company that is constantly working with our penetration testing clients on understanding where ...

How I Became a Security Consultant: AbsoluteAppsec Interview

Training | open source | penetration testing | business | web application security

Every so often, podcasts and such will invite me to speak on a variety of topics. And this week, I ...

1 2